cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
O42 - Logiciel: EnhanceTronic - (.EnhanceTronic.) [HKLM][64Bits] -- EnhanceTronic
O61 - LFC: 09/02/2014 - 09:36:08 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.stanislascalmel-immobilier.fr_0.localstorage [3072]
O61 - LFC: 09/02/2014 - 09:36:08 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.stanislascalmel-immobilier.fr_0.localstorage-journal [3608]
O61 - LFC: 10/02/2014 - 09:36:03 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\databases\http_fr.community.norton.com_0\2 [4096]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_configurer.peugeot.fr_0.localstorage [3072]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_configurer.peugeot.fr_0.localstorage-journal [3608]
O61 - LFC: 10/02/2014 - 09:36:08 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metronews.fr_0.localstorage [3072]
O61 - LFC: 10/02/2014 - 09:36:08 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metronews.fr_0.localstorage-journal [3608]
O61 - LFC: 10/02/2014 - 09:36:08 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.peugeot.fr_0.localstorage [3072]
O61 - LFC: 10/02/2014 - 09:36:08 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.peugeot.fr_0.localstorage-journal [3608]
O61 - LFC: 11/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.avira.com_0.localstorage [3072]
O61 - LFC: 11/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.avira.com_0.localstorage-journal [3608]
O61 - LFC: 11/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_api.melondrea.net_0.localstorage [180224]
O61 - LFC: 11/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_api.melondrea.net_0.localstorage-journal [16384]
[MD5.E8C2AF8FC0D582EF7ECF9D119D2B7D2B] [WIS][24/12/2013] (.INNOVA-engineering GmbH - Blank Project Template.) -- C:\Windows\Installer\2c1f6578.msi [2697728]
SS - | Auto 10/07/1658 0 | (Update melondrea) . (...) - C:\Program Files (x86)\melondrea\updatemelondrea.exe
SS - | Auto 10/07/1658 0 | (Util melondrea) . (...) - C:\Program Files (x86)\melondrea\bin\utilmelondrea.exe
[MD5.1507499E98949A8B04D1B9233CFAD809] - (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe [418304] [PID.3684] =>PUP.BrowserSafeguard
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49962;https=127.0.0.1:49962 =>Hijacker.Proxy
O4 - HKCU\..\Run: [BrowserSafeguard] . (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKCU\..\Run: [BrowserSafeguard Update Task] . (...) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\uninstall.BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKUS\S-1-5-21-361493768-1347251814-1539380788-1003\..\Run: [BrowserSafeguard] . (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKUS\S-1-5-21-361493768-1347251814-1539380788-1003\..\Run: [BrowserSafeguard Update Task] . (...) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\uninstall.BrowserSafeguard.exe =>PUP.BrowserSafeguard
[MD5.00000000000000000000000000000000] [APT] [Desk 365 RunAsStdUser] (...) -- C:\Program Files (x86)\Desk 365\desk365.exe (.not file.) [0] =>Hijacker.22Find
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {903CFFD8-85BF-4A51-8A6D-4BBBCA346A6E} =>Adware.Boxore
O42 - Logiciel: BrowserSafeguard - (.Browsersafeguard.) [HKCU][64Bits] -- Browsersafeguard =>PUP.BrowserSafeguard
O42 - Logiciel: PriceGong 2.6.11 - (.PriceGong.) [HKLM][64Bits] -- PriceGong =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}]
[HKCU\Software\BrowsersafeguardInstalled] =>PUP.BrowserSafeguard
[HKCU\Software\usyndication.com] =>Trojan.Trojan.USyndication
[HKLM\Software\Wow6432Node\V9]
[HKLM\Software\Wow6432Node\deskSvc]
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
O42 - Logiciel: Updater - (.Creative Island Media, LLC.) [HKLM][64Bits] -- {D54E3D9F-FEB8-4D2D-A138-B69A5C80080B}
O43 - CFD: 11/02/2014 - 21:51:26 - [0] ----D C:\Program Files (x86)\Common Files\337
O43 - CFD: 04/02/2014 - 21:46:16 - [1,225] ----D C:\ProgramData\Updater =>PUP.CrossRider
O43 - CFD: 11/02/2014 - 20:58:46 - [4,826] ----D C:\Users\catherine\AppData\Local\BrowserSafeguard =>PUP.BrowserSafeguard
O43 - CFD: 10/02/2014 - 19:35:17 - [0,002] ----D C:\Users\catherine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop =>Adware.Lollipop
O45 - LFCP:[MD5.7070A310E39A5670085CF55ECB51BF89] - 11/02/2014 - 15:08:18 ---A- - C:\Windows\Prefetch\SOFTWARECRASHHANDLER.EXE-5F240164.pf
O45 - LFCP:[MD5.FCB5DB55A108C19144A81469B278E32A] - 11/02/2014 - 20:54:34 ---A- - C:\Windows\Prefetch\ADKS_AWESOMEHP.EXE-148F6281.pf =>PUP.Awesomehp
O45 - LFCP:[MD5.DBA286F702B0BFC42C7E0158FAE47AED] - 11/02/2014 - 20:56:18 ---A- - C:\Windows\Prefetch\WPM.EXE-3C00C266.pf =>PUP.WpManager
O45 - LFCP:[MD5.14531504A8BD3AEFFC1AB9B6CCD9AA47] - 11/02/2014 - 20:56:38 ---A- - C:\Windows\Prefetch\DESK365.EXE-F85D5A1B.pf =>Hijacker.22Find
O45 - LFCP:[MD5.9AFC7E4E7EF6D8285DAD47D9AAE008EA] - 11/02/2014 - 20:56:41 ---A- - C:\Windows\Prefetch\SUPTAB.EXE-E57C060D.pf =>PUP.SupTab
O45 - LFCP:[MD5.8BEE0EF02EB487869B6CA870BC3AFAD2] - 11/02/2014 - 20:56:43 ---A- - C:\Windows\Prefetch\DESKSVC.EXE-3D53060B.pf
O45 - LFCP:[MD5.B9184E00877E9729920C7F8E467F370E] - 11/02/2014 - 20:57:58 ---A- - C:\Windows\Prefetch\OPTIMIZERPRO.EXE-2B0D52BE.pf =>PUP.OptimizerPro
O45 - LFCP:[MD5.A8A5725AC2C57C3B4E2ACEEE5C4DA644] - 11/02/2014 - 20:58:11 ---A- - C:\Windows\Prefetch\OPTPROSTART.EXE-65F7E6B1.pf
O45 - LFCP:[MD5.50C806F129924FD83DC518D028C6E3C4] - 11/02/2014 - 20:58:31 ---A- - C:\Windows\Prefetch\PRICEGONG_2611.EXE-6EC892D5.pf =>Adware.PriceGong
O45 - LFCP:[MD5.1DF3BABA9572CC9E15AB630A72B5DFD6] - 11/02/2014 - 20:58:33 ---A- - C:\Windows\Prefetch\MYPC BACKUP.EXE-D2D9F9B9.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.A624E07A935005F2C6C52247145E962F] - 11/02/2014 - 21:27:54 ---A- - C:\Windows\Prefetch\ADKS_AWESOMEHP.EXE-F917C010.pf =>PUP.Awesomehp
O45 - LFCP:[MD5.85E903B8A1A76EE7C166C9D72A163E1A] - 11/02/2014 - 21:29:27 ---A- - C:\Windows\Prefetch\OPTIMIZERPRO.EXE-FA03D2EB.pf =>PUP.OptimizerPro
O45 - LFCP:[MD5.7C09AC42326B5BFBC467DC187B9E99DD] - 11/02/2014 - 21:30:02 ---A- - C:\Windows\Prefetch\WPM.EXE-6709AF5E.pf =>PUP.WpManager
O45 - LFCP:[MD5.818FF98D8101F492B4849E468BA90889] - 11/02/2014 - 21:30:17 ---A- - C:\Windows\Prefetch\DESK365.EXE-36271013.pf =>Hijacker.22Find
O45 - LFCP:[MD5.4C3497588ADB82E0E811C7405090B255] - 11/02/2014 - 21:30:18 ---A- - C:\Windows\Prefetch\SUPIEPLUGINSERVICEUPDATE.EXE-64C891B3.pf =>Trojan.Trojan.SProtector
O45 - LFCP:[MD5.E8E122A6A147DA3F59F848C41DB7F85A] - 11/02/2014 - 21:30:18 ---A- - C:\Windows\Prefetch\SUPTAB.EXE-206F14C5.pf =>PUP.SupTab
O45 - LFCP:[MD5.478DE9970C1340301FD3F73425CA826C] - 11/02/2014 - 21:30:42 ---A- - C:\Windows\Prefetch\PCFIXSPEEDSETUP.EXE-2AA4A8E6.pf =>PUP.PCFixSpeed
O45 - LFCP:[MD5.84F94384BB91F09B0A8670FC53465DD8] - 11/02/2014 - 21:30:42 ---A- - C:\Windows\Prefetch\PCFIXSPEEDSETUP.TMP-527E40D3.pf =>PUP.PCFixSpeed
O45 - LFCP:[MD5.6D9E1B0F0EE39BA1952F92FAF9F4270F] - 11/02/2014 - 21:30:47 ---A- - C:\Windows\Prefetch\24X7HELP.EXE-86702AF2.pf =>PUP.24x7Help
O45 - LFCP:[MD5.2E07B852B57842BDE38354C700047F07] - 11/02/2014 - 21:30:47 ---A- - C:\Windows\Prefetch\24X7HELP.TMP-06F7D79B.pf =>PUP.24x7Help
O45 - LFCP:[MD5.0B82EA9F9EC1AD917F018D824BEAFAA3] - 11/02/2014 - 21:30:57 ---A- - C:\Windows\Prefetch\APP24X7HELP.EXE-44A3B6EC.pf =>PUP.24x7Help
O45 - LFCP:[MD5.CC5DC745465DF8B280F84A2DDC842CC7] - 11/02/2014 - 21:35:47 ---A- - C:\Windows\Prefetch\PCFIXSPEED.EXE-55D396A9.pf =>PUP.PCFixSpeed
O45 - LFCP:[MD5.50790AF6C2BF40AFA73A8FC0D8E45641] - 11/02/2014 - 21:57:15 ---A- - C:\Windows\Prefetch\BROWSERSAFEGUARD.EXE-0D2F18D0.pf =>PUP.BrowserSafeguard
O45 - LFCP:[MD5.9E98752166EE9E9565F89581E9EF5A08] - 12/02/2014 - 09:02:07 ---A- - C:\Windows\Prefetch\UNINSTALL.BROWSERSAFEGUARD.EX-FF0A9308.pf =>PUP.BrowserSafeguard
O61 - LFC: 10/02/2014 - 09:36:03 ---A- . (.BrowserSafeguard.) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe [418304] =>PUP.BrowserSafeguard
O61 - LFC: 11/02/2014 - 09:36:03 ---A- . (...) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\TrustedRoot.cer [905] =>PUP.BrowserSafeguard
O61 - LFC: 11/02/2014 - 09:36:03 ---A- . (...) -- C:\Users\catherine\AppData\Local\BrowserSafeguard\uninstall.BrowserSafeguard.exe [3352576] =>PUP.BrowserSafeguard
O61 - LFC: 11/02/2014 - 09:36:12 ---A- . (...) -- C:\Users\catherine\Documents\Optimizer Pro\CookiesException.txt [34] =>PUP.OptimizerPro
O90 - PUC: "8DFFC309FB5815A4A8D6B4BBAC43A6E6" . (.Boxore Client.) -- C:\Windows\Installer\{903CFFD8-85BF-4A51-8A6D-4BBBCA346A6E}\boxore.ico =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{903CFFD8-85BF-4A51-8A6D-4BBBCA346A6E}] =>Adware.Boxore^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Browsersafeguard] =>PUP.BrowserSafeguard^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong] =>Adware.PriceGong^
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc] =>Hijacker.22find
[HKCU\Software\usyndication.com] =>Trojan.USyndication
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38D5CDD0A851B3940A43CC50ABBA251C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:BrowserSafeguard =>PUP.BrowserSafeguard^
C:\ProgramData\Updater =>PUP.CrossRider^
C:\Users\catherine\AppData\Local\BrowserSafeguard =>PUP.BrowserSafeguard^
C:\Users\catherine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop =>Adware.Lollipop^
C:\Program Files (x86)\Common Files\337 =>Hijacker.22find
C:\Users\catherine\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\catherine\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard^
[HKCU\Software\BrowsersafeguardInstalled] =>PUP.BrowserSafeguard^
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager^
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{4F524A2D-5637-4300-76A7-7A786E7484D7} Cl� orpheline
O4 - GS\Program [Public]: Desktop.lnk - Cl� orpheline
O23 - Service: Update melondrea (Update melondrea) . (...) - C:\Program Files (x86)\melondrea\updatemelondrea.exe (.not file.)
O23 - Service: Util melondrea (Util melondrea) . (...) - C:\Program Files (x86)\melondrea\bin\utilmelondrea.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [4795] (...) -- C:\Users\catherine\AppData\Local\Temp\launchie.vbs \\B (.not file.) [0]
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-a5690c2d-152c-4063-bfcb-e16d2dc0a619
[HKCU\Software\Systweak]
[HKLM\Software\Wow6432Node\Systweak]
O43 - CFD: 11/02/2014 - 17:24:54 - [0] ----D C:\Users\catherine\AppData\Roaming\Systweak
O45 - LFCP:[MD5.D602BBE9938F1D42C13F7591EBD11F38] - 10/02/2014 - 21:13:05 ---A- - C:\Windows\Prefetch\NIRCMD.DAT-1766CB3A.pf
O45 - LFCP:[MD5.9B1E772EDA5543815C0902C5AC639A88] - 10/02/2014 - 21:13:06 ---A- - C:\Windows\Prefetch\FC.EXE-A601B343.pf
O45 - LFCP:[MD5.EF8881BEC42EE3244B87263FE68C148E] - 10/02/2014 - 21:13:06 ---A- - C:\Windows\Prefetch\WGET.DAT-5957B0D4.pf
O45 - LFCP:[MD5.F52B1D26E0B82F6837B6D4680C2B4C98] - 10/02/2014 - 21:13:09 ---A- - C:\Windows\Prefetch\JRT (1).EXE-C0CD7907.pf
O45 - LFCP:[MD5.5246666B16DBDB427FD920F50FE63FDE] - 11/02/2014 - 15:08:18 ---A- - C:\Windows\Prefetch\SOFTWAREUPDATE.EXE-39F79F3B.pf
O45 - LFCP:[MD5.B57462067D7091BBD65938A513FB97DB] - 11/02/2014 - 15:30:43 ---A- - C:\Windows\Prefetch\UTILMELONDREA.EXE-90121320.pf
O45 - LFCP:[MD5.56D49CCA4C99540DDA2C01194F8006BD] - 11/02/2014 - 17:25:03 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-F04F707B.pf
O45 - LFCP:[MD5.0273BAD39E121C4DF031E08999D9414F] - 11/02/2014 - 17:26:34 ---A- - C:\Windows\Prefetch\BEFOREUNINSTALL.EXE-D9711E53.pf
O45 - LFCP:[MD5.99D99ADCC9B4580E265A3054C6E5AC26] - 11/02/2014 - 17:26:50 ---A- - C:\Windows\Prefetch\MELONDREABROWSERFILTER.EXE-31537B14.pf
O45 - LFCP:[MD5.09D7FB25E83739442C61517AE37FB052] - 11/02/2014 - 17:29:28 ---A- - C:\Windows\Prefetch\MELONDREAUNINSTALL.EXE-DA941463.pf
O45 - LFCP:[MD5.4621867E7197F99DB7C0492052D4904C] - 11/02/2014 - 17:30:04 ---A- - C:\Windows\Prefetch\UPDATEMELONDREA.EXE-E0D94AC8.pf
O45 - LFCP:[MD5.506CB7709A5A3106B3AD92836783F5CE] - 11/02/2014 - 20:53:40 ---A- - C:\Windows\Prefetch\GROOVESTREAM.EXE-20569F53.pf
O45 - LFCP:[MD5.FE5A30F8ECF0AC7A575B4D083516E9F2] - 11/02/2014 - 20:54:06 ---A- - C:\Windows\Prefetch\GROOVESTREAM (1).EXE-32FE3DD5.pf
O45 - LFCP:[MD5.3E40232418E59FCBF65110BA56A2FDD5] - 11/02/2014 - 20:56:24 ---A- - C:\Windows\Prefetch\BAOFENG.EXE-553FA0FB.pf
O45 - LFCP:[MD5.2F94E02F0A114D9C9B021F5F59E0773E] - 11/02/2014 - 20:56:28 ---A- - C:\Windows\Prefetch\WPROTECTMANAGER.EXE-D98082CE.pf
O45 - LFCP:[MD5.3AB12B85A51F4706305E3BC73243293C] - 11/02/2014 - 20:56:39 ---A- - C:\Windows\Prefetch\EINSTALL.EXE-062DF983.pf
O45 - LFCP:[MD5.D670BF98FFCDDA26C8B82839EFC09298] - 11/02/2014 - 20:56:44 ---A- - C:\Windows\Prefetch\ENHANCETRONICSETUP_20131220.E-4B33317E.pf
O45 - LFCP:[MD5.3BA31D06A35E47522FCC11D6E039B659] - 11/02/2014 - 20:56:45 ---A- - C:\Windows\Prefetch\PLUGINSERVICE.EXE-2E241DB1.pf
O45 - LFCP:[MD5.FBE5CF67A67B78E853D4363BDA58DADD] - 11/02/2014 - 20:57:07 ---A- - C:\Windows\Prefetch\COMINSTALL.EXE-19A0F444.pf
O45 - LFCP:[MD5.2A54E3C06D259F82BECEAEA2F1448DB7] - 11/02/2014 - 20:57:07 ---A- - C:\Windows\Prefetch\COMPONENT_LIBCEF_1.1364.1123.-4406EC21.pf
O45 - LFCP:[MD5.C79E97AC10C10ABB4A599745D5DBF7D5] - 11/02/2014 - 20:57:22 ---A- - C:\Windows\Prefetch\POWERSHELL.EXE-E69E0788.pf
O45 - LFCP:[MD5.17603A871DB9470B856704557F1E8A02] - 11/02/2014 - 20:57:25 ---A- - C:\Windows\Prefetch\ENHANCETRONIC_SETUP.EXE-37B197E8.pf
O45 - LFCP:[MD5.557D897D7FB90C0CE7A33FB00EA24227] - 11/02/2014 - 20:57:34 ---A- - C:\Windows\Prefetch\ENHANCETRONIC.FIRSTRUN.EXE-CE170854.pf
O45 - LFCP:[MD5.FDD0FB28F4E65FC671ADC04259A38632] - 11/02/2014 - 20:57:37 ---A- - C:\Windows\Prefetch\UPDATEENHANCETRONIC.EXE-747678DC.pf
O45 - LFCP:[MD5.C00EF6E4382D33B39FDB663BFF21EE0A] - 11/02/2014 - 20:57:59 ---A- - C:\Windows\Prefetch\SETUP.EXE-84EF12E4.pf
O45 - LFCP:[MD5.7C7C357046C46CB60FA909BB63996884] - 11/02/2014 - 20:57:59 ---A- - C:\Windows\Prefetch\SETUP.TMP-1DF1267D.pf
O45 - LFCP:[MD5.50B75AA8F85319D717664FF2BBD41EA3] - 11/02/2014 - 20:58:12 ---A- - C:\Windows\Prefetch\AFF_SETUP.EXE-76509293.pf
O45 - LFCP:[MD5.9C55044E7ECBA432DBF475DA06A70F17] - 11/02/2014 - 20:58:23 ---A- - C:\Windows\Prefetch\BACKUPSETUP.EXE-CA23176D.pf
O45 - LFCP:[MD5.9B31AD263F3D3B59E6BDCBDF267466BB] - 11/02/2014 - 21:27:04 ---A- - C:\Windows\Prefetch\SETUP (1).EXE-5975366C.pf
O45 - LFCP:[MD5.02B232638CD47A6539532299B4F03394] - 11/02/2014 - 21:29:47 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-FA486DDA.pf
O45 - LFCP:[MD5.8385FAAF6EB49E8C6B54DC3F73AF6A6E] - 11/02/2014 - 21:29:58 ---A- - C:\Windows\Prefetch\OPTPROUNINSTALLER.EXE-B054EDA8.pf
O45 - LFCP:[MD5.D62D1545E3CD5DCBE1017C287C9D3427] - 11/02/2014 - 21:30:08 ---A- - C:\Windows\Prefetch\BAOFENG.EXE-80488DF3.pf
O45 - LFCP:[MD5.3D832FE2CDC54C1B496D584283F7182B] - 11/02/2014 - 21:30:15 ---A- - C:\Windows\Prefetch\EINSTALL.EXE-5727A30A.pf
O45 - LFCP:[MD5.A6BC340922606C4B771034537D092F70] - 11/02/2014 - 21:30:17 ---A- - C:\Windows\Prefetch\BHOENABLER.EXE-8A9E3100.pf
O45 - LFCP:[MD5.2E3FFBECDFE9F8A4557D333D3D88319E] - 11/02/2014 - 21:30:46 ---A- - C:\Windows\Prefetch\PCFIXTRAY.EXE-01448124.pf
O45 - LFCP:[MD5.187EC89FF5143DC4AF5D84CFD9BD4CF0] - 11/02/2014 - 21:30:55 ---A- - C:\Windows\Prefetch\APP24X7SVC.EXE-8302B6E3.pf
O45 - LFCP:[MD5.A396C08F4EB71B4E9273FFA5C0FFDF44] - 11/02/2014 - 21:30:58 ---A- - C:\Windows\Prefetch\APP24X7HOOK.EXE-1E49FE1C.pf
O45 - LFCP:[MD5.C363FB9B645C7F72303BAAD1F4CF503A] - 11/02/2014 - 21:30:58 ---A- - C:\Windows\Prefetch\APP24X7HOOK64.EXE-CCC0893E.pf
O45 - LFCP:[MD5.3763B438E5DA282617608FCA9BB55F26] - 11/02/2014 - 21:59:55 ---A- - C:\Windows\Prefetch\UNINST.EXE-008C70BB.pf
O45 - LFCP:[MD5.0611AA620D4459C3D155C85B3BE7C742] - 11/02/2014 - 22:00:03 ---A- - C:\Windows\Prefetch\SIGNUP WIZARD.EXE-9554BD21.pf
O45 - LFCP:[MD5.9F454338E0FC005ACD415E9F844A24C2] - 11/02/2014 - 22:00:08 ---A- - C:\Windows\Prefetch\REGISTEREXTENSIONDOTNET20_X86-7C958069.pf
O45 - LFCP:[MD5.1ECDD5329336D80AAF6C243C79437DF5] - 11/02/2014 - 22:00:09 ---A- - C:\Windows\Prefetch\REGISTEREXTENSIONDOTNET20_X64-8B0528E5.pf
O45 - LFCP:[MD5.4D56C320257F26B8BC4AB55C7F2A2FEA] - 11/02/2014 - 22:00:13 ---A- - C:\Windows\Prefetch\RESTARTEXPLORER.EXE-9CEA359C.pf
O45 - LFCP:[MD5.DF51E4EBA5E4CA0A365237703360C73A] - 11/02/2014 - 22:00:13 ---A- - C:\Windows\Prefetch\UNREGISTEREXTENSIONS.EXE-4B678C96.pf
O45 - LFCP:[MD5.3DB6AAC4CA0B49A6F278D4F15E8AD31F] - 11/02/2014 - 22:08:10 ---A- - C:\Windows\Prefetch\HPPU.EXE-52E9C521.pf
O45 - LFCP:[MD5.87BE0D00EF1792F776D005B867F42643] - 11/02/2014 - 22:44:23 ---A- - C:\Windows\Prefetch\VIRTUALDRIVE.EXE-018D4C1C.pf
O45 - LFCP:[MD5.5B765D96A72D042761E2EEBC13C5EC6C] - 11/02/2014 - 22:44:25 ---A- - C:\Windows\Prefetch\PDVD10SERV.EXE-99C8A7B5.pf
O45 - LFCP:[MD5.2F9C9D676134BBF477408A4CF5EDD1B2] - 11/02/2014 - 22:44:40 ---A- - C:\Windows\Prefetch\SOFFICE.BIN-72E915F8.pf
O45 - LFCP:[MD5.D81813471881801526A8C325669547E0] - 12/02/2014 - 09:01:35 ---A- - C:\Windows\Prefetch\NCPLUGINUPDATER.EXE-9ADF63FE.pf
O45 - LFCP:[MD5.F13B96E1ABFEF1DF486F31CE6C488CFF] - 12/02/2014 - 09:01:53 ---A- - C:\Windows\Prefetch\NIS.EXE-285A4CBB.pf
O45 - LFCP:[MD5.8F15CD7C43B848143463019FB642F514] - 12/02/2014 - 09:02:02 ---A- - C:\Windows\Prefetch\HKCMD.EXE-15DC91D5.pf
O45 - LFCP:[MD5.E44E58A5492B4A463CF4016B6D111183] - 12/02/2014 - 09:02:14 ---A- - C:\Windows\Prefetch\ITUNESHELPER.EXE-722A54DB.pf
O45 - LFCP:[MD5.567E9FFCE1F6F4252B9C0CE8641DAEF5] - 12/02/2014 - 09:02:50 ---A- - C:\Windows\Prefetch\AgCx_SC5.db
O61 - LFC: 11/02/2014 - 09:36:03 ---A- . (...) -- C:\Users\catherine\AppData\Local\CrashDumps\HPPU.exe.3968.dmp [2307328]
O61 - LFC: 11/02/2014 - 09:36:09 ---A- . (...) -- C:\Users\catherine\AppData\Local\Temp\?????????????????????? [246]
O61 - LFC: 11/02/2014 - 09:36:09 ---A- . (.Robert Simpson, et al..) -- C:\Users\catherine\AppData\Local\Temp\System.Data.SQLite.dll [1053184]
O61 - LFC: 12/02/2014 - 09:36:09 ---A- . (.Robert Simpson, et al..) -- C:\Users\catherine\AppData\Local\Temp\System.Data.SQLite14993.dll [1053184]
O61 - LFC: 11/02/2014 - 09:36:04 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2014.6.4.11_0\IdentitySafe\BOOKMARK_EBAY.PNG [8710] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Software]
O51 - MPSK:{76571c0e-2173-11e2-be72-806e6f6e6963}\AutoRun\command. (...) -- E:\SETUP.exe (.not file.)
O17 - HKLM\System\CCS\Services\Tcpip\..\{9701A677-EB8B-4DC6-84B6-9506C75616C7}: DhcpDomain = B1-LINE.COM
O17 - HKLM\System\CS1\Services\Tcpip\..\{9701A677-EB8B-4DC6-84B6-9506C75616C7}: DhcpDomain = B1-LINE.COM
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_cas.nl.eu.criteo.com_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_cas.nl.eu.criteo.com_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_cas.nl.eu.criteo.com_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_cas.nl.eu.criteo.com_0.indexeddb.leveldb\MANIFEST-000002 [32]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_apis.google.com_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_apis.google.com_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_apis.google.com_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 10/02/2014 - 09:36:07 ---A- . (...) -- C:\Users\catherine\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_apis.google.com_0.indexeddb.leveldb\MANIFEST-000002 [32]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{903CFFD8-85BF-4A51-8A6D-4BBBCA346A6E}] =>Adware.Boxore^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Browsersafeguard] =>PUP.BrowserSafeguard^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong] =>Adware.PriceGong^
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc] =>Hijacker.22find
[HKCU\Software\usyndication.com] =>Trojan.USyndication
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38D5CDD0A851B3940A43CC50ABBA251C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:BrowserSafeguard =>PUP.BrowserSafeguard^
C:\ProgramData\Updater =>PUP.CrossRider^
C:\Users\catherine\AppData\Local\BrowserSafeguard =>PUP.BrowserSafeguard^
C:\Users\catherine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop =>Adware.Lollipop^
C:\Program Files (x86)\Common Files\337 =>Hijacker.22find
C:\Users\catherine\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\catherine\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard^
[HKCU\Software\BrowsersafeguardInstalled] =>PUP.BrowserSafeguard^
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager^
PROXYFix
EmptyPrefetch
EmptyTemp
EmptyFlash
EmptyCLSID
SysRestore

Publicité


Signaler le contenu de ce document

Publicité