cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script zhpfix
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;*.offerbox.com;*.local =>PUP.OfferBox
O2 - BHO: McAfee SiteAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O3 - Toolbar: McAfee SiteAdvisor Toolbar [64Bits] - [HKLM]{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O23 - Service: McAfee Application Installer Cleanup (02 (0218761379179401mcinstcleanup) . (.McAfee, Inc. - McAfee Installer.) - C:\Windows\TEMP\021876~1.exe
O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc. - SiteAdvisor.) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
[MD5.65F00E976FCF8C01D5C2B5295AEC41A6] [APT] [GoforFilesUpdate] (.http://www.goforfiles.com/.) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe [364112] =>P2P.GoforFiles
O42 - Logiciel: GoforFiles - (.http://www.goforfiles.com/.) [HKCU][64Bits] -- GoforFiles =>P2P.GoforFiles
O42 - Logiciel: McAfee SiteAdvisor - (.McAfee, Inc..) [HKLM][64Bits] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}
[HKCU\Software\IM Providers]
[HKCU\Software\Pando Networks]
[HKLM\Software\IM Providers]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\SiteAdvisor]
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
O43 - CFD: 13/09/2013 - 04:18:10 - [8,865] ----D C:\Program Files (x86)\GoforFiles =>P2P.GoforFiles
O43 - CFD: 07/05/2013 - 17:34:44 - [45,502] ----D C:\Program Files (x86)\McAfee
O43 - CFD: 11/06/2013 - 17:31:12 - [0] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 13/09/2013 - 04:18:10 - [0,796] ----D C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 27/06/2013 - 20:07:05 - [0,507] ----D C:\ProgramData\McAfee
O43 - CFD: 19/07/2013 - 14:49:59 - [0,001] ----D C:\Users\Mathis\AppData\Roaming\GoforFiles =>P2P.GoforFiles
O45 - LFCP:[MD5.5D96BB77535E4B0EB069D0041BCA3FFD] - 05/09/2013 - 12:03:30 ---A- - C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM
O45 - LFCP:[MD5.A3EDF137EF947EC41CD3B2BBBC8DC36B] - 11/09/2013 - 17:17:01 ---A- - C:\Windows\Prefetch\PLUS-HD-2.2-CODEDOWNLOADER.EX-77785A59.pf =>Adware.PlusHD
O45 - LFCP:[MD5.EB997136401206C0E26AC06FFDD9181A] - 11/09/2013 - 17:17:01 ---A- - C:\Windows\Prefetch\PLUS-HD-2.2-ENABLER.EXE-CC69C3A4.pf =>Adware.PlusHD
O45 - LFCP:[MD5.B5802C7E7E8F3825632A7B7F3347E2B0] - 11/09/2013 - 17:17:01 ---A- - C:\Windows\Prefetch\PLUS-HD-2.2-UPDATER.EXE-CF246018.pf =>Adware.PlusHD
O45 - LFCP:[MD5.5EDB1F6422184F1D39CF1A2A06FA5174] - 11/09/2013 - 17:17:02 ---A- - C:\Windows\Prefetch\PLUS-HD-2.2-CHROMEINSTALLER.E-85220723.pf =>Adware.PlusHD
O45 - LFCP:[MD5.172ECDD76FDF4F983E8CB8742001F5D6] - 11/09/2013 - 17:17:02 ---A- - C:\Windows\Prefetch\PLUS-HD-2.2-FIREFOXINSTALLER.-3DEE9434.pf =>Adware.PlusHD
O45 - LFCP:[MD5.D537302EAB29C108552F5FD331CDA7E7] - 12/09/2013 - 17:22:50 ---A- - C:\Windows\Prefetch\DEALPLYLIVE.EXE-EC78F127.pf =>PUP.DealPly
O45 - LFCP:[MD5.587ED189B1CA9F7FB3590A2149E3E630] - 12/09/2013 - 17:22:50 ---A- - C:\Windows\Prefetch\DEALPLYLIVEHANDLER.EXE-C0B57938.pf =>PUP.DealPly
O45 - LFCP:[MD5.B0928A4D83F658FCD72FCDB20EB8F11D] - 16/08/2013 - 20:10:00 ---A- - C:\Windows\Prefetch\BABMAINT.EXE-B512F8FF.pf =>Hijacker.BabSolution
O45 - LFCP:[MD5.10C10DCE0C43B233904B1382181F96C9] - 19/08/2013 - 22:08:20 ---A- - C:\Windows\Prefetch\BABMAINT.EXE-82EAA69F.pf =>Hijacker.BabSolution
O45 - LFCP:[MD5.4ED051C0BC0BDA61D0CEAC9A90977795] - 19/08/2013 - 23:33:10 ---A- - C:\Windows\Prefetch\WEBCAKEDESKTOP.EXE-64F4FA8E.pf =>Adware.WebCake
O45 - LFCP:[MD5.0D73C09B9CF426855B10B126000E9827] - 19/08/2013 - 23:33:24 ---A- - C:\Windows\Prefetch\LOLLIPOP.EXE-36B0BDAC.pf =>Adware.Lollipop
O45 - LFCP:[MD5.CA882DBFC72A0294CB93684969E2A56A] - 21/08/2013 - 17:58:33 ---A- - C:\Windows\Prefetch\QUICKSHARE.EXE-32C16392.pf =>PUP.QuickShare
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
[MD5.5BB7F9160A555D16C1C4C8914C976043] [SPRF][30/05/2013] (...) -- C:\Users\Mathis\AppData\Local\Temp\BundleSweetIMSetup.exe [9] =>PUP.SweetIM
[MD5.D36977B52D60F38DCAF276A46B39A3C9] [SPRF][11/07/2013] (...) -- C:\Users\Mathis\AppData\Local\Temp\DeltaTB.exe [812607] =>Toolbar.DeltaSearch
[MD5.3BB12F100F4CA64D8FCFCB6EAEC22767] [SPRF][11/07/2013] (.DealPly Technologies Ltd. - DealPly.) -- C:\Users\Mathis\AppData\Local\Temp\dp.exe [1443656] =>PUP.DealPly
[MD5.D84DFC59AB2DBE4607CE1A9DEF9DF63C] [SPRF][30/05/2013] (.iMesh Inc. - iMesh.) -- C:\Users\Mathis\AppData\Local\Temp\iMesh_setup.exe [2482904] =>PUP.iMesh
[MD5.77BFC716EC79B0DEEB47AE8862DB5DBD] [SPRF][11/07/2013] (.-lop--o--i-llp - Pas de description.) -- C:\Users\Mathis\AppData\Local\Temp\LollipopInstaller_somoto_14693.exe [269312] =>Adware.Lollipop
[MD5.8A4AF3B0695F29186AD02E2FD766FA3B] [SPRF][15/06/2013] (.SweetIM Technologies Ltd. - SQLite DLL.) -- C:\Users\Mathis\AppData\Local\Temp\mgsqlite3.dll [393016] =>PUP.SweetIM
[MD5.D2B48C62D4E77881DF37119BBADB8A0F] [SPRF][30/05/2013] (...) -- C:\Users\Mathis\AppData\Local\Temp\MybabylonTB.exe [11] =>Toolbar.Babylon
[MD5.4FA8BF7C6CCB8B7C46271820D71EEDF8] [SPRF][11/07/2013] (.QuickShare - QuickShare.) -- C:\Users\Mathis\AppData\Local\Temp\QuickShare1.exe [8049316] =>PUP.QuickShare
[MD5.2B6C5007223ECA47B123CF66C4F2E50C] [SPRF][18/06/2013] (.Pas de propri�taire - Linkury.Installer.MsiWrapper.) -- C:\Users\Mathis\AppData\Local\Temp\SmartbarExeInstaller.exe [8954136] =>Hijacker.SmartBar
[MD5.FB58CA29357D25ECD447E79F61B03B67] [SPRF][19/07/2013] (.WebCake LLC - Installer.) -- C:\Users\Mathis\AppData\Local\Temp\toolbar13870610.exe [272128] =>Adware.WebCake
[MD5.B0F6507F8666E89DD9F192313D88EB98] [SPRF][16/06/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\Mathis\AppData\Local\Temp\uninst1.exe [389632] =>Toolbar.Babylon
[MD5.9BF1A1F567FF8D1105A1E57653215F7E] [SPRF][25/08/2013] (...) -- C:\Users\Mathis\AppData\Local\Temp\wajam_install.exe [466672] =>Toolbar.Wajam
[MD5.6E3672209D3EEF85B5FC010A26C11B73] [SPRF][29/07/2013] (.cake bake - Desktop.Updater.) -- C:\Program Files (x86)\WDesktop.Updater.exe [51992] =>Adware.WebCake
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{85E8C5D3-C77B-470F-99D3-64D9C58AC22B}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (.not file.)
O87 - FAEL: "{901C4076-A28A-436A-B2F2-326A00815A06}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (.not file.)
O87 - FAEL: "TCP Query User{047DCEC7-9C1E-43FF-81BA-C124C3810986}C:\windows\syswow64\javaw.exe" |In - Private - P6 - TRUE | .(...) -- C:\windows\syswow64\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{34C247BD-F778-400A-99E5-8879F4389E1D}C:\windows\syswow64\javaw.exe" |In - Private - P17 - TRUE | .(...) -- C:\windows\syswow64\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{43242794-2ABF-473D-A5EF-2FAE4FAC9A9C}C:\program files (x86)\torntv.com\torntv downloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\torntv.com\torntv downloader.exe (.not file.) =>Hijacker.TornTV
O87 - FAEL: "UDP Query User{2FCBD098-8176-426C-AA77-8D97A2FDC743}C:\program files (x86)\torntv.com\torntv downloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\torntv.com\torntv downloader.exe (.not file.) =>Hijacker.TornTV
O87 - FAEL: "{7E451466-A6A7-450E-9897-69002E97D47C}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{00380102-31EC-44C1-B5A3-0A7BB4685513}" |In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{5E795B89-C09A-4B0F-A62A-C2451F0946D1}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{04D2D252-0AE3-41CA-BA35-366C26F0CEF2}" |In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{514ABB51-D1FB-40A4-ABE0-87B08BB111C0}" |In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{B2D10CDF-3F67-4284-BA17-E0121C9EED09}" |In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{AEDEFDA8-6E98-4475-B5F8-4D0F7A35C491}" |In - Public - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{00CD9204-0F38-44F7-9985-08AA7BDFB4A5}" |In - Public - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "TCP Query User{6DA12AB7-E519-4142-89B8-D4331BF3AB9D}C:\users\mathis\appdata\local\temp\rar$exa0.379\survivers_beta_3.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\mathis\appdata\local\temp\rar$exa0.379\survivers_beta_3.exe (.not file.)
O87 - FAEL: "UDP Query User{012AA536-A678-4438-9DB8-7002EAB6F58B}C:\users\mathis\appdata\local\temp\rar$exa0.379\survivers_beta_3.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\mathis\appdata\local\temp\rar$exa0.379\survivers_beta_3.exe (.not file.)
O87 - FAEL: "TCP Query User{70BB9809-163A-4635-B250-A438EA025F54}C:\users\mathis\appdata\local\temp\rar$exa0.963\survivers_beta_3.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\mathis\appdata\local\temp\rar$exa0.963\survivers_beta_3.exe (.not file.)
O87 - FAEL: "UDP Query User{C28D8980-85CD-45B0-974A-0F94EC65D744}C:\users\mathis\appdata\local\temp\rar$exa0.963\survivers_beta_3.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\mathis\appdata\local\temp\rar$exa0.963\survivers_beta_3.exe (.not file.)
O87 - FAEL: "TCP Query User{01C755A8-F53D-4D84-9462-0A8FC5B26149}C:\users\mathis\appdata\local\temp\rar$exa0.324\survivers_beta_3.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\mathis\appdata\local\temp\rar$exa0.324\survivers_beta_3.exe (.not file.)
O87 - FAEL: "UDP Query User{F80A5D1F-B95A-4F87-90A3-9C836C5C7E29}C:\users\mathis\appdata\local\temp\rar$exa0.324\survivers_beta_3.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\mathis\appdata\local\temp\rar$exa0.324\survivers_beta_3.exe (.not file.)
O87 - FAEL: "{1F152CE3-9A18-4B55-A4CB-119D4E49A765}" | In - Private - P6 - TRUE | .(.http://goforfiles.com/ - goforfilesdl Application.) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe =>P2P.GoforFiles
O87 - FAEL: "{4E350DA1-FADD-4C63-A7E5-0B4EDDC25D75}" | In - Private - P17 - TRUE | .(.http://goforfiles.com/ - goforfilesdl Application.) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe =>P2P.GoforFiles
O87 - FAEL: "{5026B54E-A115-4A5D-9532-E64E3022CC0F}" | In - Private - P6 - TRUE | .(.http://goforfiles.com/ - GoforFiles Application.) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe =>P2P.GoforFiles
O87 - FAEL: "{C14EB664-32B6-4B1D-BE95-28617CA318B8}" | In - Private - P17 - TRUE | .(.http://goforfiles.com/ - GoforFiles Application.) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe =>P2P.GoforFiles
O90 - PUC: "B2FD9C0A5B9838449838816A28001F4B" . (.SweetIM for Messenger 3.7.) -- C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}\ARPPRODUCTICON.exe =>PUP.SweetIM
[MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][15/06/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\1cdaba.msi [3760128] =>PUP.SweetIM
SS - | Auto 30/01/2013 833616 | C:\Windows\TEMP\021876~1.exe (0218761379179401mcinstcleanup) . (.McAfee, Inc..) - C:\Windows\Temp\0218761379179401mcinst.exe
SR - | Auto 22/05/2013 120592 | (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{04DB50FA-EA80-4256-85F9-540C582E280D}] =>PUP.QuickShare^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}] =>Toolbar.Wajam
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{474597C5-AB09-49d6-A4D5-2E8D7341384E}] =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje] =>Hijacker.TornTV
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
C:\Users\Mathis\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl =>PUP.QuickShare
C:\Users\Mathis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp =>Toolbar.Wajam
C:\Users\Mathis\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh =>Adware.WebCake
C:\Users\Mathis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje =>Hijacker.TornTV
C:\Users\Mathis\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfakeonomonapccoamcmdgpoaicnpnoo =>PUP.CrossRider
C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM^
C:\Windows\Prefetch\PLUS-HD-2.2-CODEDOWNLOADER.EX-77785A59.pf =>Adware.PlusHD^
C:\Windows\Prefetch\PLUS-HD-2.2-ENABLER.EXE-CC69C3A4.pf =>Adware.PlusHD^
C:\Windows\Prefetch\PLUS-HD-2.2-UPDATER.EXE-CF246018.pf =>Adware.PlusHD^
C:\Windows\Prefetch\PLUS-HD-2.2-CHROMEINSTALLER.E-85220723.pf =>Adware.PlusHD^
C:\Windows\Prefetch\PLUS-HD-2.2-FIREFOXINSTALLER.-3DEE9434.pf =>Adware.PlusHD^
C:\Windows\Prefetch\DEALPLYLIVE.EXE-EC78F127.pf =>PUP.DealPly^
C:\Windows\Prefetch\DEALPLYLIVEHANDLER.EXE-C0B57938.pf =>PUP.DealPly^
C:\Windows\Prefetch\BABMAINT.EXE-B512F8FF.pf =>Hijacker.BabSolution^
C:\Windows\Prefetch\BABMAINT.EXE-82EAA69F.pf =>Hijacker.BabSolution^
C:\Windows\Prefetch\WEBCAKEDESKTOP.EXE-64F4FA8E.pf =>Adware.WebCake^
C:\Windows\Prefetch\LOLLIPOP.EXE-36B0BDAC.pf =>Adware.Lollipop^
C:\Windows\Prefetch\QUICKSHARE.EXE-32C16392.pf =>PUP.QuickShare^
C:\Users\Mathis\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data =>PUP.BProtector^
C:\Users\Mathis\AppData\Local\Temp\BundleSweetIMSetup.exe =>PUP.SweetIM^
C:\Users\Mathis\AppData\Local\Temp\DeltaTB.exe =>Toolbar.DeltaSearch^
C:\Users\Mathis\AppData\Local\Temp\dp.exe =>PUP.DealPly^
C:\Users\Mathis\AppData\Local\Temp\iMesh_setup.exe =>PUP.iMesh^
C:\Users\Mathis\AppData\Local\Temp\LollipopInstaller_somoto_14693.exe =>Adware.Lollipop^
C:\Users\Mathis\AppData\Local\Temp\mgsqlite3.dll =>PUP.SweetIM^
C:\Users\Mathis\AppData\Local\Temp\MybabylonTB.exe =>Toolbar.Babylon^
C:\Users\Mathis\AppData\Local\Temp\QuickShare1.exe =>PUP.QuickShare^
C:\Users\Mathis\AppData\Local\Temp\SmartbarExeInstaller.exe =>Hijacker.SmartBar^
C:\Users\Mathis\AppData\Local\Temp\toolbar13870610.exe =>Adware.WebCake^
C:\Users\Mathis\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon^
C:\Users\Mathis\AppData\Local\Temp\wajam_install.exe =>Toolbar.Wajam^
C:\Program Files (x86)\WDesktop.Updater.exe =>Adware.WebCake^
C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}\ARPPRODUCTICON.exe =>PUP.SweetIM^
C:\Windows\Installer\1cdaba.msi =>PUP.SweetIM^
C:\Windows\Installer\1d258a8.msi =>PUP.QuickShare^
C:\Users\Mathis\AppData\Local\Temp\iMesh.ico =>PUP.iMesh
SysRestore
FirewallRAZ
EmptyCLSID
EmptyTemp
EmptyFlash

Publicité


Signaler le contenu de ce document

Publicité