cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
G2 - GCE: Preference [User Data\Default] [ihmghajnncpnkccimffncajbdpdgmgki] BRiowssE2osavuee v.3.8 (Activé) =>Adware.Browse2Save
G2 - GCE: Preference [User Data\Default] [jfhbklndhffnahdploecdffbedhgjnce] Vonteera Safe ads v.1.0 (Activé) =>Trojan.Trojan.Vonteera
G2 - GCE: Preference [User Data\Default] [kdidombaedgpfiiedeimiebkmbilgmlc] DefaultTab v.2.0.8, (Activé) =>Adware.Bandoo
G2 - GCE: Preference [User Data\DeG2 - GCE: Preference [User Data\Default] [bopakagnckmlgajfccecajhnimjiiedh] McAfee Security Scan+ v.3.8.141.12 (Activé)
G2 - GCE: Preference [User Data\Default] [dlgdjipfpeahlpmmjcclaeeodpdmjipc] Giant Savings v.1.0, (Activé) =>Adware.VidSaver
G2 - GCE: Preference [User Data\Default] [eooncjejnppfjjklapaamhcdmjbilmde] Delta Toolbar v.1.5.2 (Activé) =>Toolbar.DeltaSearch
G2 - GCE: Preference [User Data\Default] [fjoijdanhaiflhibkljeklcghcmmfffh] WebCake v.1.0.3 (Activé) =>Adware.WebCake
G2 - GCE: Preference [User Data\Default] [halffneccaebicfdfajnbfgpglahfgoe] Giant Savings Extension v.1.25.59, (Activé) =>Adware.VidSaver
fault] [koalekbhpbggkcfhkkbolikjoaobbppi] PutLockerDownloader V3.0 v.3.1 (Désactivé) =>Spyware.PutLocker
G2 - GCE: Preference [User Data\Default] [odimijknnpgbleendoboailmhooingab] SSearcchy-NewTab v.1.0 (Activé) =>Adware.FastSaveApp
M0 - MFSP: prefs.js [Armani - 2mjy4vg5.default] http://www.mysearchresults.com =>Adware.MyWebSearch
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mysearchresults.com =>Adware.MyWebSearch
O1 - Hosts: 54.204.28.26 dlgdjipfpeahlpmmjcclaeeodpdmjipc =>Adware.VidSaver
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [BService] C:\Program Files (x86)\Bench\BService\bservice.exe (.not file.) =>PUP.GiganticSavings
O4 - HKLM\..\Wow6432Node\Run: [Wd] C:\Program Files (x86)\Bench\Wd\wd.exe (.not file.) =>PUP.GiganticSavings
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job [202]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\bench-S-1-5-21-2923230591-797850709-1045163448-1000.job [346] =>PUP.GiganticSavings
[MD5.0ED398A4D031B9CFB10E3FEDF97AD836] [APT] [AutoKMS] (...) -- C:\Windows\AutoKMS.exe [614400] =>Trojan.Trojan.Keygen
[MD5.00000000000000000000000000000000] [APT] [bench-S-1-5-21-2923230591-797850709-1045163448-1000] (...) -- C:\Program Files (x86)\Bench\Updater\updater.exe (.not file.) [0] =>PUP.GiganticSavings
[MD5.00000000000000000000000000000000] [APT] [DTReg] (...) -- C:\Users\Armani\AppData\Roaming\DefaultTab\DefaultTab\DTReg.exe (.not file.) [0] =>Adware.Bandoo
[MD5.00000000000000000000000000000000] [APT] [Volaro Update] (...) -- C:\Program Files (x86)\Volaro\Updater\Updater.exe (.not file.) [0] =>Trojan.Trojan.Vonteera
[MD5.00000000000000000000000000000000] [APT] [{2A606AAC-B00F-420B-837D-D277AC3C98D1}] (...) -- C:\Users\Armani\Desktop\The Sims 3 - Razor1911 Final MAXSPEED\Final Version Patch\Sims3_1.0.632.00002_from_1.0.631.00002.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{307CAD75-87DC-446C-9ACE-A3132A277918}] (...) -- C:\Users\Armani\Local Settings\Application Data\Bundled software uninstaller\biclient.exe (.not file.) [0] =>Adware.MegaSearch
[MD5.00000000000000000000000000000000] [APT] [{4906D06F-3428-40BB-8DE3-A189BE43F1DF}] (...) -- C:\Users\Armani\Desktop\The Sims 3 - Razor1911 Final MAXSPEED\Crack\TS3.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{ACFC6A0E-1515-46F5-AC69-69829CA93C5D}] (...) -- C:\Users\Armani\Desktop\The Sims 3 - Razor1911 Final MAXSPEED\Crack\TS3.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{B757C42A-C7D4-4466-AF2B-16C8957EDF17}] (...) -- C:\Users\Armani\Desktop\The Sims 3 - Razor1911 Final MAXSPEED\Crack\TS3.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EC0283FB-30A6-4300-8797-BBB78028BAFF}] (...) -- C:\Users\Armani\Desktop\The Sims 3 - Razor1911 Final MAXSPEED\Crack\TS3.exe (.not file.) [0]
O42 - Logiciel: Giant Savings - (.Smart Apps.) [HKLM][64Bits] -- 38927_Giant Savings =>Adware.VidSaver
O42 - Logiciel: Volaro Updater - (.Volaro.) [HKLM][64Bits] -- Volaro Updater =>Trojan.Trojan.Vonteera
[HKCU\Software\Volaro] =>Trojan.Trojan.Vonteera
[HKLM\Software\Wow6432Node\Vonteera] =>Trojan.Trojan.Vonteera
O43 - CFD: 13/11/2013 - 14:25:02 - [3,844] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 11/04/2013 - 00:52:40 - [0,001] ----D C:\ProgramData\iWin Games =>Adware.FunWebProducts)
O43 - CFD: 08/04/2013 - 17:49:04 - [0] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 24/03/2013 - 22:15:04 - [0,209] ----D C:\Users\Armani\AppData\Local\Updater21810 =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] {20604A09-A329-479F-987A-C9EDF7DACCDE} - (iWin Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {2B5BF8C2-DF88-4234-9FC4-B89D04678CB5} - (Search the web (CT)) - http://search.creativetoolbars.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {5A0BC4F2-B621-4AF5-BF98-DAFCCD82D400} - (Search Here) - http://www.mysearchresults.com =>Adware.MyWebSearch
O69 - SBI: SearchScopes [HKCU] {EDF79C27-2058-465C-8B72-100748D25BF3} - (WebSearch) - http://websearch.helpmefindyour.info
O87 - FAEL: "{96C8C58C-4426-459E-87FF-BB6A4C8BE3E9}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{CEE412A7-EE25-4A54-A8B5-9D67DA03F919}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{CB26EACC-02D4-479C-9B16-FEFDD41D2CB6}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{27C1E3D0-563B-4FC7-BCBA-D0719C20BEDA}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "TCP Query User{A5B6C85F-A4B9-433A-A6F9-1B3F790B9EF0}C:\windows\kmsemulator.exe" |In - Private - P6 - TRUE | .(...) -- C:\windows\kmsemulator.exe (.not file.)
O87 - FAEL: "UDP Query User{48E16AA4-4082-4DD6-BEB5-00E99774867E}C:\windows\kmsemulator.exe" |In - Private - P17 - TRUE | .(...) -- C:\windows\kmsemulator.exe (.not file.)
O87 - FAEL: "TCP Query User{DEB8312E-FE96-45E8-AB91-F80A19AD76F2}C:\users\administrateur\appdata\local\temp\rar$exa0.880\dreamup241 for dm500s\dreamup.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\administrateur\appdata\local\temp\rar$exa0.880\dreamup241 for dm500s\dreamup.exe (.not file.)
O87 - FAEL: "UDP Query User{A18CDDA9-1239-4AF4-99ED-DA1B6DB91A8F}C:\users\administrateur\appdata\local\temp\rar$exa0.880\dreamup241 for dm500s\dreamup.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\administrateur\appdata\local\temp\rar$exa0.880\dreamup241 for dm500s\dreamup.exe (.not file.)
O87 - FAEL: "TCP Query User{205FB0D5-CA45-44F9-A483-BB69F27D3020}C:\users\administrateur\appdata\local\temp\rar$exa0.622\dreamup241 for dm500s\dreamup.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\administrateur\appdata\local\temp\rar$exa0.622\dreamup241 for dm500s\dreamup.exe (.not file.)
O87 - FAEL: "UDP Query User{1548E6B0-C4F9-4764-9F67-CD4CC178F084}C:\users\administrateur\appdata\local\temp\rar$exa0.622\dreamup241 for dm500s\dreamup.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\administrateur\appdata\local\temp\rar$exa0.622\dreamup241 for dm500s\dreamup.exe (.not file.)
[MD5.8E5987BBE41588E391E86DD4D435EE79] [WIS][21/02/2014] (.Spigot, Inc. - Widgi Toolbar.) -- C:\Windows\Installer\7ed3c.msi [4568576] =>PUP.Dealio
[HKLM\Software\Google\Chrome\Extensions\dlgdjipfpeahlpmmjcclaeeodpdmjipc] =>Adware.VidSaver^
[HKLM\Software\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde] =>Toolbar.DeltaSearch^
[HKLM\Software\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh] =>Adware.WebCake^
[HKLM\Software\Google\Chrome\Extensions\halffneccaebicfdfajnbfgpglahfgoe] =>Adware.VidSaver^
[HKLM\Software\Google\Chrome\Extensions\ihmghajnncpnkccimffncajbdpdgmgki] =>Adware.Browse2Save^
[HKLM\Software\Google\Chrome\Extensions\jfhbklndhffnahdploecdffbedhgjnce] =>Trojan.Trojan.Vonteera^
[HKLM\Software\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc] =>Adware.Bandoo^
[HKLM\Software\Google\Chrome\Extensions\koalekbhpbggkcfhkkbolikjoaobbppi] =>Spyware.PutLocker^
[HKLM\Software\Google\Chrome\Extensions\odimijknnpgbleendoboailmhooingab] =>Adware.FastSaveApp^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\38927_Giant Savings] =>Adware.VidSaver^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Volaro Updater] =>Trojan.Trojan.Vonteera^
[HKLM\Software\Classes\TypeLib\{495874fe-4a82-4ad1-9476-0b957e0b95eb}] =>Adware.AdMedia
[HKLM\Software\Classes\AppID\VONTEERA.DLL] =>Trojan.Vonteera
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9] =>PUP.Dealio
[HKCU\Software\iWinArcade] =>Adware.iWinArcade
[HKLM\Software\Wow6432Node\iWinArcade] =>Adware.iWinArcade
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110211701196}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211701196}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31111111-1111-1111-1111-110211701196}] =>PUP.CrossRider
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent =>P2P.BitTorrent^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:BService =>PUP.GiganticSavings^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlgdjipfpeahlpmmjcclaeeodpdmjipc =>Adware.VidSaver^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde =>Toolbar.DeltaSearch^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh =>Adware.WebCake^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\halffneccaebicfdfajnbfgpglahfgoe =>Adware.VidSaver^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmghajnncpnkccimffncajbdpdgmgki =>Adware.Browse2Save^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfhbklndhffnahdploecdffbedhgjnce =>Trojan.Trojan.Vonteera^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc =>Adware.Bandoo^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\koalekbhpbggkcfhkkbolikjoaobbppi =>Spyware.PutLocker^
C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\odimijknnpgbleendoboailmhooingab =>Adware.FastSaveApp^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\iWin Games =>Adware.FunWebProducts)^
C:\Users\Armani\AppData\Local\Updater21810 =>PUP.CrossRider^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iWin Games =>Adware.iWinArcade
C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent^
C:\Windows\Tasks\bench-S-1-5-21-2923230591-797850709-1045163448-1000.job =>PUP.GiganticSavings^
C:\Windows\AutoKMS.exe =>Trojan.Trojan.Keygen^
[HKCU\Software\Volaro] =>Trojan.Trojan.Vonteera^
[HKLM\Software\Wow6432Node\Vonteera] =>Trojan.Trojan.Vonteera^
C:\Windows\Installer\7ed3c.msi =>PUP.Dealio^
C:\Users\Armani\AppData\Local\Temp\uninst1.exe =>PUP.Babylon
C:\Users\Armani\AppData\Local\Temp\MyBabylonTB.exe =>PUP.SweetIM
C:\Users\Armani\AppData\Local\Temp\iMesh.ico =>PUP.iMesh
C:\Users\Armani\AppData\Local\Temp\iMesh_setup.exe =>PUP.iMesh
C:\Users\Armani\AppData\Local\Temp\ApnToolbarInstaller.exe =>PUP.Babylon
C:\Users\Armani\AppData\Local\Temp\SearchHelper.exe =>Toolbar.Conduit
C:\Users\Armani\AppData\Local\Temp\UpdateCheckerSetup.exe =>Adware.MegaSearch

EmptyFlash
EmptyTemp
EmptyClsid
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité