cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
[MD5.CBB55C7BED11FE4F995159BCA9904A29] - (.Somoto - FilesFrog.com Update Checker.) -- C:\Users\Faical\AppData\Local\FilesFrog Update Checker\update_checker.exe [208952] [PID.4152] =>Adware.MegaSearch
M3 - MFPP: Plugins - [Faical] -- C:\Users\Faical\AppData\Roaming\Mozilla\Firefox\Profiles\sdphu30p.default\searchplugins\babylon.xml =>PUP.Babylon
M3 - MFPP: Plugins - [Faical] -- C:\Users\Faical\AppData\Roaming\Mozilla\Firefox\Profiles\sdphu30p.default\searchplugins\BrowserProtect.xml =>Hijacker.Eazel
M3 - MFPP: Plugins - [Faical] -- C:\Users\Faical\AppData\Roaming\Mozilla\Firefox\Profiles\sdphu30p.default\searchplugins\delta.xml =>Toolbar.DeltaSearch
M2 - MFEP: prefs.js [Faical - sdphu30p.default\addon@Vonteera.com] [] Vonteera Safe ads v (..) =>Trojan.Vonteera
M2 - MFEP: prefs.js [Faical - sdphu30p.default\plugin@getwebcake.com] [] WebCake v1.00.01 (..) =>Adware.WebCake
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
O2 - BHO: SearchNewTab [64Bits] - {9E9AC80B-E5FE-5CAD-E6E7-B050E1279DED} . (...) -- C:\ProgramData\SearchNewTab\51a5759b9c0c8.dll =>Adware.FastSaveApp
O3 - Toolbar: Bing Bar - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation. - Bing Client Extensions.) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll =>Toolbar.Bing
O4 - GS\QuickLaunch [Faical]: QQPlayer.lnk . (. Tencent Inc - QQ Player.) -- C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>Adware.TencentAddressBar
O4 - GS\TaskBar [Faical]: Flvto Youtube Downloader.lnk . (...) -- C:\Users\Faical\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe =>PUP.Dealio
O4 - GS\TaskBar [Faical]: QQPlayer.lnk . (. Tencent Inc - QQ Player.) -- C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>Adware.TencentAddressBar
O4 - GS\Desktop [Faical]: Flvto Youtube Downloader.lnk . (...) -- C:\Users\Faical\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe =>PUP.Dealio
O4 - GS\Desktop [Faical]: QQPlayer.lnk . (. Tencent Inc - QQ Player.) -- C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>Adware.TencentAddressBar
O4 - HKUS\S-1-5-21-3392307531-344351214-688455049-1001\..\Run: [AdobeBridge] Clé orpheline
[MD5.F64487396AB10165DC80BC15CF854D31] [APT] [EPUpdater] (...) -- C:\Users\Faical\AppData\Roaming\BabSolution\Shared\BabMaint.exe [10320] =>Hijacker.BabSolution
[MD5.CBB55C7BED11FE4F995159BCA9904A29] [APT] [SomotoUpdateCheckerAutoStart] (.Somoto.) -- C:\Users\Faical\AppData\Local\FilesFrog Update Checker\update_checker.exe [208952] =>Adware.MegaSearch
[MD5.9EC72B7CE86BCFD675DF4FEBAD15DBCA] [APT] [Volaro Update] (.Volaro.) -- C:\Program Files (x86)\Volaro\Updater\Updater.exe [280400] =>Trojan.Vonteera
[MD5.2426DD55AAA458DD20DF4B15B6BC87FB] [APT] [{4EA0DA0E-E107-49C6-B50A-8A9ED74D320E}] (.Tencent.) -- C:\Users\Faical\Downloads\Programs\QQPlayer_Setup_French.exe [30505302] =>Adware.TencentAddressBar
O42 - Logiciel: ContinueToSave 1.74 - (...) [HKLM][64Bits] -- SP_e14dcdfa =>PUP.Offerware
O42 - Logiciel: SearchNewTab - (.SearchNewTab.) [HKLM][64Bits] -- {C670DCAE-E392-AA32-6F42-143C7FC4BDFD} =>Adware.FastSaveApp
O42 - Logiciel: Volaro Updater - (.Volaro.) [HKLM][64Bits] -- Volaro Updater =>Trojan.Vonteera
O42 - Logiciel: Vonteera - (.Vonteera.) [HKLM][64Bits] -- Vonteera =>Trojan.Vonteera
O42 - Logiciel: WebCake 3.00 - (.WebCake LLC.) [HKLM][64Bits] -- {C4ED781C-7394-4906-AAFF-D6AB64FF7C38} =>Adware.WebCake
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\BI]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\DataMngr] =>PUP.Datamngr
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Somoto] =>Adware.MegaSearch
[HKCU\Software\Tencent] =>Adware.TencentAddressBar
[HKCU\Software\Volaro] =>Trojan.Vonteera
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon
[HKLM\Software\Wow6432Node\DataMngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.Mocaflix
[HKLM\Software\Wow6432Node\Tencent] =>Adware.TencentAddressBar
[HKLM\Software\Wow6432Node\Vontera]
O43 - CFD: 29/05/2013 - 01:40:45 - [1,473] ----D C:\Program Files (x86)\ContinueToSave =>PUP.OfferWare
O43 - CFD: 28/05/2013 - 23:40:18 - [89,261] ----D C:\Program Files (x86)\Tencent =>Adware.TencentAddressBar
O43 - CFD: 24/07/2013 - 14:46:25 - [0,333] ----D C:\Program Files (x86)\Volaro =>Trojan.Vonteera
O43 - CFD: 29/08/2013 - 14:56:02 - [0,130] ----D C:\Program Files (x86)\VonteeraAddon =>Trojan.Vonteera
O43 - CFD: 08/06/2013 - 14:54:16 - [0,050] ----D C:\Program Files (x86)\Common Files\Spigot =>PUP.Dealio
O43 - CFD: 29/05/2013 - 02:03:33 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 30/09/2013 - 17:06:41 - [0,147] ----D C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch
O43 - CFD: 05/07/2013 - 01:47:58 - [0,001] ----D C:\ProgramData\IBUpdaterService =>Adware.InstallBrain
O43 - CFD: 29/05/2013 - 01:46:10 - [1,621] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 29/05/2013 - 01:42:43 - [0,179] ----D C:\ProgramData\SearchNewTab =>Adware.FastSaveApp
O43 - CFD: 09/06/2013 - 17:28:09 - [2,726] ----D C:\ProgramData\Tarma Installer =>PUP.Tarma
O43 - CFD: 21/06/2013 - 02:21:22 - [0] ----D C:\ProgramData\Tencent =>Adware.TencentAddressBar
O43 - CFD: 05/07/2013 - 01:47:06 - [1,248] ----D C:\Users\Faical\AppData\Roaming\BabSolution =>Hijacker.BabSolution
O43 - CFD: 29/05/2013 - 02:03:33 - [0,030] ----D C:\Users\Faical\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 29/05/2013 - 01:43:34 - [0] ----D C:\Users\Faical\AppData\Roaming\NCdownloader
O43 - CFD: 21/06/2013 - 02:21:22 - [1,648] ----D C:\Users\Faical\AppData\Roaming\Tencent =>Adware.TencentAddressBar
O43 - CFD: 29/05/2013 - 14:35:53 - [0] -SH-D C:\Users\Faical\AppData\Local\ms-drivers
O43 - CFD: 12/06/2013 - 03:26:49 - [0] ----D C:\Users\Faical\AppData\Local\Win7UI
O43 - CFD: 28/05/2013 - 23:40:30 - [0,004] ----D C:\Users\Faical\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar
O43 - CFD: 09/06/2013 - 17:27:30 - [0,002] ----D C:\Users\Faical\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com =>Hijacker.TornTV
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("extensions.BabylonToolbar.prtkDS", 0); =>PUP.Babylon
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("extensions.BabylonToolbar.prtkHmpg", 0); =>PUP.Babylon
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.previous.browser.startup.homepage", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.previous.keyword.URL", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ".*"); =>PUP.SweetIM
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "1"); =>PUP.SweetIM
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "1"); =>PUP.SweetIM
O69 - SBI: prefs.js [Faical - sdphu30p.default] user_pref("sweetim.toolbar.searchguard.enable", "false"); =>PUP.SweetIM
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (SearchGol) - http://www.searchgol.com =>Hijacker.SearchGol
O69 - SBI: SearchScopes [HKCU] {2fa28606-de77-4029-af96-b231e3b8f827} - (Ask.com) - http://eu.ask.com
[MD5.2D10A980CC1539C4CA29387E82267B4D] [SPRF][26/01/2014] (.Somoto Ltd. - FLV Player.) -- C:\Users\Faical\AppData\Local\Temp\FLVPlayerSetup.exe [279752] =>Adware.MegaSearch
[MD5.0B62417DA5719B3EA1D343DA3431C97F] [SPRF][26/01/2014] (.Pas de propriétaire - Powered by BetterInstaller.) -- C:\Users\Faical\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe [167544] =>Adware.MegaSearch
O87 - FAEL: "TCP Query User{8DAF19A5-BABF-4766-BCA5-08A8CBF478A2}C:\program files (x86)\tencent\qqplayer\qqplayer.exe" | In - Private - P6 - TRUE | .(. Tencent Inc - QQ Player.) -- C:\program files (x86)\tencent\qqplayer\qqplayer.exe =>Adware.TencentAddressBar
O87 - FAEL: "UDP Query User{9FB89DDD-F527-4090-93EE-B007BF17E845}C:\program files (x86)\tencent\qqplayer\qqplayer.exe" | In - Private - P17 - TRUE | .(. Tencent Inc - QQ Player.) -- C:\program files (x86)\tencent\qqplayer\qqplayer.exe =>Adware.TencentAddressBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E9AC80B-E5FE-5CAD-E6E7-B050E1279DED}] =>Adware.FastSaveApp^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SP_e14dcdfa] =>PUP.Offerware^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}] =>Adware.FastSaveApp^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Volaro Updater] =>Trojan.Vonteera^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vonteera] =>Trojan.Vonteera^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}] =>Adware.WebCake^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] =>P2P.BitTorrent^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>PUP.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}] =>PUP.Babylon
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr] =>Adware.Bandoo
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKCU\Software\AppDataLow\Software\Search Settings] =>PUP.Dealio
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Somoto] =>Adware.MegaSearch
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKCU\Software\AppDataLow\SProtector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>PUP.Babylon
[HKLM\Software\Classes\AppID\VONTEERA.DLL] =>Trojan.Vonteera
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}] =>Adware.Browse2Save
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller] =>Adware.MegaSearch
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}] =>Adware.MagniPic
[HKLM\Software\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}] =>Adware.MagniPic
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj] =>PUP.Dealio
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp] =>PUP.Dealio
[HKCU\Software\BI] =>Adware.MegaSearch
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk] =>PUP.Dealio
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh] =>Adware.WebCake
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje] =>Hijacker.TornTV
[HKLM\Software\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASAPI32] =>Adware.WebCake
[HKLM\Software\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASMANCS] =>Adware.WebCake
[HKLM\Software\Classes\AppID\WebCakeIEClient.DLL] =>
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{8dcb7100-df86-4384-8842-8fa844297b3f} =>Toolbar.Bing^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent =>P2P.BitTorrent^
C:\Users\Faical\AppData\Roaming\Mozilla\Firefox\Profiles\sdphu30p.default\extensions\addon@Vonteera.com =>Trojan.Vonteera^
C:\Users\Faical\AppData\Roaming\Mozilla\Firefox\Profiles\sdphu30p.default\extensions\plugin@getwebcake.com =>Adware.WebCake^
C:\Program Files (x86)\ContinueToSave =>PUP.OfferWare^
C:\Program Files (x86)\Tencent =>Adware.TencentAddressBar^
C:\Program Files (x86)\Volaro =>Trojan.Vonteera^
C:\Program Files (x86)\VonteeraAddon =>Trojan.Vonteera^
C:\Program Files (x86)\Common Files\Spigot =>PUP.Dealio^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch^
C:\ProgramData\IBUpdaterService =>Adware.InstallBrain^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\SearchNewTab =>Adware.FastSaveApp^
C:\ProgramData\Tarma Installer =>PUP.Tarma^
C:\ProgramData\Tencent =>Adware.TencentAddressBar^
C:\Users\Faical\AppData\Roaming\BabSolution =>Hijacker.BabSolution^
C:\Users\Faical\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\Faical\AppData\Roaming\Tencent =>Adware.TencentAddressBar^
C:\Users\Faical\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar^
C:\Users\Faical\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com =>Hijacker.TornTV^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SearchNewTab =>Adware.FastSaveApp
C:\Users\Faical\AppData\Local\Bundled software uninstaller =>Adware.MegaSearch
C:\Users\Faical\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Faical\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent^
C:\Users\Faical\AppData\Local\FilesFrog Update Checker\update_checker.exe =>Adware.MegaSearch^
C:\Users\Faical\AppData\Roaming\BabSolution\Shared\BabMaint.exe =>Hijacker.BabSolution^
C:\Program Files (x86)\Volaro\Updater\Updater.exe =>Trojan.Vonteera^
C:\Users\Faical\Downloads\Programs\QQPlayer_Setup_French.exe =>Adware.TencentAddressBar^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\Tencent] =>Adware.TencentAddressBar^
[HKCU\Software\Volaro] =>Trojan.Vonteera^
[HKCU\Software\iLivid] =>Adware.Bandoo^
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon^
[HKLM\Software\Wow6432Node\Tencent] =>Adware.TencentAddressBar^
C:\Users\Faical\AppData\Local\Temp\FLVPlayerSetup.exe =>Adware.MegaSearch^
C:\Users\Faical\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe =>Adware.MegaSearch^

EmptyFlash
EmptyTemp
EmptyClsid
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité