cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
ShortcutFix

Lignes de désinfection
G2 - GCE: Preference [User Data\Default] [gflandjopdloblmlcoiidmncpinmmacn] Zula Games v.1.0.0.5 (Désactivé) =>PUP.ZulaGames
G2 - GCE: Preference [User Data\Default] [ifohbjbgfchkkfhphahclmkpgejiplfo] Lightning Newtab v.1.1.8.4, (Désactivé) =>PUP.Elex
G2 - GCE: Preference [User Data\Default] [pflphaooapbgpeakohlggbpidpppgdff] MySearchDial v.9.4.14 (Désactivé) =>Adware.MyWebSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.nationzoom.com =>Hijacker.NationZoom
O4 - GS\QuickLaunch [fnac]: SpeedUpMyPC.lnk . (.Uniblue Systems Limited - Uniblue SpeedUpMyPC.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe =>Rogue.SpeedUpMyPC
O4 - HKCU\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\fnac\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKLM\..\Wow6432Node\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe (.not file.) =>PUP.Mobogenie
O4 - HKLM\..\Wow6432Node\Run: [fst_fr_50] Clé orpheline =>PUA.FSTfr9
O4 - HKUS\S-1-5-21-3097652049-1846811894-1694825250-1000\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\fnac\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SpeedUpMyPC Maintenance.job [276] =>Rogue.SpeedUpMyPC
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SpeedUpMyPC Startup.job [270] =>Rogue.SpeedUpMyPC
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
O43 - CFD: 17/01/2014 - 23:35:29 - [0] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 01/02/2014 - 14:18:48 - [1,228] ----D C:\Users\fnac\AppData\Roaming\newnext.me =>PUP.NextLive
O43 - CFD: 15/01/2014 - 13:19:20 - [1,224] ----D C:\Users\fnac\AppData\Local\genienext => PUP.NextLive
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.nationzoom.com =>Hijacker.NationZoom
[MD5.171F1BB73D0238A7A56126D3459ECDCD] [SPRF][15/10/2008] (...) -- C:\Users\fnac\AppData\Local\Temp\Extract.exe [50432] => Infection MagicControl (Possible)
[MD5.B0F6507F8666E89DD9F192313D88EB98] [SPRF][16/06/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\fnac\AppData\Local\Temp\uninst1.exe [389632] =>PUP.Babylon
[MD5.EF7D1863F4980AB0C8BDA142FEE67F92] [SPRF][03/01/2014] (.Somoto Ltd. - FilesFrog Update Checker.) -- C:\Users\fnac\AppData\Local\Temp\UpdateCheckerSetup.exe [200072] =>Adware.MegaSearch
[HKLM\Software\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn] =>PUP.ZulaGames^
[HKLM\Software\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo] =>PUP.Elex^
[HKLM\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff] =>Adware.MyWebSearch^
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1] =>Rogue.SpeedUpMyPC
[HKLM\Software\Classes\SpeedUpMyPC] =>Rogue.SpeedUpMyPC
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:NextLive =>PUP.NextLive^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:mobilegeni daemon =>PUP.Mobogenie^
C:\Users\fnac\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn =>PUP.ZulaGames^
C:\Users\fnac\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo =>PUP.Elex^
C:\Users\fnac\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff =>Adware.MyWebSearch^
C:\ProgramData\WPM =>PUP.WpManager^
C:\Users\fnac\AppData\Roaming\newnext.me =>PUP.NextLive^
C:\Windows\Tasks\SpeedUpMyPC Maintenance.job =>Rogue.SpeedUpMyPC^
C:\Windows\Tasks\SpeedUpMyPC Startup.job =>Rogue.SpeedUpMyPC^
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager^
C:\Users\fnac\AppData\Local\Temp\uninst1.exe =>PUP.Babylon^
C:\Users\fnac\AppData\Local\Temp\UpdateCheckerSetup.exe =>Adware.MegaSearch^

Barres d'outil inutiles
[MD5.33BE35574E1081A91EACD2B98E0A472A] - (.APN - Ask Toolbar Notifier.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640] [PID.3320] =>Toolbar.Ask
[MD5.ABC13EE82ECC14C63709465BA9BCA0AD] - (.APN LLC. - Virtual New Tab Loader.) -- C:\Users\fnac\AppData\Local\VNT\vntldr.exe [202192] [PID.3736] =>Toolbar.Ask
[MD5.B342CD9AA44E4AE99E2368EBDBC2E17A] - (.APN LLC. - APN Updater.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352] [PID.2056] =>Toolbar.Ask
G2 - GCE: Preference [User Data\Default] [aaaaabfjnbeinlpljodiajipidiompfl] Avira SearchFree Toolbar plus Web Protection v.31.8, (Désactivé) =>Toolbar.Avira
G2 - GCE: Preference [User Data\Default] [pcoohmdcpejoeggdnihdfhohjgdbllgm] Avira SearchFree Toolbar plus Web Protection v.30.1, (Désactivé) =>Toolbar.Avira
O3 - Toolbar: Avira SearchFree Toolbar - [HKLM]{41564952-412D-5637-4300-7A786E7484D7} . (.APN LLC. - Passport.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll =>Toolbar.Ask
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline => Toolbar.Norton
O4 - HKLM\..\Wow6432Node\Run: [ApnTBMon] . (.APN - Ask Toolbar Notifier.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask
O4 - HKLM\..\Wow6432Node\Run: [VNT] . (.APN LLC. - Virtual New Tab Loader.) -- C:\Program Files (x86)\VNT\vntldr.exe =>Toolbar.Ask
O23 - Service: Service de mise à jour Ask (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe =>Toolbar.Ask
[HKCU\Software\AskPartnerNetwork] => Toolbar.Ask
[HKCU\Software\VNT] => Toolbar.Ask
[HKLM\Software\AskPartnerNetwork] => Toolbar.Ask
[HKLM\Software\Wow6432Node\AskPartnerNetwork] => Toolbar.Ask
O43 - CFD: 17/01/2014 - 23:41:06 - [12,262] ----D C:\Program Files (x86)\AskPartnerNetwork => Toolbar.Ask
O43 - CFD: 17/01/2014 - 23:41:06 - [0,333] ----D C:\Program Files (x86)\VNT => Toolbar.Ask
O43 - CFD: 06/01/2014 - 13:47:27 - [0] ----D C:\ProgramData\APN => Toolbar.Ask
O43 - CFD: 17/01/2014 - 23:41:06 - [3,687] ----D C:\ProgramData\AskPartnerNetwork => Toolbar.Ask
O43 - CFD: 12/12/2012 - 19:20:20 - [0,158] ----D C:\Users\fnac\AppData\Local\APN => Toolbar.Ask
O43 - CFD: 17/01/2014 - 23:41:13 - [0,359] ----D C:\Users\fnac\AppData\Local\AskPartnerNetwork => Toolbar.Ask
O43 - CFD: 17/01/2014 - 23:41:09 - [0,281] ----D C:\Users\fnac\AppData\Local\VNT => Toolbar.Ask
[MD5.4E41301AB03814EABE37FCF194B728A6] [SPRF][13/12/2013] (.Ask.com - Offercast - APN Install Manager.) -- C:\Users\fnac\AppData\Local\Temp\Offercast_AVIRAV7_.exe [1326512]
O90 - PUC: "25946514D214736534007A857BC0A000" . (.Avira SearchFree Toolbar.) -- C:\Windows\Installer\{41564952-412D-5637-4300-A758B70C0A00}\ToolbarIcon.exe =>Toolbar.Avira
[MD5.AC0D283E857F8CA4469DE3657175AFBA] [WIS][20/12/2013] (.APN, LLC - Avira SearchFree Toolbar.) -- C:\Windows\Installer\62853.msi [813568] =>Toolbar.Avira
SR - | Auto 20/12/2013 166352 | (APNMCP) . (.APN LLC..) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe =>Toolbar.Ask
[HKLM\Software\Google\Chrome\Extensions\aaaaabfjnbeinlpljodiajipidiompfl] =>Toolbar.Avira^
[HKLM\Software\Google\Chrome\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm] =>Toolbar.Avira^
[HKLM\SYSTEM\CurrentControlSet\Services\APNMCP] =>Toolbar.Ask^
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKCU\Software\AskPartnerNetwork] =>Toolbar.Ask
[HKLM\Software\AskPartnerNetwork] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\AskPartnerNetwork] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\aaaaabfjnbeinlpljodiajipidiompfl] =>Toolbar.Avira
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{41564952-412D-5637-4300-7A786E7484D7} =>Toolbar.Ask^
C:\Users\fnac\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabfjnbeinlpljodiajipidiompfl =>Toolbar.Avira^
C:\Users\fnac\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm =>Toolbar.Avira^
C:\Program Files (x86)\AskPartnerNetwork =>Toolbar.Ask
C:\ProgramData\AskPartnerNetwork =>Toolbar.Ask
C:\Users\fnac\AppData\Local\AskPartnerNetwork =>Toolbar.Ask
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask^
C:\Users\fnac\AppData\Local\VNT\vntldr.exe =>Toolbar.Ask^
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe =>Toolbar.Ask^
C:\Windows\Installer\62853.msi =>Toolbar.Avira^

Lignes superflues
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{41564952-412D-5637-4300-7A786E7484D7} Clé orpheline => Orphean Key not necessary
O4 - GS\Desktop [fnac]: Chess.lnk - Clé orpheline => Orphean Key not necessary
O4 - GS\Desktop [fnac]: Spider Solitaire.lnk - Clé orpheline => Orphean Key not necessary
O23 - Service: Update SquirrelWeb (Update SquirrelWeb) . (...) - C:\Program Files (x86)\SquirrelWeb\updateSquirrelWeb.exe (.not file.) => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{C659DAFF-2056-49DB-B794-930B113B3A0D}] (...) -- C:\Users\fnac\Downloads\LeTarotInstallation_Win.exe (.not file.) [0] => Fichier absent
[MD5.45E6002BC685564A7027A01D5D5BE1DA] [SPRF][17/01/2014] (.Setup © - Setup.) -- C:\Users\fnac\AppData\Local\Temp\36397uninstall.exe [647680] => Temporary file not necessary
[MD5.9F81FEA4D9046DBC6566CF9233388EE6] [SPRF][08/01/2014] (.Setup © - Setup.) -- C:\Users\fnac\AppData\Local\Temp\92965uninstall.exe [306688] => Temporary file not necessary
[MD5.E89FA8357C30C0F91D22B0D3C7CBBA18] [SPRF][15/01/2014] (.Pas de propriétaire - wwinshwsvy.) -- C:\Users\fnac\AppData\Local\Temp\dswbtgbkptfvbnh.exe [5632] => Temporary file not necessary
[MD5.6FDE56614868EBA012FBD851025D8BAB] [SPRF][15/01/2014] (...) -- C:\Users\fnac\AppData\Local\Temp\ICReinstall_Setup.exe [576544] => Temporary file not necessary
[MD5.707A11407931119115B1032177711D51] [SPRF][17/01/2014] (...) -- C:\Users\fnac\AppData\Local\Temp\ICReinstall_VideoConverterSetup.exe [704168] => Temporary file not necessary
[MD5.537575ACA83C751BC6E04CE167056AAB] [SPRF][03/01/2014] (...) -- C:\Users\fnac\AppData\Local\Temp\Installer_new.exe [8149536] => Temporary file not necessary
[MD5.47025DD5CBA8B43E9D26C960FF5B32A7] [SPRF][23/10/2013] (...) -- C:\Users\fnac\AppData\Local\Temp\Quarantine.exe [344355] => Temporary file not necessary
[MD5.FBA9A92ADF5A7C8FAB0BB3BDEEA2A0F3] [SPRF][24/12/2013] (...) -- C:\Users\fnac\AppData\Local\Temp\Setup-Wacom.exe [38552216] => Temporary file not necessary
[MD5.5405413FFF79B8D9C747AA900F60F082] [SPRF][17/01/2014] (...) -- C:\Users\fnac\AppData\Local\Temp\Sqlite3.dll [599419] => Temporary file not necessary
[MD5.4EF7F69FEAFCAF2936A6177FFF0B3DF6] [SPRF][27/12/2012] (...) -- C:\Users\fnac\AppData\Local\Temp\temp.bat [441] => Temporary file not necessary
[MD5.A429CFA68B9CD4644B26FFEA0D847870] [SPRF][17/11/2012] (...) -- C:\Users\fnac\AppData\Local\Temp\_gx.bin [419] => Temporary file not necessary

Démarrage inutile
OPT:O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\qttask.exe


Publicité


Signaler le contenu de ce document

Publicité