cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
[MD5.A6769ED94FFEF0D2113583BD14A64CFB] - (.EagleGet.com - Eagleget downloader: Free all-in-one downlo.) -- C:\Program Files\EagleGet\EagleGet.exe [1236992] [PID.2056]
[MD5.B3EF92DAAF1E89AB5B90E2D42F096B1C] - (.Cucusoft, Inc. - Cucusoft Net Guard Service 2012-04-21.) -- C:\Program Files\Cucusoft\NetGuard\BandwidthGuardSrvc.sys [223392] [PID.2596]
[MD5.9ECEDAFC30F999B25B4F58500C93855B] - (.Cucusoft, Inc. - Cucusoft SysMsg Proxy and Data Log Service.) -- C:\Program Files\Cucusoft\NetGuard\sysMsgProxySrvc.sys [255136] [PID.2768]
[MD5.34AE0DFA3EE3B5B9975042D87332D0B7] - (...) -- C:\Users\Issam\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe [107520] [PID.2904] =>Adware.Bandoo
G2 - GCE: Preference [User Data\Default] [jfhffdajidfgpobcfdgilfcgbngginod] EagleGet Downloader v.1.6, (Désactivé)
G2 - GCE: Preference [User Data\Default] [kdidombaedgpfiiedeimiebkmbilgmlc] DefaultTab v.2.0.0, (Désactivé) =>Adware.Bandoo
P2 - FPN: [HKCU] [eagleget.com/EagleGet] - (.www.eagleget.com - EagleGet Downloader.) -- C:\Program Files\EagleGet\npEagleget.dll
P2 - FPN: [HKCU] [egtcps.com/captures] - (.www.eagleget.com - EagleGet Universal Capture Mode.) -- C:\Program Files\EagleGet\captures.dll
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mysearchresults.com =>Adware.MyWebSearch
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Pando Networks - Pando Web Plugin.) (No version) -- (.not file.)
O1 - Hosts: 8
O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} . (.Search Results LLC. - Search Results.) -- C:\Users\Issam\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll =>Adware.Bandoo
O2 - BHO: bteagleget.com - {824F251E-D74A-4d56-B998-CA05CF369A13} . (.EagleGet.com - IEGrab.) -- C:\Program Files\EagleGet\eagleSniffer.dll
O2 - BHO: DefaultTabToolbarBHO - {96A25A24-2E87-4374-8A50-CC6F943FCE4D} . (.Search Results - Search Results.) -- C:\Users\Issam\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll =>Adware.Bandoo
O2 - BHO: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} . (...) -- mscoree.dll (.not file.)
O3 - Toolbar: Related Searches - [HKLM]{96A25A24-2E87-4374-8A50-CC6F943FCE4D} . (.Search Results - Search Results.) -- C:\Users\Issam\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll =>Adware.Bandoo
O4 - HKCU\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\Issam\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKCU\..\Run: [EagleGet] . (.EagleGet.com - Eagleget downloader: Free all-in-one downlo.) -- C:\Program Files\EagleGet\Eagleget.exe
O4 - HKUS\S-1-5-21-346685099-494465838-1652580769-1000\..\Run: [AdobeBridge] Clé orpheline
O4 - HKUS\S-1-5-21-346685099-494465838-1652580769-1000\..\Run: [Pando Media Booster] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-21-346685099-494465838-1652580769-1000\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\Issam\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKUS\S-1-5-21-346685099-494465838-1652580769-1000\..\Run: [EagleGet] . (.EagleGet.com - Eagleget downloader: Free all-in-one downlo.) -- C:\Program Files\EagleGet\Eagleget.exe
O23 - Service: DefaultTabSearch (DefaultTabSearch) . (...) - C:\Program Files\DefaultTab\DefaultTabSearch.exe =>Adware.Bandoo
O23 - Service: DefaultTabUpdate (DefaultTabUpdate) . (...) - C:\Users\Issam\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe =>Adware.Bandoo
O42 - Logiciel: DefaultTab - (.Search Results, LLC.) [HKLM] -- DefaultTab =>Adware.Bandoo
[HKCU\Software\Default Tab] =>Adware.Bandoo
[HKCU\Software\DefaultTab] =>Adware.Bandoo
[HKLM\Software\Default Tab] =>Adware.Bandoo
O43 - CFD: 23/12/2013 - 16:54:28 - [0,983] ----D C:\Program Files\DefaultTab =>Adware.Bandoo
O43 - CFD: 21/10/2013 - 23:02:50 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 23/12/2013 - 16:54:01 - [4,362] ----D C:\Users\Issam\AppData\Roaming\defaulttab =>Adware.Bandoo
O43 - CFD: 12/01/2014 - 11:20:06 - [1,228] ----D C:\Users\Issam\AppData\Roaming\newnext.me =>PUP.NextLive
O43 - CFD: 21/10/2013 - 23:02:25 - [3,725] ----D C:\Users\Issam\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 23/12/2013 - 16:53:57 - [1,224] ----D C:\Users\Issam\AppData\Local\genienext
O69 - SBI: SearchScopes [HKCU] {6876B06C-8615-4206-823F-584A9F6D7D05} - (Search Here) - http://www.mysearchresults.com =>Adware.MyWebSearch
[MD5.B0CBDA8817A0CDD858EA8AFB1C2549A5] [SPRF][23/12/2013] (.Search Results - Setup.exe.) -- C:\Users\Issam\AppData\Local\Temp\DefaultTabSetup2.exe [3090032] =>Adware.Bandoo
[MD5.B0CBDA8817A0CDD858EA8AFB1C2549A5] [SPRF][23/12/2013] (.Search Results - Setup.exe.) -- C:\Users\Issam\AppData\Local\Temp\DefaultTabSetup2[1].exe [3090032] =>Adware.Bandoo
SS - | Auto 20/12/2013 574464 | (DefaultTabSearch) . (...) - C:\Program Files\DefaultTab\DefaultTabSearch.exe =>Adware.Bandoo
SR - | Auto 23/12/2013 107520 | (DefaultTabUpdate) . (...) - C:\Users\Issam\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe =>Adware.Bandoo
[HKLM\Software\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96A25A24-2E87-4374-8A50-CC6F943FCE4D}] =>Adware.Bandoo^
[HKLM\SYSTEM\CurrentControlSet\Services\DefaultTabSearch] =>Adware.Bandoo^
[HKLM\SYSTEM\CurrentControlSet\Services\DefaultTabUpdate] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab] =>Adware.Bandoo^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKCU\Software\default tab] =>Adware.IMBooster
[HKLM\Software\default tab] =>Adware.IMBooster
[HKCU\Software\defaulttab] =>Adware.IMBooster
[HKCU\Software\AppDataLow\Software\defaulttab] =>Adware.IMBooster
[HKLM\Software\defaulttab] =>Adware.IMBooster
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E9E8EB35-FF77-455D-B677-91E5E4FC06C2}] =>Toolbar.Freemake
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E9E8EB35-FF77-455D-B677-91E5E4FC06C2}] =>Toolbar.Freemake
[HKLM\Software\Classes\CLSID\{E9E8EB35-FF77-455D-B677-91E5E4FC06C2}] =>Toolbar.Freemake
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E9E8EB35-FF77-455D-B677-91E5E4FC06C2}] =>Toolbar.Freemake
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{96A25A24-2E87-4374-8A50-CC6F943FCE4D} =>Adware.Bandoo^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent =>P2P.BitTorrent^
C:\Users\Issam\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc =>Adware.Bandoo^
C:\Program Files\DefaultTab =>Adware.Bandoo^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\Users\Issam\AppData\Roaming\defaulttab =>Adware.Bandoo^
C:\Users\Issam\AppData\Roaming\newnext.me =>PUP.NextLive^
C:\Users\Issam\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\Users\Issam\AppData\Roaming\Mozilla\Firefox\Profiles\6qz7aaph.default\Extensions\addon@defaulttab.com.xpi =>Adware.Bandoo
C:\Users\Issam\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent^
C:\Users\Issam\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe =>Adware.Bandoo^
[HKCU\Software\Default Tab] =>Adware.Bandoo^
[HKCU\Software\DefaultTab] =>Adware.Bandoo^
[HKLM\Software\Default Tab] =>Adware.Bandoo^
C:\Users\Issam\AppData\Local\Temp\DefaultTabSetup2.exe =>Adware.Bandoo^
C:\Users\Issam\AppData\Local\Temp\DefaultTabSetup2 =>Adware.Bandoo^
C:\Users\Issam\AppData\Local\Temp\Softonic_chr_1-8-29-3_cn.exe =>Toolbar.Conduit^

EmptyFlash
EmptyTemp
EmptyClsid
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité