Script ZHPFix
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: Modified
M3 - MFPP: Plugins - [utilisateur] -- C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\26xrakz5.default-1389113331081\searchplugins\Mysearchdial.xml   =>Adware.MyWebSearch 
M3 - MFPP: Plugins - [utilisateur] -- C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\b56lfl8u.default-1388922129778\searchplugins\Mysearchdial.xml   =>Adware.MyWebSearch 
M3 - MFPP: Plugins - [utilisateur] -- C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\hs7p060n.default\searchplugins\Mysearchdial.xml   =>Adware.MyWebSearch 
M3 - MFPP: Plugins - [utilisateur] -- C:\Program Files\Mozilla FireFox\searchplugins\sweet-page.xml   =>PUP.SweetPage 
M2 - MFEP: prefs.js [utilisateur - 26xrakz5.default-1389113331081\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}] [] MySearchDial NewTab v (..)   =>Adware.MyWebSearch 
M2 - MFEP: prefs.js [utilisateur - 5t5me9fv.default-1391068036950\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}] [] MySearchDial NewTab v (..)   =>Adware.MyWebSearch 
M2 - MFEP: prefs.js [utilisateur - b56lfl8u.default-1388922129778\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}] [] MySearchDial NewTab v (..)   =>Adware.MyWebSearch 
M2 - MFEP: prefs.js [utilisateur - hs7p060n.default\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}] [] MySearchDial NewTab v (..)   =>Adware.MyWebSearch 
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com   =>Adware.MyWebSearch 
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com   =>Adware.MyWebSearch 
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com   =>PUP.SweetPage 
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com   =>PUP.SweetPage 
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com   =>PUP.SweetPage 
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com   =>PUP.SweetPage 
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.sweet-page.com   =>PUP.SweetPage 
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.sweet-page.com   =>PUP.SweetPage 
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://start.mysearchdial.com   =>Adware.MyWebSearch 
O4 - GS\QuickLaunch [utilisateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files\Google\Chrome\Application\chrome.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files\Google\Chrome\Application\chrome.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - GS\QuickLaunch [utilisateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - GS\QuickLaunch [utilisateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - GS\Program [utilisateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - GS\SystemTools [utilisateur]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com   =>PUP.SweetPage 
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Clé orpheline
O23 - Service: Update RightSurf (Update RightSurf) . (...) - C:\Program Files\RightSurf\updateRightSurf.exe (.not file.)
O43 - CFD: 30/01/2014 - 08:04:19 - [0] ----D C:\ProgramData\WPM   =>PUP.WpManager 
O43 - CFD: 01/09/2013 - 20:46:51 - [1,063] ----D C:\Users\utilisateur\AppData\Roaming\0D0S1L2Z1P1B0T1P1B2Z      
O43 - CFD: 30/01/2014 - 08:02:57 - [1,063] ----D C:\Users\utilisateur\AppData\Roaming\0V1L2Z2Z1T1I1L1T      
O43 - CFD: 30/01/2014 - 08:31:04 - [0,073] ----D C:\Users\utilisateur\AppData\Roaming\mysearchdial   =>Adware.MyWebSearch 
O43 - CFD: 30/01/2014 - 08:04:32 - [0,489] ----D C:\Program Files\SupTab
O43 - CFD: 30/01/2014 - 08:06:21 - [0] ----D C:\ProgramData\IePluginService   =>Trojan.SProtector 
[HKCU\Software\%C%]      
[HKCU\Software\Hoolapp]
[HKCU\Software\InstallCore]   =>Adware.InstallCore 
[HKCU\Software\JC]  
[HKCU\Software\Vittalia]   =>PUP.Vittalia 
[HKCU\Software\mysearchdial.com]   =>Adware.MyWebSearch 
[HKLM\Software\Wpm]   =>PUP.WpManager 
[HKLM\Software\supTab]
[HKLM\Software\supWPM]   =>PUP.WpManager 
O51 - MPSK:{2502f961-24cc-11e2-af02-001f16068213}\AutoRun\command. (...) -- H:\AutoRun.exe (.not file.)
O51 - MPSK:{3a1c5145-2414-11e2-b840-001f16068213}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (...) --  C:\Program Files\Mozilla Firefox\firefox.exe" http://www.sweet-page.com   =>PUP.SweetPage 
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (...) --  C:\Program Files\Google\Chrome\Application\chrome.exe" http://www.sweet-page.com   =>PUP.SweetPage 
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) --  C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com   =>PUP.SweetPage 
O69 - SBI: prefs.js [utilisateur - 26xrakz5.default-1389113331081] user_pref("browser.search.defaultenginename", "Mysearchdial");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 26xrakz5.default-1389113331081] user_pref("browser.search.selectedEngine", "Mysearchdial");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("browser.search.order.1", "Mysearchdial");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("browser.search.selectedEngine", "Mysearchdial");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.AL", 2);   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.aflt", "tele0103");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtBtByD0FtDyByD0FyC0EyDtDtBzytN0D0Tzu0SyByCtDtN1L2XzutBtFtBtFtCyDtFtCy[...]   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.cntry", "FR");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.cr", "579560504");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.dfltLng", "");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.dfltSrch", true);   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.dnsErr", true);   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497[...]   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.dspFFXOld", "");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.excTlbr", false);   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.hdrMd5", "0F2FF8F7CEB9F303244E673FC22ADE7C");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.hmpg", true);   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele0103&cd=2XzuyEtN2Y1L1QzutDtDtBtByD0FtDyByD0[...]   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.hpFFXOld", "chrome://branding/locale/browserconfig.properties");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.id", "00225F075F6E5029");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.instlDay", "16100");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.instlRef", "");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.lastB", "chrome://branding/locale/browserconfig.properties");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.21.08:30:51");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele0103&cd=2XzuyEtN2Y1L1QzutDtDtBtByD0FtDyBy[...]   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"90\",\"lastVrsn\":\"90\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"s[...]   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.prdct", "mysearchdial");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.sg", "none");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.tlbrId", "base");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele0103&cd=2XzuyEtN2Y1L1QzutDtDtBtByD0FtDy[...]   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial_i.hmpg", true);   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial_i.newTab", false);   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial_i.smplGrp", "none");   =>Adware.MyWebSearch 
O69 - SBI: prefs.js [utilisateur - 5t5me9fv.default-1391068036950] user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.08:30:51");   =>Adware.MyWebSearch 
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (sweet-page) - http://www.sweet-page.com   
SS - | Auto 10/07/1658 0 |  (Update RightSurf) . (...) - C:\Program Files\RightSurf\updateRightSurf.exe
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C9A6357B-25CC-4BCF-96C1-78736985D412}]    
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08C06D61-F1F3-4799-86F8-BE1A89362C85}]   
[HKCU\Software\InstallCore]   =>Adware.InstallCore 
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   
[HKLM\Software\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   
[HKLM\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff]   
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   
[HKLM\Software\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]    
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}]    
C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\26xrakz5.default-1389113331081\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}    
C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\5t5me9fv.default-1391068036950\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}    
C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\b56lfl8u.default-1388922129778\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}   
C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\hs7p060n.default\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}   
C:\ProgramData\IePluginService  
C:\ProgramData\WPM   
C:\Users\utilisateur\AppData\Roaming\mysearchdial   
ShortcutFix
EmptyFlash
FirewallRaz
EmptyTemp