cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFIX
B1 - OSP: search.ini [utilisateur] URL=http://start.mysearchdial.com/?f=4&q=%s =>Adware.MyWebSearch
G2 - GCE: Preference [User Data\Default] [pflphaooapbgpeakohlggbpidpppgdff] MySearchDial Nouvel onglet v.9.4.1.1 (D�sactiv�) =>Adware.MyWebSearch
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://allssearch.com =>Adware.SocialSkinz
O4 - GS\QuickLaunch [utilisateur]: BearShare.lnk . (...) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe (.not file.) =>PUP.BearShare
O23 - Service: Util Lizardlink (Util Lizardlink) . (...) - C:\Program Files (x86)\Lizardlink\bin\utilLizardlink.exe (.not file.) =>PUP.LizardLink
[MD5.00000000000000000000000000000000] [APT] [YourFile DownloaderUpdate] (...) -- C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe (.not file.) [0] =>PUP.YourFileDownloader
O42 - Logiciel: BearShare - (.Musiclab, LLC.) [HKLM][64Bits] -- BearShare =>PUP.BearShare
O42 - Logiciel: BearShare - (.Musiclab, LLC.) [HKLM][64Bits] -- {5F624839-947D-46EA-BD63-FD847C1AC6F1} =>PUP.BearShare
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {497BCFDD-F589-448D-A1C3-78D1B1809CCC} =>Adware.Boxore
O42 - Logiciel: PackBarre - (.BPMconcept.) [HKLM][64Bits] -- {6CD11532-5229-4D23-B747-455BD759E6B2} =>Adware.ADON
[HKCU\Software\BearShare] =>PUP.BearShare
O43 - CFD: 10/12/2012 - 18:48:41 - [0,283] ----D C:\Program Files (x86)\PackBarre =>Adware.ADON
O43 - CFD: 10/04/2012 - 13:45:44 - [0] ----D C:\Program Files (x86)\WIA6EB~1
O43 - CFD: 03/11/2012 - 18:33:47 - [0,079] ----D C:\ProgramData\BearShare =>PUP.BearShare
O43 - CFD: 20/11/2013 - 20:39:57 - [1,163] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 03/04/2013 - 18:45:51 - [80,844] ----D C:\Users\utilisateur\AppData\Local\BearShare =>PUP.BearShare
O43 - CFD: 10/12/2012 - 18:48:41 - [0,003] ----D C:\Users\utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PackBarre =>Adware.ADON
[MD5.0EEC37DF948EC3C927EA1A8468FCA41C] [SPRF][03/11/2012] (.SearchAmong - SearchAmong Toolbar Setup.) -- C:\Users\utilisateur\AppData\Roaming\satoolbar.exe [419554] =>Adware.SearchAmong
[MD5.DA5481078C6FFFA59E9F52AA7D47E836] [SPRF][03/11/2012] (.VIO - VIO Player Setup.) -- C:\Users\utilisateur\AppData\Roaming\vio_clean.exe [6312677] =>PUP.VIOPlayer
O87 - FAEL: "{E46A4AF3-3497-40CC-AE07-6802C5FE42E5}" |In - Domain - P6 - TRUE | .(...) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe (.not file.) =>PUP.BearShare
O87 - FAEL: "{E3F76787-7310-4174-9FE8-6EF906AB100A}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe (.not file.) =>PUP.BearShare
O87 - FAEL: "{3F15D0A6-31F6-4046-9554-F432F11EED7B}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe (.not file.) =>PUP.BearShare
O87 - FAEL: "{6C76A60C-25BB-4754-89F8-4FD4E5C1E80D}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe (.not file.) =>PUP.BearShare
O87 - FAEL: "{ADF0AB10-382A-4DB7-9BA7-2C400E4E1669}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.) =>Adware.IMBooster
O87 - FAEL: "{A06D799E-5990-4605-A0C3-63C5CB3FD65D}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) =>Adware.IMBooster
O90 - PUC: "ACFD5B980E184AE4A8A0F404781ADD00" . (.Iminent.) -- C:\windows\Installer\{89B5DFCA-81E0-4EA4-8A0A-4F4087A1DD00}\imbooster.ico =>Adware.IMBooster
[MD5.A0590270512544B4424A2AE9A13C398B] [WIS][10/12/2012] (.BPMconcept - PackBarre.) -- C:\Windows\Installer\300908.msi [1650688] =>Adware.ADON
[MD5.2B4435B8A24C72CB360B64EB4397D43A] [WIS][10/03/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\3a39f4e.msi [45056] =>Adware.Boxore
[MD5.3F13781D8AF0D9B0495FE4301F71F99A] [WIS][30/05/2012] (.Babylon Ltd - BabylonObjectInstaller.) -- C:\Windows\Installer\690a96e.msi [346624] =>PUP.Babylon
[MD5.1953D111995478009B374D4CEE77414D] [WIS][03/11/2012] (.Musiclab, LLC - BearShare.) -- C:\Windows\Installer\69944c3.msi [335872] =>PUP.BearShare
[MD5.EABB50794F7B1CBC4C219B29F73E4151] [WIS][16/03/2012] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\7a192.msi [1540096] =>Adware.Boxore
[MD5.A672E4C77ED7CCC851575B10B46CC8AD] [WIS][24/04/2012] (.IMinent - IMinent Toolbar.) -- C:\Windows\Installer\e90399.msi [1019392] =>Adware.IMBooster
SS - | Auto 10/07/1658 0 | (Util Lizardlink) . (...) - C:\Program Files (x86)\Lizardlink\bin\utilLizardlink.exe =>PUP.LizardLink
[HKLM\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff] =>Adware.MyWebSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\Util Lizardlink] =>PUP.LizardLink^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\BearShare] =>PUP.BearShare^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F624839-947D-46EA-BD63-FD847C1AC6F1}] =>PUP.BearShare^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{497BCFDD-F589-448D-A1C3-78D1B1809CCC}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6CD11532-5229-4D23-B747-455BD759E6B2}] =>Adware.ADON^
[HKLM\Software\Classes\AppID\BearShare.exe] =>PUP.BearShare
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKCU\Software\Classes\MF] =>PUP.MediaFinder
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193] =>PUP.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5C8B5FB7CB5DD447A0BAAAF637FBD77] =>PUP.ClaroSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF96568971BEAC14B8815883832BD484] =>PUP.ClaroSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff =>Adware.MyWebSearch^
C:\Program Files (x86)\PackBarre =>Adware.ADON^
C:\ProgramData\BearShare =>PUP.BearShare^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\Users\utilisateur\AppData\Local\BearShare =>PUP.BearShare^
C:\Users\utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PackBarre =>Adware.ADON^
C:\Program Files (x86)\OneStopSoft.com =>PUP.Dealio
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneStopSoft.com =>PUP.Dealio
[HKCU\Software\BearShare] =>PUP.BearShare^
C:\Users\utilisateur\AppData\Roaming\satoolbar.exe =>Adware.SearchAmong^
C:\Users\utilisateur\AppData\Roaming\vio_clean.exe =>PUP.VIOPlayer^
C:\Windows\Installer\300908.msi =>Adware.ADON^
C:\Windows\Installer\3a39f4e.msi =>Adware.Boxore^
C:\Windows\Installer\690a96e.msi =>PUP.Babylon^
C:\Windows\Installer\69944c3.msi =>PUP.BearShare^
C:\Windows\Installer\7a192.msi =>Adware.Boxore^
C:\Windows\Installer\e90399.msi =>Adware.IMBooster^
O4 - GS\Program [Public]: Documentation d'aide de Dell.lnk . (...) -- C:\Program Files (x86)\Dell Inc\Dell Edoc Viewer\EDocs.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Antivirus Scheduled Scan] (...) -- C:\Program Files (x86)\AD-AWA~1\AdAwareLauncher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{2590D8BE-A1FF-43E6-84E8-E07A895F1E84}] (...) -- C:\Program Files (x86)\InstallShield Installation Information\{F84B62D4-2F12-4F17-A274-ADA8032EB44B}\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{2D6CDF10-D03B-40EA-AA9B-0CB329FFB4DD}] (...) -- C:\Users\utilisateur\Desktop\K�vin\WinSetupFromUSB-0.1.1.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{6A8B9D19-128B-4ECF-BBE6-B8FCA29E9C53}] (...) -- C:\Users\utilisateur\Desktop\K�vin\android-sdk-windows\SDK Manager.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C26BE8D4-3FE2-4BBC-ACA2-D4C2830C70DD}] (...) -- C:\Users\utilisateur\Downloads\lc4setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EE5C0413-5004-4ACB-BA60-C714CDFE74BE}] (...) -- C:\Users\utilisateur\Desktop\IconTweaker.exe (.not file.) [0]
[HKCU\Software\IncrediMail]
[HKCU\Software\MoneyMillionnaire]
O43 - CFD: 16/03/2013 - 13:46:07 - [0] ----D C:\Program Files (x86)\GUM8B46.tmp
O43 - CFD: 05/09/2013 - 08:24:18 - [1,272] ----D C:\ProgramData\Ad-Aware Browsing Protection
O43 - CFD: 15/03/2012 - 16:12:46 - [0] ----D C:\Users\utilisateur\AppData\Local\SEWERIN
O44 - LFC:[MD5.9C247B07208F3FF3947239DC188EBED7] - 07/01/2014 - 20:35:52 ---A- . (...) -- C:\DiskDefrag.log [75]
O44 - LFC:[MD5.430C90807DD17DC2F6C2BB829BD695F5] - 08/01/2014 - 16:43:49 ---A- . (...) -- C:\Windows\pvsw.log [6470]
O45 - LFCP:[MD5.52ED27541E22B430792A3D5A1648EC6C] - 07/01/2014 - 20:36:37 ---A- - C:\Windows\Prefetch\STAPPDRVPLG.EXE-4E1E490F.pf
O45 - LFCP:[MD5.03EA981485C3CF67A1A82B4344E22625] - 07/01/2014 - 20:36:37 ---A- - C:\Windows\Prefetch\UPGRADEPLG.EXE-3AD339B2.pf
O45 - LFCP:[MD5.63C2D6E8C01B274915B3C084C0C5A162] - 07/01/2014 - 20:37:04 ---A- - C:\Windows\Prefetch\PSTRESTOREEXTPLG.EXE-CAB15C1A.pf
O45 - LFCP:[MD5.A76975EBD7010B58679A871DBDB388B4] - 07/01/2014 - 20:37:26 ---A- - C:\Windows\Prefetch\SFTVSS64.EXE-47034904.pf
O45 - LFCP:[MD5.C8FBF5C03A9F094B74FB20415F41EE8A] - 07/01/2014 - 20:37:27 ---A- - C:\Windows\Prefetch\CHECKQUOTASPLG.EXE-B57DAF00.pf
O45 - LFCP:[MD5.ED0D2814A5C7BDDF5453B56EB318DC91] - 07/01/2014 - 20:37:27 ---A- - C:\Windows\Prefetch\DATASAFE.EXE-27429C3A.pf
O45 - LFCP:[MD5.012A582880366DC1712EE8E348E1D795] - 07/01/2014 - 20:37:27 ---A- - C:\Windows\Prefetch\FRESTOREPLG.EXE-91A9C5CA.pf
O45 - LFCP:[MD5.7A250348D108B70F6ADD7B7017B53685] - 07/01/2014 - 20:37:27 ---A- - C:\Windows\Prefetch\SCHEDULERPLG.EXE-2C7D55F8.pf
O45 - LFCP:[MD5.8BEC6DB3AA6469FD8F3568D235B316EE] - 07/01/2014 - 20:37:27 ---A- - C:\Windows\Prefetch\SETMUILANGUAGE.EXE-75C1693C.pf
O45 - LFCP:[MD5.B2D28986DDB5884ED056C4FFCD4F69B7] - 07/01/2014 - 20:37:27 ---A- - C:\Windows\Prefetch\STRESTOREPLG.EXE-419FD2A5.pf
O45 - LFCP:[MD5.00F7F36349F183308753C2DCD705A63A] - 07/01/2014 - 20:37:31 ---A- - C:\Windows\Prefetch\BACKUPPLG.EXE-E037339E.pf
O45 - LFCP:[MD5.433393CC5E9CEDA175AC7F905E67886B] - 07/01/2014 - 20:37:31 ---A- - C:\Windows\Prefetch\STIMAGEEXTPLG.EXE-D507F560.pf
O45 - LFCP:[MD5.9FC7B8EC1C52BB5D83011E661E0EA5B3] - 08/01/2014 - 10:01:40 ---A- - C:\Windows\Prefetch\PCDRCUI.EXE-B3A31938.pf
O45 - LFCP:[MD5.6579E811460944567D73FBD90027BE3A] - 08/01/2014 - 14:20:51 ---A- - C:\Windows\Prefetch\NIRCMD.DAT-B677D9F3.pf
O45 - LFCP:[MD5.6E3615163AFD3F0B0B70D597712458E9] - 08/01/2014 - 14:20:52 ---A- - C:\Windows\Prefetch\WGET.DAT-9C08431D.pf
O45 - LFCP:[MD5.006F4BDE18A51E9EBEF6F25FFD1C8A61] - 08/01/2014 - 14:28:05 ---A- - C:\Windows\Prefetch\WGET.DAT-656F358F.pf
O45 - LFCP:[MD5.34BF2293733FF68AFC5847F75C3F348B] - 08/01/2014 - 14:28:12 ---A- - C:\Windows\Prefetch\JRT.EXE-E5EB998E.pf
O45 - LFCP:[MD5.1A1E082C505F458529945B2A731E8D8C] - 08/01/2014 - 14:37:58 ---A- - C:\Windows\Prefetch\FC.EXE-CE11E8DE.pf
O45 - LFCP:[MD5.C74BFB8857260944F55DEAD9F66A8EB4] - 08/01/2014 - 14:37:58 ---A- - C:\Windows\Prefetch\NIRCMD.DAT-F4CDC745.pf
O45 - LFCP:[MD5.FA14003A49E71F49BEDC20D5FE4D7988] - 08/01/2014 - 15:10:23 ---A- - C:\Windows\Prefetch\HD-LOGROTATORSERVICE.EXE-0541EBAE.pf
O45 - LFCP:[MD5.FC1B3FD1FE392334FABC73C157023B8E] - 08/01/2014 - 16:45:10 ---A- - C:\Windows\Prefetch\UPGRADE.EXE-47D16214.pf
[MD5.F9E6C5693BB6886AF1A4756B5D4F87D2] [SPRF][22/09/2013] (...) -- C:\ProgramData\1379861554.bdinstall.bin [827283]
[MD5.F5C85080A9E1544FD5FA0B801633B00E] [SPRF][07/10/2013] (...) -- C:\ProgramData\1381131588.bdinstall.bin [502950]
[MD5.0BC3BE8D847674447E0794B78884C2D4] [SPRF][12/10/2013] (...) -- C:\ProgramData\1381600844.bdinstall.bin [248930]
[MD5.F0A5B44B9B8A23E2F2950B346B5C7718] [SPRF][23/12/2013] (...) -- C:\Users\utilisateur\AppData\Local\Temp\Quarantine.exe [360051]
[MD5.6D09D7018421739690B8C57AF7761AAF] [SPRF][08/01/2014] (...) -- C:\Users\utilisateur\AppData\Local\Temp\~gu3-ver.dat [106]
[MD5.7902EF8D44D57F0608E52FAA0528610F] [SPRF][08/01/2014] (...) -- C:\Users\utilisateur\AppData\Local\Temp\~upgrade.dat [1094]
O87 - FAEL: "{D55E2800-4A5C-48DC-97BA-46178529B824}" | In - Public - P6 - TRUE | .(.Visicom Media Inc. - DtUser.) -- C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\dtUser.exe
O87 - FAEL: "{DE0E1DD0-A493-4899-9172-F89FE0BC94D9}" | In - Public - P17 - TRUE | .(.Visicom Media Inc. - DtUser.) -- C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\dtUser.exe
G2 - GCE: Preference [User Data\Default] [oejkcgajlodefenbbjdnaiahmbnnoole] Lavasoft NewTab v.0.12 (D�sactiv�)
O42 - Logiciel: Ask Toolbar - (.APN, LLC.) [HKLM][64Bits] -- {4F524A2D-5637-006A-76A7-A758B70C0300} =>Toolbar.Ask
O90 - PUC: "D2A425F47365A600677A7A857BC03000" . (.Ask Toolbar.) -- C:\windows\Installer\{4F524A2D-5637-006A-76A7-A758B70C0300}\ToolbarIcon.exe =>Toolbar.Ask
[MD5.35C918348CBB0877BCD5A3CF24C13761] [WIS][25/11/2012] (.DeltaInstaller - Delta Chrome Toolbar.) -- C:\Windows\Installer\159d9b6.msi [573440] =>Toolbar.DeltaSearch
[MD5.5A1EBDE37F6F4903B93490DE60E2B7BF] [WIS][06/08/2013] (.APN, LLC - Ask Toolbar.) -- C:\Windows\Installer\176d8d.msi [461312] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5637-006A-76A7-A758B70C0300}] =>Toolbar.Ask^
[HKLM\Software\Classes\Installer\Features\43688B8A09F7F2046BA6682479556F5A] =>Toolbar.eBay
[HKLM\Software\Classes\Installer\Products\43688B8A09F7F2046BA6682479556F5A] =>Toolbar.eBay
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\43688B8A09F7F2046BA6682479556F5A] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Classes\Installer\Features\43688B8A09F7F2046BA6682479556F5A] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Classes\Installer\Products\43688B8A09F7F2046BA6682479556F5A] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A8B88634-7F90-402F-B66A-86429755F6A5}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E1CD2F3F65A8D940BFCBD3200954479] =>Toolbar.PricesSparrow
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole] =>Toolbar.AdAware
C:\Windows\Installer\159d9b6.msi =>Toolbar.DeltaSearch^
C:\Windows\Installer\176d8d.msi =>Toolbar.Ask^
shortcutfix
hostfix
proxyfix
sysrestore
emptyflash
emptytemp

Publicité


Signaler le contenu de ce document

Publicité