cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.myhoome.com
O2 - BHO: NoVooIT [64Bits] - {598AC71E-BE58-3981-B78A-5C138F423AD6} . (.NoVooIT - NoVooIT.) -- C:\Users\m@m\AppData\Roaming\VolIE\NoVooIT_32.dll
O3 - Toolbar: (no name) - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{1B98D89B-7B46-4672-960B-67808F897DFC} Clé orpheline
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_DABD078650A27506C83CC6C7AC9C9C5B] . (.Google Inc. - Google Chrome.) -- C:\Users\m@m\AppData\Local\Google\Chrome\Application\chrome.exe
[MD5.00000000000000000000000000000000] [APT] [4463] (...) -- C:\Users\m@m\AppData\Local\Temp\launchie.vbs \\B (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [DealPlyUpdate] (...) -- C:\Program Files (x86)\DealPly\DealPlyUpdate.exe (.not file.) [0] =>PUP.DealPly
[MD5.00000000000000000000000000000000] [APT] [YourFile DownloaderUpdate] (...) -- C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe (.not file.) [0] =>PUP.YourFileDownloader
[MD5.00000000000000000000000000000000] [APT] [{49210C4B-933D-4FF1-BC9E-8BBC51B0D044}] (...) -- C:\Users\m@m\AppData\Local\TNT2\2.0.0.1702\TNT2User.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{67AB59CB-0C6B-4588-907D-1D3E5D64BC46}] (...) -- C:\Users\m@m\Desktop\Nouveau dossier (2)\smashfrenzy4_setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{6CC68925-6559-40B3-8890-DD29EC36E40E}] (...) -- C:\Users\m@m\Desktop\PonyLuvSetup-dm.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{75991BE2-3B5C-4546-A7A3-2F03E17B20C1}] (...) -- C:\Users\m@m\Documents\Downloads\Programs\NoniGPSPlotV2.74.FR.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{8B697043-89E0-4021-BA81-CFEB345A60DD}] (...) -- F:\SETUP.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{AD908F7D-EE54-4D00-BABC-DCC6CB0D8506}] (...) -- C:\Program Files (x86)\WiFi Hopper\Uninstall.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F10735B7-F9C8-425F-928A-328D58A51B9E}] (...) -- C:\Program Files (x86)\PutLockerDownloader V6.0\Uninstall.exe (.not file.) [0] =>Spyware.PutLocker
[HKCU\Software\5c55df8de235eb48] =>Hijacker.Eazel
[HKCU\Software\APN PIP]
[HKCU\Software\ARHome]
[HKCU\Software\FileScout] =>PUP.FileScout
[HKCU\Software\IM]
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\SimpleFiles] =>Adware.SimpleFiles
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Vonteera Safe ads] =>Trojan.Vonteera
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKLM\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Updater By Sweetpacks] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon
[HKLM\Software\Wow6432Node\DataMngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\PIP]
[HKLM\Software\Wow6432Node\PutLockerDownloader V6.0] =>Spyware.PutLocker
[HKLM\Software\Wow6432Node\SProtector] =>PUP.Mocaflix
[HKLM\Software\Wow6432Node\SimpleFiles] =>Adware.SimpleFiles
[HKLM\Software\Wow6432Node\Vittalia] =>PUP.Vittalia
[HKLM\Software\Wow6432Node\YourFileDownloader] =>PUP.YourFileDownloader
[HKLM\Software\abu dhabi sport 3 HD]
O43 - CFD: 02/02/2014 - 01:12:11 - [0] ----D C:\Program Files (x86)\RightSurf
O43 - CFD: 06/04/2013 - 10:59:23 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 14/11/2013 - 04:05:23 - [0] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 01/10/2013 - 21:46:28 - [0] ----D C:\ProgramData\DownLeoad keeper =>PUP.DownloadKeeper
O43 - CFD: 08/10/2013 - 23:16:32 - [0] ----D C:\ProgramData\Dowwnload keeepEr =>PUP.DownloadKeeper
O43 - CFD: 06/02/2014 - 02:11:24 - [0] ----D C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch
O43 - CFD: 05/02/2014 - 17:30:34 - [0] ----D C:\ProgramData\GreaTsaverr
O43 - CFD: 05/02/2014 - 17:28:29 - [6,648] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 02/02/2014 - 07:04:47 - [0] ----D C:\ProgramData\RegClean
O43 - CFD: 05/02/2014 - 17:28:30 - [0] ----D C:\ProgramData\SetApp
O43 - CFD: 05/02/2014 - 18:01:52 - [0] ----D C:\ProgramData\SNT
O43 - CFD: 29/01/2013 - 02:51:03 - [1,194] ----D C:\ProgramData\Tarma Installer =>PUP.Tarma
O43 - CFD: 05/02/2014 - 18:01:52 - [0] ----D C:\ProgramData\YoutubeAdblocker =>PUP.Multiplug
O43 - CFD: 02/02/2014 - 06:03:51 - [0,007] ----D C:\Users\m@m\AppData\Roaming\BabSolution =>Hijacker.BabSolution
O43 - CFD: 06/04/2013 - 10:59:23 - [0,032] ----D C:\Users\m@m\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 30/01/2014 - 03:18:05 - [0] ----D C:\Users\m@m\AppData\Roaming\Ignite
O43 - CFD: 01/10/2013 - 18:30:40 - [0,007] ----D C:\Users\m@m\AppData\Roaming\SimpleFiles =>Adware.SimpleFiles
O43 - CFD: 15/01/2014 - 22:57:14 - [0] ----D C:\Users\m@m\AppData\Roaming\TFP
O43 - CFD: 02/02/2014 - 06:03:30 - [0] ----D C:\Users\m@m\AppData\Roaming\YourFileDownloader =>PUP.YourFileDownloader
O43 - CFD: 05/01/2014 - 02:38:33 - [0,163] ----D C:\Users\m@m\AppData\Local\B1E
O43 - CFD: 06/02/2014 - 02:11:24 - [0] ----D C:\Users\m@m\AppData\Local\genienext
O43 - CFD: 30/08/2013 - 13:09:07 - [0] ----D C:\Users\m@m\AppData\Local\IAC
O43 - CFD: 01/10/2013 - 18:15:26 - [0] ----D C:\Users\m@m\AppData\Local\Rapider
O44 - LFC:[MD5.BEDA3FC14B1229269D3087C35DB13CD8] - 03/02/2014 - 20:29:40 ---A- . (...) -- C:\Windows\System32\results.xml [15844]
O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 06/02/2014 - 05:19:34 ---A- . (...) -- C:\Windows\MBR.exe [208896]
O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 06/02/2014 - 05:19:34 ---A- . (...) -- C:\Windows\PEV.exe [256000]
[MD5.E8F99CDD55A6114AB934C8B49BF0C9FC] [SPRF][08/10/2013] (...) -- C:\Users\m@m\AppData\LocalLow\SkwConfig.bin [7436]
[HKCU\Software\5c55df8de235eb48\2.6.1339.144\upd]:="upd=1" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\2.6.1519.190\upd]:="upd=1" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\2.6.1673.238\upd]:="upd=1" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:version="2.6.1249.132" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:version="2.6.1339.144" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:version="2.6.1519.190" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:dllName="BitGuard.dll" =>PUP.BitGuard
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:exeName="BitGuard.exe" =>PUP.BitGuard
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:folderName="BitGuard" =>PUP.BitGuard
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:serviceName="BitGuard" =>PUP.BitGuard
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:version="2.6.1673.238" =>Hijacker.Eazel
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyUpdate] =>PUP.DealPly^
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}] =>PUP.Minibar
[HKLM\Software\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}] =>PUP.Software.Updater
[HKLM\Software\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}] =>Toolbar.Expresso
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKCU\Software\APN PIP] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\DataMngr] =>Adware.Bandoo
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\PIP] =>Toolbar.Ask
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\SProtector] =>PUP.AdvancedSystemProtector
[HKLM\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>PUP.Babylon
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}] =>Adware.Browse2Save
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\SoftwareUpdater] =>Hijacker.Eazel
[HKCU\Software\VideoDownloadConverter_4z] =>Adware.VideoDownloadConverter
[HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4z] =>Adware.VideoDownloadConverter
[HKLM\Software\Wow6432Node\VideoDownloadConverter_4z] =>Adware.VideoDownloadConverter
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110411591162}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220422592262}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591162}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220422592262}] =>PUP.CrossRider
[HKLM\Software\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\DownLeoad keeper =>PUP.DownloadKeeper^
C:\ProgramData\Dowwnload keeepEr =>PUP.DownloadKeeper^
C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\Tarma Installer =>PUP.Tarma^
C:\ProgramData\YoutubeAdblocker =>PUP.Multiplug^
C:\Users\m@m\AppData\Roaming\BabSolution =>Hijacker.BabSolution^
C:\Users\m@m\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\m@m\AppData\Roaming\SimpleFiles =>Adware.SimpleFiles^
C:\Users\m@m\AppData\Roaming\YourFileDownloader =>PUP.YourFileDownloader^
C:\Program Files (x86)\UtilityChest_49 =>Adware.MyWebSearch
C:\Program Files (x86)\VideoDownloadConverter_4z =>Adware.VideoDownloadConverter
C:\ProgramData\RegClean =>Rogue.RegistryPowerCleaner
C:\Users\m@m\AppData\Local\Bundled software uninstaller =>Adware.MegaSearch
C:\Users\m@m\AppData\Local\B1E =>Toolbar.BrotherSoft
C:\Users\m@m\AppData\Local\UtilityChest_49 =>Adware.MyWebSearch
C:\Users\m@m\AppData\Local\VideoDownloadConverter_4z =>Adware.VideoDownloadConverter
C:\Users\m@m\AppData\LocalLow\searchresultstb =>Toolbar.Agent
C:\Users\m@m\AppData\LocalLow\Minibar =>PUP.Minibar
C:\Users\m@m\AppData\LocalLow\SweetIM =>PUP.SweetIM
C:\Users\m@m\AppData\LocalLow\UtilityChest_49 =>Adware.MyWebSearch
C:\Users\m@m\AppData\LocalLow\VideoDownloadConverter_4z =>Adware.VideoDownloadConverter
C:\Users\m@m\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl =>PUP.QuickShare
[HKCU\Software\FileScout] =>PUP.FileScout^
[HKCU\Software\SimpleFiles] =>Adware.SimpleFiles^
[HKCU\Software\Vonteera Safe ads] =>Trojan.Vonteera^
[HKCU\Software\iLivid] =>Adware.Bandoo^
[HKLM\Software\Updater By Sweetpacks] =>PUP.SweetIM^
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon^
[HKLM\Software\Wow6432Node\PutLockerDownloader V6.0] =>Spyware.PutLocker^
[HKLM\Software\Wow6432Node\SimpleFiles] =>Adware.SimpleFiles^
[HKLM\Software\Wow6432Node\Vittalia] =>PUP.Vittalia^
[HKLM\Software\Wow6432Node\YourFileDownloader] =>PUP.YourFileDownloader^
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKCU\Software\5c55df8de235eb48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:dllName="BitGuard.dll" =>PUP.BitGuard^

EmptyFlash
EmptyTemp
EmptyClsid
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité