Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
[MD5.72116413CF0092A6DFB4BF7775EF7E0F] - (.Spigot, Inc. - Application Updater.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe [807800] [PID.860] =>PUP.Dealio
[MD5.7F8BECFB26F2655E281406C6C341F416] - (...) -- C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3029472] [PID.940] =>PUP.BitGuard
[MD5.C99645952FDA42584FE101C0B90D979A] - (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe [1360192] [PID.3088] =>Adware.SearchSettings
R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} . (.Pando Networks - Pando Web Plugin.) (No version) -- (.not file.) =>PUP.Dealio
O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\IObit Apps Toolbar\IE\7.6\iobitappsToolbarIE.dll =>PUP.Dealio
O3 - Toolbar: IObit Apps Toolbar - [HKLM]{03EB0E9C-7A91-4381-A220-9B52B641CDB1} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\IObit Apps Toolbar\IE\7.6\iobitappsToolbarIE.dll =>PUP.Dealio
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [SearchSettings] . (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe =>Adware.SearchSettings
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\s�bastien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKUS\S-1-5-21-3358300229-1647130310-1895731599-1006\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\s�bastien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe =>.Google Inc
O16 - DPF: {861FDA2A-2B57-4BDA-8B8B-305C9D5D8604} ((no name)) - http://stream.pussyharem.com/stream/mmp2.cab
O20 - AppInit_DLLs: . (...) - C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll =>PUP.BitGuard
O23 - Service: Application Updater (Application Updater) . (.Spigot, Inc. - Application Updater.) - C:\Program Files\Application Updater\ApplicationUpdater.exe =>PUP.Dealio
O23 - Service: BitGuard (BitGuard) . (...) - C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe =>PUP.BitGuard
O23 - Service: Software Updater (SrvUpdater) . (.Pas de propri�taire - Updater.) - C:\Program Files\SoftwareUpdater\UpdaterService.exe =>PUP.Eorezo
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\EPUpdater.job [280]
O42 - Logiciel: BitGuard - (.MediaTechSoft Inc..) [HKLM] -- {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} =>PUP.BitGuard
[HKCU\Software\532dcdde569e943]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\DataMngr] =>PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Search Settings] =>Adware.SearchSettings
[HKLM\Software\532dcdde569e943]
[HKLM\Software\Babylon] =>Toolbar.Babylon
[HKLM\Software\DataMngr] =>PUP.Datamngr
[HKLM\Software\DomaIQ] =>Adware.DomaIQ
[HKLM\Software\Search Settings] =>Adware.SearchSettings
[HKLM\Software\Supreme Savings] =>PUP.RewardsArcade
O43 - CFD: 11/04/2013 - 20:04:47 - [0,041] ----D C:\Program Files\DomaIQ Uninstaller =>Adware.DomaIQ
O43 - CFD: 10/09/2013 - 19:32:27 - [1,789] ----D C:\Program Files\Fichiers communs\Spigot =>PUP.Dealio
O43 - CFD: 11/04/2013 - 20:04:45 - [0] ----D C:\Documents and Settings\All Users\Application Data\Babylon =>Toolbar.Babylon
O43 - CFD: 18/09/2013 - 18:18:07 - [8,436] ----D C:\Documents and Settings\All Users\Application Data\BitGuard =>PUP.BitGuard
O43 - CFD: 07/06/2013 - 20:24:57 - [1,500] ----D C:\Documents and Settings\s�bastien\Application Data\BabSolution =>Hijacker.BabSolution
O43 - CFD: 31/03/2013 - 05:47:28 - [0,016] ----D C:\Documents and Settings\s�bastien\Application Data\Babylon =>Toolbar.Babylon
O43 - CFD: 10/09/2013 - 19:35:35 - [0] ----D C:\Documents and Settings\s�bastien\Application Data\Search Settings =>Adware.SearchSettings
O43 - CFD: 11/04/2013 - 20:04:49 - [0] ----D C:\Documents and Settings\s�bastien\Local Settings\Application Data\Supreme Savings =>PUP.RewardsArcade
O43 - CFD: 11/04/2013 - 20:04:45 - [0,201] ----D C:\Documents and Settings\s�bastien\Local Settings\Application Data\Updater19962 =>PUP.CrossRider
O43 - CFD: 18/09/2013 - 18:21:04 - [0,001] ----D C:\Documents and Settings\s�bastien\Menu D�marrer\Programmes\BitGuard =>PUP.BitGuard
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
O64 - Services: CurCS - 02/09/2013 - C:\Program Files\Application Updater\ApplicationUpdater.exe (Application Updater) .(.Spigot, Inc. - Application Updater.) - LEGACY_APPLICATION_UPDATER =>PUP.Dealio
O64 - Services: CurCS - 13/09/2013 - Pas de propri�taire (BitGuard) .(...) - LEGACY_BITGUARD =>PUP.BitGuard
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:dllName="BrowserDefender.dll" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:exeName="BrowserDefender.exe" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:folderName="BrowserDefender" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:serviceName="BrowserDefendert" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:version="2.6.1339.144"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:dllName="BrowserDefender.dll" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:exeName="BrowserDefender.exe" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:folderName="BrowserDefender" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:serviceName="BrowserDefendert" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:version="2.6.1519.190"
[HKCU\Software\532dcdde569e943]:version="2.6.1673.238"
[HKLM\Software\532dcdde569e943]:version="2.6.1673.238"
[MD5.95DBB8FFC0E4B344A6C93F1BDF63EF9B] [WIS][10/09/2013] (.Spigot, Inc. - Widgi Toolbar.) -- C:\Windows\Installer\5860a.msi [1469440] =>PUP.Dealio
SR - | Auto 02/09/2013 807800 | (Application Updater) . (.Spigot, Inc..) - C:\Program Files\Application Updater\ApplicationUpdater.exe =>PUP.Dealio
SR - | Auto 13/09/2013 3029472 | (BitGuard) . (...) - C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe =>PUP.BitGuard
SS - | Auto 02/01/2013 31744 | (SrvUpdater) . (...) - C:\Program Files\SoftwareUpdater\UpdaterService.exe =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}] =>PUP.Dealio^
[HKLM\SYSTEM\CurrentControlSet\Services\Application Updater] =>PUP.Dealio^
[HKLM\SYSTEM\CurrentControlSet\Services\BitGuard] =>PUP.BitGuard^
[HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater] =>PUP.Eorezo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}] =>PUP.BitGuard^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Application Updater] =>PUP.Dealio
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\PartyFrance] =>Casino.OnlineGames
[HKCU\Software\Search Settings] =>PUP.Dealio
[HKCU\Software\AppDataLow\Software\Search Settings] =>PUP.Dealio
[HKLM\Software\Search Settings] =>PUP.Dealio
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9] =>PUP.Dealio
[HKCU\Software\IObit Apps] =>PUP.Dealio
[HKCU\Software\AppDataLow\Software\IObit Apps] =>PUP.Dealio
[HKLM\Software\IObit Apps] =>PUP.Dealio
[HKLM\Software\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj] =>PUP.Dealio
[HKLM\Software\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp] =>PUP.Dealio
[HKLM\Software\SoftwareUpdater] =>Hijacker.Eazel
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater] =>Hijacker.Eazel
[HKLM\Software\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk] =>PUP.Dealio
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111991162}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110111991162}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31111111-1111-1111-1111-110111991162}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{03EB0E9C-7A91-4381-A220-9B52B641CDB1} =>PUP.Dealio^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{03EB0E9C-7A91-4381-A220-9B52B641CDB1} =>PUP.Dealio^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:SearchSettings =>Adware.SearchSettings^
C:\Program Files\DomaIQ Uninstaller =>Adware.DomaIQ^
C:\Program Files\Fichiers communs\Spigot =>PUP.Dealio^
C:\Documents and Settings\All Users\Application Data\Babylon =>Toolbar.Babylon^
C:\Documents and Settings\All Users\Application Data\BitGuard =>PUP.BitGuard^
C:\Documents and Settings\s�bastien\Application Data\BabSolution =>Hijacker.BabSolution^
C:\Documents and Settings\s�bastien\Application Data\Babylon =>Toolbar.Babylon^
C:\Documents and Settings\s�bastien\Application Data\Search Settings =>Adware.SearchSettings^
C:\Documents and Settings\s�bastien\Local Settings\Application Data\Supreme Savings =>PUP.RewardsArcade^
C:\Documents and Settings\s�bastien\Local Settings\Application Data\Updater19962 =>PUP.CrossRider^
C:\Documents and Settings\s�bastien\Menu D�marrer\Programmes\BitGuard =>PUP.BitGuard^
C:\Program Files\Application Updater =>PUP.Dealio
C:\Program Files\Software =>Adware.Boxore
C:\Program Files\IObit Apps Toolbar =>PUP.Dealio
C:\Documents and Settings\All Users\Application Data\Software =>Adware.Boxore
C:\Documents and Settings\s�bastien\Local Settings\Application Data\Software =>Adware.Boxore
C:\Program Files\Application Updater\ApplicationUpdater.exe =>PUP.Dealio^
C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe =>PUP.BitGuard^
C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe =>Adware.SearchSettings^
C:\Program Files\IObit Apps Toolbar\IE\7.6\iobitappsToolbarIE.dll =>PUP.Dealio^
C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll =>PUP.BitGuard^
C:\Program Files\SoftwareUpdater\UpdaterService.exe =>PUP.Eorezo^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr^
[HKLM\Software\Babylon] =>Toolbar.Babylon^
[HKLM\Software\DomaIQ] =>Adware.DomaIQ^
[HKLM\Software\Supreme Savings] =>PUP.RewardsArcade^
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:dllName="BrowserDefender.dll" =>Hijacker.Eazel^
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:dllName="BrowserDefender.dll" =>Hijacker.Eazel^
C:\Windows\Installer\5860a.msi =>PUP.Dealio^
C:\WINDOWS\Tasks\EPUpdater.job =>Hijacker.BabSolution
O4 - GS\Program [AllUsers]: Microsoft Office.lnk . (.Microsoft Corporation - Microsoft Office 2000 component.) -- C:\Program Files\Microsoft Office\Office\OSA9.exe
O3 - Toolbar: (no name) - [HKLM]{BA52B914-B692-46c4-B683-905236F6F655} Cl� orpheline
O51 - MPSK:{03b7afe3-62ed-11d9-bc89-806d6172696f}\AutoRun\command. (...) -- D:\setup.exe (.not file.)
O51 - MPSK:{85623f25-5b1f-11d9-9b25-806d6172696f}\AutoRun\command. (...) -- D:\setup.exe (.not file.)
O51 - MPSK:{86416ee3-62ef-11d9-9e97-806d6172696f}\AutoRun\command. (...) -- D:\setup.exe (.not file.)
Pando Media Booster v2.6.0.8
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Pando Networks - Pando Web Plugin.) (No version) -- (.not file.)
O4 - HKCU\..\Run: [Pando Media Booster] . (.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-21-3358300229-1647130310-1895731599-1006\..\Run: [Pando Media Booster] . (.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
[HKCU\Software\Shareaza]
[HKCU\Software\TorrentAid]
O47 - AAKE:Key Export SP - "C:\Program Files\LimeWire\LimeWire.exe" [Enabled] .(...) -- C:\Program Files\LimeWire\LimeWire.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Pando Networks\Media Booster\PMB.exe" [Enabled] .(..) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Pando Networks\Media Booster\PMB.exe" [Enabled] .(..) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
O43 - CFD: 11/04/2013 - 20:04:44 - [1,200] ----D C:\Documents and Settings\All Users\Application Data\Tarma Installer =>Toolbar.Tarma
O44 - LFC:[MD5.FDA4EF47034D8CA2C6D9E95340AD6A98] - 10/09/2013 - 18:35:14 ---A- . (...) -- C:\prefs.js [364]
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com =>Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {FA59B554-6781-4C2F-B8FA-C8FA14E5D59E} [DefaultScope] - (Yahoo! Search) - http://fr.search.yahoo.com =>Toolbar.Yahoo
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
C:\Documents and Settings\All Users\Application Data\Tarma Installer =>Toolbar.Tarma^
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo^
[MD5.72116413CF0092A6DFB4BF7775EF7E0F] - (.Spigot, Inc. - Application Updater.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe [807800] [PID.860] =>PUP.Dealio
[MD5.7F8BECFB26F2655E281406C6C341F416] - (...) -- C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3029472] [PID.940] =>PUP.BitGuard
[MD5.C99645952FDA42584FE101C0B90D979A] - (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe [1360192] [PID.3088] =>Adware.SearchSettings
R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} . (.Pando Networks - Pando Web Plugin.) (No version) -- (.not file.) =>PUP.Dealio
O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\IObit Apps Toolbar\IE\7.6\iobitappsToolbarIE.dll =>PUP.Dealio
O3 - Toolbar: IObit Apps Toolbar - [HKLM]{03EB0E9C-7A91-4381-A220-9B52B641CDB1} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\IObit Apps Toolbar\IE\7.6\iobitappsToolbarIE.dll =>PUP.Dealio
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [SearchSettings] . (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe =>Adware.SearchSettings
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\s�bastien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKUS\S-1-5-21-3358300229-1647130310-1895731599-1006\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\s�bastien\Local Settings\Application Data\Google\Update\GoogleUpdate.exe =>.Google Inc
O16 - DPF: {861FDA2A-2B57-4BDA-8B8B-305C9D5D8604} ((no name)) - http://stream.pussyharem.com/stream/mmp2.cab
O20 - AppInit_DLLs: . (...) - C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll =>PUP.BitGuard
O23 - Service: Application Updater (Application Updater) . (.Spigot, Inc. - Application Updater.) - C:\Program Files\Application Updater\ApplicationUpdater.exe =>PUP.Dealio
O23 - Service: BitGuard (BitGuard) . (...) - C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe =>PUP.BitGuard
O23 - Service: Software Updater (SrvUpdater) . (.Pas de propri�taire - Updater.) - C:\Program Files\SoftwareUpdater\UpdaterService.exe =>PUP.Eorezo
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\EPUpdater.job [280]
O42 - Logiciel: BitGuard - (.MediaTechSoft Inc..) [HKLM] -- {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} =>PUP.BitGuard
[HKCU\Software\532dcdde569e943]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\DataMngr] =>PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Search Settings] =>Adware.SearchSettings
[HKLM\Software\532dcdde569e943]
[HKLM\Software\Babylon] =>Toolbar.Babylon
[HKLM\Software\DataMngr] =>PUP.Datamngr
[HKLM\Software\DomaIQ] =>Adware.DomaIQ
[HKLM\Software\Search Settings] =>Adware.SearchSettings
[HKLM\Software\Supreme Savings] =>PUP.RewardsArcade
O43 - CFD: 11/04/2013 - 20:04:47 - [0,041] ----D C:\Program Files\DomaIQ Uninstaller =>Adware.DomaIQ
O43 - CFD: 10/09/2013 - 19:32:27 - [1,789] ----D C:\Program Files\Fichiers communs\Spigot =>PUP.Dealio
O43 - CFD: 11/04/2013 - 20:04:45 - [0] ----D C:\Documents and Settings\All Users\Application Data\Babylon =>Toolbar.Babylon
O43 - CFD: 18/09/2013 - 18:18:07 - [8,436] ----D C:\Documents and Settings\All Users\Application Data\BitGuard =>PUP.BitGuard
O43 - CFD: 07/06/2013 - 20:24:57 - [1,500] ----D C:\Documents and Settings\s�bastien\Application Data\BabSolution =>Hijacker.BabSolution
O43 - CFD: 31/03/2013 - 05:47:28 - [0,016] ----D C:\Documents and Settings\s�bastien\Application Data\Babylon =>Toolbar.Babylon
O43 - CFD: 10/09/2013 - 19:35:35 - [0] ----D C:\Documents and Settings\s�bastien\Application Data\Search Settings =>Adware.SearchSettings
O43 - CFD: 11/04/2013 - 20:04:49 - [0] ----D C:\Documents and Settings\s�bastien\Local Settings\Application Data\Supreme Savings =>PUP.RewardsArcade
O43 - CFD: 11/04/2013 - 20:04:45 - [0,201] ----D C:\Documents and Settings\s�bastien\Local Settings\Application Data\Updater19962 =>PUP.CrossRider
O43 - CFD: 18/09/2013 - 18:21:04 - [0,001] ----D C:\Documents and Settings\s�bastien\Menu D�marrer\Programmes\BitGuard =>PUP.BitGuard
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
O64 - Services: CurCS - 02/09/2013 - C:\Program Files\Application Updater\ApplicationUpdater.exe (Application Updater) .(.Spigot, Inc. - Application Updater.) - LEGACY_APPLICATION_UPDATER =>PUP.Dealio
O64 - Services: CurCS - 13/09/2013 - Pas de propri�taire (BitGuard) .(...) - LEGACY_BITGUARD =>PUP.BitGuard
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:dllName="BrowserDefender.dll" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:exeName="BrowserDefender.exe" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:folderName="BrowserDefender" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:serviceName="BrowserDefendert" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:version="2.6.1339.144"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:dllName="BrowserDefender.dll" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:exeName="BrowserDefender.exe" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:folderName="BrowserDefender" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:serviceName="BrowserDefendert" =>Hijacker.Eazel
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:version="2.6.1519.190"
[HKCU\Software\532dcdde569e943]:version="2.6.1673.238"
[HKLM\Software\532dcdde569e943]:version="2.6.1673.238"
[MD5.95DBB8FFC0E4B344A6C93F1BDF63EF9B] [WIS][10/09/2013] (.Spigot, Inc. - Widgi Toolbar.) -- C:\Windows\Installer\5860a.msi [1469440] =>PUP.Dealio
SR - | Auto 02/09/2013 807800 | (Application Updater) . (.Spigot, Inc..) - C:\Program Files\Application Updater\ApplicationUpdater.exe =>PUP.Dealio
SR - | Auto 13/09/2013 3029472 | (BitGuard) . (...) - C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe =>PUP.BitGuard
SS - | Auto 02/01/2013 31744 | (SrvUpdater) . (...) - C:\Program Files\SoftwareUpdater\UpdaterService.exe =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}] =>PUP.Dealio^
[HKLM\SYSTEM\CurrentControlSet\Services\Application Updater] =>PUP.Dealio^
[HKLM\SYSTEM\CurrentControlSet\Services\BitGuard] =>PUP.BitGuard^
[HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater] =>PUP.Eorezo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}] =>PUP.BitGuard^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Application Updater] =>PUP.Dealio
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\PartyFrance] =>Casino.OnlineGames
[HKCU\Software\Search Settings] =>PUP.Dealio
[HKCU\Software\AppDataLow\Software\Search Settings] =>PUP.Dealio
[HKLM\Software\Search Settings] =>PUP.Dealio
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9] =>PUP.Dealio
[HKCU\Software\IObit Apps] =>PUP.Dealio
[HKCU\Software\AppDataLow\Software\IObit Apps] =>PUP.Dealio
[HKLM\Software\IObit Apps] =>PUP.Dealio
[HKLM\Software\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj] =>PUP.Dealio
[HKLM\Software\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp] =>PUP.Dealio
[HKLM\Software\SoftwareUpdater] =>Hijacker.Eazel
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater] =>Hijacker.Eazel
[HKLM\Software\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk] =>PUP.Dealio
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111991162}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110111991162}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31111111-1111-1111-1111-110111991162}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{03EB0E9C-7A91-4381-A220-9B52B641CDB1} =>PUP.Dealio^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{03EB0E9C-7A91-4381-A220-9B52B641CDB1} =>PUP.Dealio^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:SearchSettings =>Adware.SearchSettings^
C:\Program Files\DomaIQ Uninstaller =>Adware.DomaIQ^
C:\Program Files\Fichiers communs\Spigot =>PUP.Dealio^
C:\Documents and Settings\All Users\Application Data\Babylon =>Toolbar.Babylon^
C:\Documents and Settings\All Users\Application Data\BitGuard =>PUP.BitGuard^
C:\Documents and Settings\s�bastien\Application Data\BabSolution =>Hijacker.BabSolution^
C:\Documents and Settings\s�bastien\Application Data\Babylon =>Toolbar.Babylon^
C:\Documents and Settings\s�bastien\Application Data\Search Settings =>Adware.SearchSettings^
C:\Documents and Settings\s�bastien\Local Settings\Application Data\Supreme Savings =>PUP.RewardsArcade^
C:\Documents and Settings\s�bastien\Local Settings\Application Data\Updater19962 =>PUP.CrossRider^
C:\Documents and Settings\s�bastien\Menu D�marrer\Programmes\BitGuard =>PUP.BitGuard^
C:\Program Files\Application Updater =>PUP.Dealio
C:\Program Files\Software =>Adware.Boxore
C:\Program Files\IObit Apps Toolbar =>PUP.Dealio
C:\Documents and Settings\All Users\Application Data\Software =>Adware.Boxore
C:\Documents and Settings\s�bastien\Local Settings\Application Data\Software =>Adware.Boxore
C:\Program Files\Application Updater\ApplicationUpdater.exe =>PUP.Dealio^
C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe =>PUP.BitGuard^
C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe =>Adware.SearchSettings^
C:\Program Files\IObit Apps Toolbar\IE\7.6\iobitappsToolbarIE.dll =>PUP.Dealio^
C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll =>PUP.BitGuard^
C:\Program Files\SoftwareUpdater\UpdaterService.exe =>PUP.Eorezo^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr^
[HKLM\Software\Babylon] =>Toolbar.Babylon^
[HKLM\Software\DomaIQ] =>Adware.DomaIQ^
[HKLM\Software\Supreme Savings] =>PUP.RewardsArcade^
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:dllName="BrowserDefender.dll" =>Hijacker.Eazel^
[HKCU\Software\532dcdde569e943\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:dllName="BrowserDefender.dll" =>Hijacker.Eazel^
C:\Windows\Installer\5860a.msi =>PUP.Dealio^
C:\WINDOWS\Tasks\EPUpdater.job =>Hijacker.BabSolution
O4 - GS\Program [AllUsers]: Microsoft Office.lnk . (.Microsoft Corporation - Microsoft Office 2000 component.) -- C:\Program Files\Microsoft Office\Office\OSA9.exe
O3 - Toolbar: (no name) - [HKLM]{BA52B914-B692-46c4-B683-905236F6F655} Cl� orpheline
O51 - MPSK:{03b7afe3-62ed-11d9-bc89-806d6172696f}\AutoRun\command. (...) -- D:\setup.exe (.not file.)
O51 - MPSK:{85623f25-5b1f-11d9-9b25-806d6172696f}\AutoRun\command. (...) -- D:\setup.exe (.not file.)
O51 - MPSK:{86416ee3-62ef-11d9-9e97-806d6172696f}\AutoRun\command. (...) -- D:\setup.exe (.not file.)
Pando Media Booster v2.6.0.8
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Pando Networks - Pando Web Plugin.) (No version) -- (.not file.)
O4 - HKCU\..\Run: [Pando Media Booster] . (.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-21-3358300229-1647130310-1895731599-1006\..\Run: [Pando Media Booster] . (.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
[HKCU\Software\Shareaza]
[HKCU\Software\TorrentAid]
O47 - AAKE:Key Export SP - "C:\Program Files\LimeWire\LimeWire.exe" [Enabled] .(...) -- C:\Program Files\LimeWire\LimeWire.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Pando Networks\Media Booster\PMB.exe" [Enabled] .(..) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Pando Networks\Media Booster\PMB.exe" [Enabled] .(..) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
O43 - CFD: 11/04/2013 - 20:04:44 - [1,200] ----D C:\Documents and Settings\All Users\Application Data\Tarma Installer =>Toolbar.Tarma
O44 - LFC:[MD5.FDA4EF47034D8CA2C6D9E95340AD6A98] - 10/09/2013 - 18:35:14 ---A- . (...) -- C:\prefs.js [364]
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com =>Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {FA59B554-6781-4C2F-B8FA-C8FA14E5D59E} [DefaultScope] - (Yahoo! Search) - http://fr.search.yahoo.com =>Toolbar.Yahoo
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
C:\Documents and Settings\All Users\Application Data\Tarma Installer =>Toolbar.Tarma^
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo^