cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
G1 - GCS: Preference [User Data\Default] http://www.aartemis.com =>PUP.AArtemis
G2 - GCE: Preference [User Data\Default] [ifohbjbgfchkkfhphahclmkpgejiplfo] Lightning Newtab v.1.1.8.4, (D�sactiv�) =>PUP.Elex
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://aartemis.com =>PUP.AArtemis
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://aartemis.com =>PUP.AArtemis
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com =>PUP.AArtemis
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG Secure Search - toolbar.dll (Official).) -- C:\Program Files\AVG Secure Search\17.2.0.38\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
O4 - GS\Desktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\opera.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\Program [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\opera.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\QuickLaunch [USER]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\TaskBar [USER]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Users\USER\AppData\Local\Google\Chrome\Application\chrome.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\TaskBar [USER]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\Program [USER]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\SystemTools [USER]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\Desktop [USER]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Users\USER\AppData\Local\Google\Chrome\Application\chrome.exe http://aartemis.com =>PUP.AArtemis
O4 - HKLM\..\Run: [vProt] . (.No owner - VProtect Application (Official).) -- C:\Program Files\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch
O18 - Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (.AVG Secure Search - ViProtocol (Official).) -- C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.2.0\ViProtocol.dll =>Toolbar.AVGSearch
O23 - Service: Update BuzzSearch (Update BuzzSearch) . (...) - C:\Program Files\BuzzSearch\updateBuzzSearch.exe =>PUP.BuzzSearch
O23 - Service: Util BuzzSearch (Util BuzzSearch) . (...) - C:\Program Files\BuzzSearch\bin\utilBuzzSearch.exe =>PUP.BuzzSearch
O23 - Service: (vToolbarUpdater17.2.0) . (.AVG Secure Search - ToolbarU Application (Official).) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Dealply.job [286] =>PUP.DealPly
[MD5.D2BCD7C1922E9A5205C0F6D86021FE3D] [APT] [Dealply] (...) -- C:\USERs\USER\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.exe [101992] =>PUP.DealPly
[MD5.D5EEF2373D25D355B8A45148758A4E07] [APT] [DealPlyUpdate] (.DealPly.) -- C:\Program Files\DealPly\DealPlyUpdate.exe [78424] =>PUP.DealPly
[MD5.00000000000000000000000000000000] [APT] [{3B3B01CE-72E3-4E2C-938B-A4B9378B8184}] (...) -- C:\USERs\USER\Downloads\fr_DHomesb_v401_ACC_Windows.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A52374F1-28F7-4C51-9D66-0F58496E9C98}] (...) -- E:\SETUP.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A65AE480-204A-46CA-8D3F-C2F966DBF58A}] (...) -- C:\USERs\USER\Desktop\NetBeans 7.3.1\uninstall.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F9B33108-67B1-4879-9FDC-115852AB7C3A}] (...) -- C:\USERs\USER\Downloads\jcpro500trial_setup.exe (.not file.) [0]
O42 - Logiciel: BuzzSearch 2013.11.07.232809 - (.BuzzSearch.) [HKLM] -- BuzzSearch =>PUP.BuzzSearch
O42 - Logiciel: DealPly (remove only) - (.DealPly Technologies Ltd..) [HKLM] -- DealPly =>PUP.DealPly
O42 - Logiciel: Dealply - (...) [HKCU] -- Dealply =>PUP.DealPly
[HKCU\Software\BuzzSearch] =>PUP.BuzzSearch
[HKCU\Software\DealPly] =>PUP.DealPly
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Babylon] =>PUP.Babylon
[HKLM\Software\eSafeSecControl] =>PUP.eSafeSecurity
O43 - CFD: 31/01/2014 - 12:26:10 - [2,675] ----D C:\Program Files\BuzzSearch =>PUP.BuzzSearch
O43 - CFD: 20/05/2013 - 11:36:32 - [1,140] ----D C:\Program Files\DealPly =>PUP.DealPly
O43 - CFD: 20/05/2013 - 11:35:48 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 10/12/2013 - 13:46:48 - [0,030] ----D C:\ProgramData\eSafe =>PUP.eSafeSecurity
O43 - CFD: 20/05/2013 - 11:35:48 - [0,008] ----D C:\Users\USER\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 20/05/2013 - 11:36:00 - [0,097] ----D C:\Users\USER\AppData\Roaming\Dealply =>PUP.DealPly
O43 - CFD: 20/05/2013 - 11:35:53 - [0,440] ----D C:\Users\USER\AppData\Local\Babylon =>PUP.Babylon
O43 - CFD: 20/05/2013 - 11:35:47 - [0,001] ----D C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.DealPly
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\USER\AppData\Local\Google\Chrome\Application\chrome.exe" http://aartemis.com =>PUP.AArtemis
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Opera\Opera.exe" http://aartemis.com =>PUP.AArtemis
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (My Online Search) - http://www.my-online-search.com
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (aartemis) - http://www.aartemis.com =>PUP.AArtemis
[MD5.771DB4D66B8365931A116D2F4A8DAFEB] [SPRF][30/11/2013] (.Skytech Co., Ltd. - Skytech.) -- C:\Users\USER\AppData\Local\Temp\mlv_aartemis_2013111118252.exe [564376] =>PUP.AArtemis
O87 - FAEL: "{3F63C2DA-31C5-40F7-B903-A6E2BF4333C1}" |In - Public - P6 - TRUE | .(...) -- C:\ProgramData\eSafe\eGdpSvc.exe (.not file.) =>PUP.eSafeSecurity
SR - | Auto 30/01/2014 103200 | (Update BuzzSearch) . (...) - C:\Program Files\BuzzSearch\updateBuzzSearch.exe =>PUP.BuzzSearch
SR - | Auto 30/01/2014 103200 | (Util BuzzSearch) . (...) - C:\Program Files\BuzzSearch\bin\utilBuzzSearch.exe =>PUP.BuzzSearch
[HKLM\Software\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo] =>PUP.Elex^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] =>Toolbar.AVGSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\Update BuzzSearch] =>PUP.BuzzSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\Util BuzzSearch] =>PUP.BuzzSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.2.0] =>Toolbar.AVGSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\BuzzSearch] =>PUP.BuzzSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly] =>PUP.DealPly^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dealply] =>PUP.DealPly^
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>PUP.Babylon
[HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>PUP.ToparcadeHits
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.PugiObj] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.PugiObj.1] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi.1] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE.1] =>Toolbar.AVGSearch
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\DealPly] =>PUP.DealPly
[HKLM\Software\DealPly] =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\eSafeSecControl] =>PUP.eSafeSecurity
[HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI.1] =>Toolbar.AVGSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc] =>PUP.eSafeSecurity
[HKLM\Software\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{95B7759C-8C7F-4BF1-B163-73684A933233} =>Toolbar.AVGSearch^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:vProt =>Toolbar.AVGSearch^
C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo =>PUP.Elex^
C:\Program Files\BuzzSearch =>PUP.BuzzSearch^
C:\Program Files\DealPly =>PUP.DealPly^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\eSafe =>PUP.eSafeSecurity^
C:\Users\USER\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\USER\AppData\Roaming\Dealply =>PUP.DealPly^
C:\Users\USER\AppData\Local\Babylon =>PUP.Babylon^
C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.DealPly^
C:\Program Files\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files\Common Files\AVG Secure Search =>Toolbar.AVGSearch
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
C:\Users\USER\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
C:\Users\USER\AppData\LocalLow\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch^
C:\Windows\Tasks\Dealply.job =>PUP.DealPly^
C:\USERs\USER\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.exe =>PUP.DealPly^
C:\Program Files\DealPly\DealPlyUpdate.exe =>PUP.DealPly^
[HKCU\Software\BuzzSearch] =>PUP.BuzzSearch^
[HKLM\Software\Babylon] =>PUP.Babylon^
C:\Users\USER\AppData\Local\Temp\mlv_aartemis_2013111118252.exe =>PUP.AArtemis^

EmptyFlash
EmptyTemp
EmptyClsid
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité