cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com =>Hijacker.Qvo6
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://allssearch.com =>Adware.SocialSkinz
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com =>Hijacker.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snap.do =>Hijacker.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com =>Hijacker.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do =>Hijacker.SmartBar
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\QuickLaunch [In�s]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\QuickLaunch [In�s]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\TaskBar [In�s]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\Program [In�s]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\SystemTools [In�s]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - HKCU\..\Run: [PC Speed Maximizer] . (.Smart PC Solutions - Fix PC problems and optimize performance.) -- C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe =>Rogue.PCSpeedMaximizer
O4 - HKCU\..\Run: [ASO3SPCDone] C:\Program Files (x86)\Advanced System Optimizer 3\ASO3.exe (.not file.) =>PUP.AdvancedSystemOptimizer
O4 - HKUS\S-1-5-21-3306187391-503495989-824018544-1003\..\Run: [Advanced System Optimizer - Memory Optimizer] c:\program files (x86)\advanced system optimizer 3\memoryoptimizer.exe (.not file.) =>PUP.AdvancedSystemOptimizer
O23 - Service: Service Software Update (Software_update (Software_update) . (...) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [Omiga Plus RunAsStdUser] (...) -- C:\Program Files (x86)\Omiga Plus\omigaplus.exe (.not file.) [0] =>Hijacker.OmigaPlus
O42 - Logiciel: RegClean Pro - (.Systweak Inc.) [HKLM][64Bits] -- RegClean Pro_is1 =>Rogue.RegistryPowerCleaner
O42 - Logiciel: Toolbar Cleaner - (.Visicom Media Inc..) [HKLM][64Bits] -- Toolbar Cleaner => Adware.ToolbarCleaner
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow\Software\toolbarcleaner] => Adware.ToolbarCleaner
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] => Infection PUP (PUP.OptimizerPro)
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\DataMngr] =>PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\DealPlyLive] =>PUP.DealPly
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\ToolbarCleaner] => Adware.ToolbarCleaner
[HKCU\Software\ToolbarCleaneroptions] => Adware.ToolbarCleaner
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\DomaIQ] =>Adware.DomaIQ
[HKLM\Software\Wow6432Node\DataMngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\DealPlyLive] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\eSafeSecControl] =>PUP.eSafeSecurity
[HKLM\Software\Wow6432Node\omigaplusSvc] =>Hijacker.OmigaPlus
[HKLM\Software\Wow6432Node\qvo6Software] =>Hijacker.Qvo6
O43 - CFD: 20/09/2013 - 07:41:01 - [0,851] ----D C:\Program Files (x86)\DealPly =>PUP.DealPly
O43 - CFD: 20/09/2013 - 07:41:01 - [7,267] ----D C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 20/09/2013 - 07:41:01 - [26,502] ----D C:\Program Files (x86)\PC Speed Maximizer =>Rogue.PCSpeedMaximizer
O43 - CFD: 20/09/2013 - 07:42:35 - [12,239] ----D C:\Program Files (x86)\RegClean Pro =>Rogue.RegistryPowerCleaner
O43 - CFD: 20/09/2013 - 07:41:01 - [13,178] ----D C:\Program Files (x86)\Search Results Toolbar =>PUP.SearchResults
O43 - CFD: 20/09/2013 - 17:46:52 - [0,178] ----D C:\Program Files (x86)\Toolbar Cleaner => Adware.ToolbarCleaner
O43 - CFD: 20/09/2013 - 07:41:01 - [0,047] ----D C:\ProgramData\Datamngr =>PUP.Datamngr
O43 - CFD: 20/09/2013 - 07:41:03 - [0,356] ----D C:\Users\In�s\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 18/08/2013 - 08:18:06 - [30,195] ----D C:\Users\In�s\AppData\Local\toolbarcleaner => Adware.ToolbarCleaner
O43 - CFD: 18/08/2013 - 08:26:54 - [0,164] ----D C:\Users\In�s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner => Adware.ToolbarCleaner
O61 - LFC: 18/08/2338 - 04:49:52 ---A- . (...) -- C:\Users\In�s\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon\1.0.0\background.js [236] => PUP.WebConnect
O61 - LFC: 18/08/2338 - 04:49:52 ---A- . (...) -- C:\Users\In�s\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon\1.0.0\content.js [272] => PUP.WebConnect
O61 - LFC: 20/09/2013 - 08:40:22 ---A- . (...) -- C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rmx [192] =>Rogue.RegistryPowerCleaner
O61 - LFC: 20/09/2013 - 08:40:22 ---A- . (...) -- C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rxb [732] =>Rogue.RegistryPowerCleaner
O61 - LFC: 20/09/2013 - 13:03:06 ---A- . (...) -- C:\Users\In�s\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0\images\YoutubeDownloader.png [2641] =>PUP.SoftwareEngine
O61 - LFC: 20/09/2013 - 13:04:10 ---A- . (...) -- C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\ExcludeList.rcp [482] =>Rogue.RegistryPowerCleaner
O61 - LFC: 20/09/2013 - 13:04:10 ---A- . (...) -- C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\French_rcp.dat [53894] =>Rogue.RegistryPowerCleaner
O61 - LFC: 20/09/2013 - 13:04:10 ---A- . (...) -- C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\TempHLList.rcp [748] =>Rogue.RegistryPowerCleaner
O61 - LFC: 20/09/2013 - 13:04:10 ---A- . (...) -- C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\results.rcp [60] =>Rogue.RegistryPowerCleaner
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.qvo6.com =>Hijacker.Qvo6
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com =>Hijacker.Qvo6
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - http://feed.snap.do =>Hijacker.SmartBar
[MD5.3C74C26999F2060BC6302448F173A342] [SPRF][28/08/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\In�s\AppData\Local\Temp\uninst1.exe [340464] =>Toolbar.Babylon
SS - | Auto 10/07/1658 0 | (Software_update) . (...) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
SS - | Demand 10/07/1658 0 | (Software_update_m) . (...) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
[HKLM\SYSTEM\CurrentControlSet\Services\Software_update (Software_update] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1] =>Rogue.RegistryPowerCleaner^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr] =>Adware.Bandoo
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc] =>Hijacker.22find
[HKLM\Software\Wow6432Node\qvo6Software] =>Hijacker.Qvo6
[HKLM\Software\Wow6432Node\eSafeSecControl] =>PUP.eSafeSecurity
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc] =>PUP.eSafeSecurity
[HKLM\Software\Wow6432Node\omigaplusSvc] =>Hijacker.OmigaPlus
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:PC Speed Maximizer =>Rogue.PCSpeedMaximizer^
C:\Program Files (x86)\DealPly =>PUP.DealPly^
C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup^
C:\Program Files (x86)\PC Speed Maximizer =>Rogue.PCSpeedMaximizer^
C:\Program Files (x86)\RegClean Pro =>Rogue.RegistryPowerCleaner^
C:\Program Files (x86)\Search Results Toolbar =>PUP.SearchResults^
C:\ProgramData\Datamngr =>PUP.Datamngr^
C:\Users\In�s\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>Rogue.RegistryPowerCleaner
C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe =>Rogue.PCSpeedMaximizer^
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr^
[HKCU\Software\DealPlyLive] =>PUP.DealPly^
[HKCU\Software\Smartbar] =>Hijacker.SmartBar^
[HKLM\Software\DomaIQ] =>Adware.DomaIQ^
[HKLM\Software\Wow6432Node\DealPlyLive] =>PUP.DealPly^
C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rmx =>Rogue.RegistryPowerCleaner^
C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rxb =>Rogue.RegistryPowerCleaner^
C:\Users\In�s\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0\images\YoutubeDownloader.png =>PUP.SoftwareEngine^
C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\ExcludeList.rcp =>Rogue.RegistryPowerCleaner^
C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\French_rcp.dat =>Rogue.RegistryPowerCleaner^
C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\TempHLList.rcp =>Rogue.RegistryPowerCleaner^
C:\Users\In�s\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\results.rcp =>Rogue.RegistryPowerCleaner^
C:\Users\In�s\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon^
C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore^

Publicité


Signaler le contenu de ce document

Publicité