cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
[MD5.4B96654025B28EEB1E5D8F001E5D1B8A] - (.APN - Ask Toolbar Notifier.) -- C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1758160] [PID.4284] =>Toolbar.Ask
[MD5.95F3F024B8EE19D1B8FD32E9536C5268] - (.APN LLC. - Virtual New Tab Loader.) -- C:\Users\TOSHIBA\AppData\Local\VNT\vntldr.exe [195536] [PID.4372] =>Toolbar.Ask
G1 - GCS: Preference [User Data\Default] http://www.search.ask.com
G2 - GCE: Preference [User Data\Default] [kdidombaedgpfiiedeimiebkmbilgmlc] DefaultTab v.2.0.8, (Activé) =>Adware.Bandoo
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pkbfpjcjiaepaefidojjphdcmhmdmepf] KMP Media Toolbar v.32.3, (Désactivé) =>Toolbar.KMPMedia
M3 - MFPP: Plugins - [TOSHIBA] -- C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\p0g3w44z.default\searchplugins\avg-secure-search.xml
M3 - MFPP: Plugins - [TOSHIBA] -- C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\p0g3w44z.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [TOSHIBA] -- C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\p0g3w44z.default\searchplugins\search-here.xml
M3 - MFPP: Plugins - [TOSHIBA] -- C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\p0g3w44z.default\searchplugins\softonic.xml =>Toolbar.Conduit
M2 - MFEP: prefs.js [TOSHIBA - p0g3w44z.default\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] [] Hotspot Shield v10.16.9.6 (..)
O2 - BHO: SBCONVERT - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} . (.No owner - IE Toolbar Engine.) -- C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} . (.Search Results LLC. - Search Results.) -- C:\Users\TOSHIBA\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll =>Adware.Bandoo
O2 - BHO: Hotspot Shield - {c95a4e8e-816d-4655-8c79-d736da1adb6d} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Hotspot_Shield\prxtbHots.dll =>Toolbar.Conduit
O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} . (.Softonic.com - No Comment.) -- C:\Program Files\Softonic\Softonic\1.8.19.3\bh\Softonic.dll =>Toolbar.Conduit
O2 - BHO: HotSpot Shield Elite - {f16708b8-d2df-482d-9dfa-aa8d8894f0f4} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\HotSpot_Shield_Elite\prxtbHotS.dll =>Toolbar.Conduit
O2 - BHO: GrabberObj Class - {FF7C3CF0-4B15-11D1-ABED-709549C10000} . (.Speedbit Ltd. - SpeedBit Grab & Convert.) -- C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll
O3 - Toolbar: SpeedBit Video Downloader - [HKLM]{0329E7D6-6F54-462D-93F6-F5C3118BADF2} . (.No owner - IE Toolbar Engine.) -- C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
O3 - Toolbar: (no name) - [HKLM]{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} Orphan key
O3 - Toolbar: Softonic Toolbar - [HKLM]{5018CFD2-804D-4C99-9F81-25EAEA2769DE} . (.Softonic.com - No Comment.) -- C:\Program Files\Softonic\Softonic\1.8.19.3\SoftonicTlbr.dll =>Toolbar.Conduit
O3 - Toolbar: Hotspot Shield Toolbar - [HKLM]{c95a4e8e-816d-4655-8c79-d736da1adb6d} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Hotspot_Shield\prxtbHots.dll =>Toolbar.Conduit
O3 - Toolbar: HotSpot Shield Elite Toolbar - [HKLM]{f16708b8-d2df-482d-9dfa-aa8d8894f0f4} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\HotSpot_Shield_Elite\prxtbHotS.dll =>Toolbar.Conduit
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0329E7D6-6F54-462D-93F6-F5C3118BADF2} Orphan key
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Orphan key
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Orphan key
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{C95A4E8E-816D-4655-8C79-D736DA1ADB6D} Orphan key
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{F16708B8-D2DF-482D-9DFA-AA8D8894F0F4} Orphan key
O4 - GS\QuickLaunch [TOSHIBA]: Disk Cleaner.lnk . (...) -- C:\Program Files\Disk Cleaner\dclean.exe =>Rogue.DiskCleaner
O4 - GS\QuickLaunch [TOSHIBA]: DVBViewer TE2.lnk . (.CM&V Hackbart - DVBViewer TE2.) -- C:\Program Files\DVBViewer TE2\DVBViewerTE.exe
O4 - GS\Startup [TOSHIBA]: Disk Cleaner.lnk . (...) -- C:\Program Files\Disk Cleaner\dclean.exe =>Rogue.DiskCleaner
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Nero AG - NeroCheck.) -- C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [ApnTBMon] . (.APN - Ask Toolbar Notifier.) -- C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask
O4 - HKLM\..\Run: [VNT] . (.APN LLC. - Virtual New Tab Loader.) -- C:\Program Files\VNT\vntldr.exe =>Toolbar.Ask
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe (.not file.) =>PUP.Mobogenie
O4 - HKCU\..\Run: [iLivid] C:\Users\TOSHIBA\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - HKCU\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\TOSHIBA\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKCU\..\Run: [ProgLauncher] . (.No owner - ProgLauncher Application.) -- D:\???????\ProgDVB\ProgLauncher.exe
O4 - HKCU\..\Run: [Tango] . (.Tango Inc. - Tango.) -- C:\Program Files\Tango\Tango.exe
O4 - HKUS\S-1-5-21-1690768537-164960670-706331546-1000\..\Run: [Facebook Update] . (.Facebook Inc. - ?????? Facebook.) -- C:\Users\TOSHIBA\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-1690768537-164960670-706331546-1000\..\Run: [Viber] C:\Users\TOSHIBA\AppData\Local\Viber\Viber.exe (.not file.)
O4 - HKUS\S-1-5-21-1690768537-164960670-706331546-1000\..\Run: [FlashPlugin] wscript C:\Users\TOSHIBA\AppData\Roaming\Adobe\Flash Player\Plugin\invis.vbs C:\Users\TOSHIBA\AppData\Roaming\Adobe\Flash Player\Plugin\bat.bat (.not file.)
O4 - HKUS\S-1-5-21-1690768537-164960670-706331546-1000\..\Run: [SpeedBitVideoAccelerator] . (.Speedbit Ltd. - Speedbit Video Accelerator.) -- C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe
O4 - HKUS\S-1-5-21-1690768537-164960670-706331546-1000\..\Run: [iLivid] C:\Users\TOSHIBA\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - HKUS\S-1-5-21-1690768537-164960670-706331546-1000\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\TOSHIBA\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKUS\S-1-5-21-1690768537-164960670-706331546-1000\..\Run: [ProgLauncher] . (.No owner - ProgLauncher Application.) -- D:\???????\ProgDVB\ProgLauncher.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{CF7CB1B7-B6EE-4131-B9C6-E252F0F20A20}: DhcpNameServer = 41.208.116.8 4.2.2.5
O17 - HKLM\System\CCS\Services\Tcpip\..\{CF7CB1B7-B6EE-4131-B9C6-E252F0F20A20}: DhcpDomain = ltt.ly
O17 - HKLM\System\CS1\Services\Tcpip\..\{CF7CB1B7-B6EE-4131-B9C6-E252F0F20A20}: DhcpNameServer = 41.208.116.8 4.2.2.5
O17 - HKLM\System\CS1\Services\Tcpip\..\{CF7CB1B7-B6EE-4131-B9C6-E252F0F20A20}: DhcpDomain = ltt.ly
O17 - HKLM\System\CS2\Services\Tcpip\..\{CF7CB1B7-B6EE-4131-B9C6-E252F0F20A20}: DhcpNameServer = 41.208.116.8 4.2.2.5
O17 - HKLM\System\CS2\Services\Tcpip\..\{CF7CB1B7-B6EE-4131-B9C6-E252F0F20A20}: DhcpDomain = ltt.ly
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 41.208.116.8 4.2.2.5
O20 - AppInit_DLLs: . (...) - C:\Program Files\bitguard\271769~1.27\{c16c1~1\bitguard.dll (.not file.) =>PUP.BitGuard
O23 - Service: Ask Update Service (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe =>Toolbar.Ask
O23 - Service: DefaultTabSearch (DefaultTabSearch) . (...) - C:\Program Files\DefaultTab\DefaultTabSearch.exe =>Adware.Bandoo
O23 - Service: DefaultTabUpdate (DefaultTabUpdate) . (...) - C:\Users\TOSHIBA\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe =>Adware.Bandoo
[MD5.3E8DCB18626B2D82E4010B3EAEAD4245] [APT] [DTReg] (.Search Results, LLC.) -- C:\Users\TOSHIBA\AppData\Roaming\DefaultTab\DefaultTab\DTReg.exe [58976] =>Adware.Bandoo
[MD5.00000000000000000000000000000000] [APT] [LaunchApp] (...) -- C:\Program Files\MyPC Backup\MyPC Backup.exe (.not file.) [0] =>PUP.MyPCBackup
[MD5.00000000000000000000000000000000] [APT] [{721B683B-F1E6-4BBA-93CA-CC9126DF6B7B}] (...) -- E:\Need for Speed\nfs\nfs.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{80D6C3BB-B206-42B6-878C-78A1301FA461}] (...) -- E:\Redist\dotnetfx35.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{AE22B984-37B9-4311-921B-2CD142540A49}] (...) -- D:\«¢?é?ï¢\bin\Setup4PC.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{CEC8AF42-4E21-4713-BB4E-493CF87F330E}] (...) -- D:\UnrealEngine3\Binaries\moha_setup.exe (.not file.) [0]
O41 - Driver: (avgtp) . (. - .) - C:\Windows\system32\drivers\avgtpx86.sys (.not file.)
O42 - Logiciel: DefaultTab - (.Search Results, LLC.) [HKLM] -- DefaultTab =>Adware.Bandoo
O42 - Logiciel: KMP Media Toolbar - (.APN, LLC.) [HKLM] -- {4B4D5056-3763-006A-76A7-A758B70C0A03} =>Toolbar.KMPMedia
[HKCU\Software\9eda8ae23cec40] =>PUP.BitGuard
[HKCU\Software\APN DTX]
[HKCU\Software\AskPartnerNetwork]
[HKCU\Software\BI]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\CPE17AutorunKiller]
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\Default Tab] =>Adware.Bandoo
[HKCU\Software\DefaultTab] =>Adware.Bandoo
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\VNT]
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKLM\Software\9eda8ae23cec40] =>PUP.BitGuard
[HKLM\Software\AskPartnerNetwork]
[HKLM\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\Datamngr] =>PUP.Datamngr
[HKLM\Software\Default Tab] =>Adware.Bandoo
[HKLM\Software\FBCIM]
[HKLM\Software\Prog]
[HKLM\Software\ScreeNet]
[HKLM\Software\TDS]
O43 - CFD: 21/11/13 - 11:57:14 ? - [9.754] ----D C:\Program Files\AskPartnerNetwork
O43 - CFD: 24/10/13 - 09:01:27 ? - [2.385] ----D C:\Program Files\Batch Image Resizer
O43 - CFD: 22/08/13 - 04:28:39 ? - [0.609] ----D C:\Program Files\Conduit
O43 - CFD: 12/01/14 - 06:26:34 ? - [1.044] ----D C:\Program Files\DefaultTab =>Adware.Bandoo
O43 - CFD: 21/02/14 - 11:52:34 ? - [6.548] ----D C:\Program Files\FBCIM
O43 - CFD: 24/08/13 - 03:07:53 ? - [0.082] ----D C:\Program Files\gateProtect
O43 - CFD: 12/08/13 - 09:46:04 ? - [0] ----D C:\Program Files\GUMF4D9.tmp
O43 - CFD: 09/01/14 - 06:03:48 ? - [78.609] ----D C:\Program Files\Libyamax-Cela
O43 - CFD: 12/11/13 - 05:14:30 ? - [8.685] ----D C:\Program Files\Movies Toolbar =>PUP.MoviesToolbar
O43 - CFD: 22/01/11 - 09:05:47 ? - [1.960] ----D C:\Program Files\mpegable
O43 - CFD: 16/08/13 - 11:28:39 ? - [8.145] ----D C:\Program Files\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 18/08/13 - 02:50:17 ? - [2.258] ----D C:\Program Files\Softonic =>Toolbar.Conduit
O43 - CFD: 28/02/14 - 05:29:30 ? - [0.326] ----D C:\Program Files\VNT
O43 - CFD: 21/11/13 - 11:56:10 ? - [0] ----D C:\ProgramData\APN
O43 - CFD: 21/11/13 - 11:57:14 ? - [1.087] ----D C:\ProgramData\AskPartnerNetwork
O43 - CFD: 05/10/13 - 04:31:10 ? - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 28/12/13 - 06:58:36 ? - [0] ----D C:\ProgramData\BitGuard =>PUP.BitGuard
O43 - CFD: 12/11/13 - 06:01:53 ? - [0] ----D C:\ProgramData\Browser Manager
O43 - CFD: 12/11/13 - 06:01:53 ? - [0] ----D C:\ProgramData\BrowserProtect =>Hijacker.Eazel
O43 - CFD: 05/10/13 - 04:31:09 ? - [0.003] ----D C:\Users\TOSHIBA\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 16/08/13 - 10:15:50 ? - [2.672] ----D C:\Users\TOSHIBA\AppData\Roaming\DefaultTab =>Adware.Bandoo
O43 - CFD: 30/09/13 - 09:46:17 ? - [0.000] ----D C:\Users\TOSHIBA\AppData\Roaming\MHM
O43 - CFD: 22/03/14 - 08:18:27 ? - [1.228] ----D C:\Users\TOSHIBA\AppData\Roaming\newnext.me =>PUP.NextLive
O43 - CFD: 23/03/14 - 06:30:50 ? - [0] ----D C:\Users\TOSHIBA\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 18/08/13 - 02:50:13 ? - [0.259] ----D C:\Users\TOSHIBA\AppData\Roaming\Softonic =>Toolbar.Conduit
O43 - CFD: 15/10/13 - 08:55:05 ? - [0.166] ----D C:\Users\TOSHIBA\AppData\Local\Conduit
O43 - CFD: 26/01/14 - 07:41:23 ? - [1.224] ----D C:\Users\TOSHIBA\AppData\Local\genienext =>PUP.NextLive
O43 - CFD: 01/03/14 - 06:05:56 ? - [0.338] ----D C:\Users\TOSHIBA\AppData\Local\VNT
O50 - IFEO:Image File Execution Options - bprotect.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browsemngr.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsermngr.exe - tasklist.exe =>PUP.Babylon
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - bundlesweetimsetup.exe - tasklist.exe =>PUP.SweetIM
O50 - IFEO:Image File Execution Options - cltmngsvc.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - delta babylon.exe - tasklist.exe =>PUP.Babylon
O50 - IFEO:Image File Execution Options - delta tb.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - delta2.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - deltainstaller.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - deltasetup.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - deltatb.exe - tasklist.exe =>Toolbar.DeltaSearch
O50 - IFEO:Image File Execution Options - deltatb_2501-c733154b.exe - tasklist.exe =>Toolbar.DeltaSearch
O50 - IFEO:Image File Execution Options - iminentsetup.exe - tasklist.exe =>Adware.IMBooster
O50 - IFEO:Image File Execution Options - rjatydimofu.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - sweetimsetup.exe - tasklist.exe =>PUP.SweetIM
O50 - IFEO:Image File Execution Options - tbdelta.exetoolbar783881609.exe - tasklist.exe
O51 - MPSK:{0575a2b1-98dc-11e1-884c-806e6f6e6963}\AutoRun\command. (...) -- E:\hbcd\wintools\autorun.exe (.not file.)
O51 - MPSK:{34c04ad4-25d2-11e0-bb29-806e6f6e6963}\AutoRun\command. (...) -- F:\SETUP.exe (.not file.)
O51 - MPSK:{3d077550-2334-11e1-88d5-806e6f6e6963}\AutoRun\command. (...) -- E:\hbcd\wintools\autorun.exe (.not file.)
O51 - MPSK:{3e0d4f5f-03cf-11e3-af27-2016d8dc85c8}\AutoRun\command. (...) -- F:\StartSetup.exe (.not file.)
O51 - MPSK:{8683fc99-03dc-11e3-b514-001608ff0004}\AutoRun\command. (...) -- F:\StartSetup.exe (.not file.)
O51 - MPSK:{d2d207c9-85d7-11e1-acab-806e6f6e6963}\AutoRun\command. (...) -- E:\hbcd\wintools\autorun.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\UIExec [Key] . (...) -- C:\Program Files\Cela.C.M\cm\UIexec.exe (.not file.)
O58 - SDL:[MD5.6DC539CCA2D8F445F42BBE0BDC38D72E] - 10/05/10 - 09:09:36 ? ---A- . (.TechniSat Digital, S.A. - NDIS 5.0 driver.) -- C:\Windows\System32\Drivers\SkyNETU2.sys [508504]
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Not Key.)
O69 - SBI: C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\p0g3w44z.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.FF19Solved", "true");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.UserID", "UN26479573664562326");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.browser.search.defaultthis.engineName", "true");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.fullUserID", "UN26479573664562326.IN.20130822172742");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.installDate", "22/08/2013 17:27:42");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.installSessionId", "-1");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.installSp", "FALSE");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.installerVersion", "1.6.0.22");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.keyword", "true");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.originalSearchAddressUrl", "http://search.softonic.com/INF00176/tb_v1?SearchSource=2&cc=&mi=b84cf001000000000[...] =>Toolbar.Conduit
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.originalSearchEngine", "Search the web (Softonic)"); =>Adware.IMBooster
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.originalSearchEngineName", "");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.searchRevert", "false");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.searchUserMode", "1");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.versionFromInstaller", "10.16.9.6");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT1561552.xpeMode", "0");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.FF19Solved", "true");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.UserID", "UN82661404594602330");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.browser.search.defaultthis.engineName", "true");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.fullUserID", "UN82661404594602330.IN.20130824035752");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.installDate", "24/08/2013 03:57:52");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.installSessionId", "-1");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.installSp", "FALSE");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.installerVersion", "1.6.0.22");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.keyword", "true");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.originalHomepage", "https://www.facebook.com/");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&SearchSource=2&CUI=UN264[...]
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.originalSearchEngine", "Hotspot Shield Customized Web Search");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.originalSearchEngineName", "Hotspot Shield Customized Web Search");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.searchRevert", "false");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.searchUserMode", "1");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.smartbar.homepage", "true"); =>Hijacker.SmartBar
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.versionFromInstaller", "10.16.9.6");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("CT2707060.xpeMode", "0");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&SearchSource=2&CUI=UN[...] =>Hijacker.SmartBar
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("browser.search.defaultthis.engineName", "HotSpot Shield Elite Customized Web Search");
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2707060&CUI=UN82661404594602330&UM=1&Sear[...]
O69 - SBI: prefs.js [TOSHIBA - p0g3w44z.default] user_pref("extensions.crossrider.bic", "143a6d9c25874af0d8d722c275759f92"); =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] {1E0F00B2-A4C7-4326-8319-70A454336E98} - (Search Here) - http://www.mysearchresults.com =>Adware.MyWebSearch
[MD5.14968E517B9DBAB301CB497BD08287E4] [SPRF][20/01/13] (...) -- C:\Users\TOSHIBA\AppData\Roaming\ConnectifyDispatchInstaller.exe [5101240]
[MD5.F9EEDEC55B08C686C34CE667968C7C35] [SPRF][01/12/04] (.ALTX - CardServer Plugin.) -- C:\Users\TOSHIBA\Desktop\WinCSC.dll [425472]
[MD5.105D9D912BEC873680C716CC3783636F] [SPRF][05/08/09] (.?????: ????? ??? ??? ???? - ???? ?????? ??????.) -- C:\Program Files\Arab flash player.exe [811008]
O87 - FAEL: "{C1A49507-A984-400E-A6B5-7CA2A287A50D}" |In - None - P17 - TRUE | .(...) -- C:\Users\TOSHIBA\AppData\Local\Torch\Plugins\Torrent\TorchTorrent.exe (.not file.)
O90 - PUC: "6505D4B43673A600677A7A857BC0A030" . (.KMP Media Toolbar.) -- C:\Windows\Installer\{4B4D5056-3763-006A-76A7-A758B70C0A03}\ToolbarIcon.exe =>Toolbar.KMPMedia
[HKCU\Software\9eda8ae23cec40\2.7.1769.27\upd]:="upd=" =>PUP.BitGuard
[HKCU\Software\9eda8ae23cec40\history\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:dllName="BitGuard.dll" =>PUP.BitGuard
[HKCU\Software\9eda8ae23cec40\history\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:exeName="BitGuard.exe" =>PUP.BitGuard
[HKCU\Software\9eda8ae23cec40\history\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:folderName="BitGuard" =>PUP.BitGuard
[HKCU\Software\9eda8ae23cec40\history\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:guid="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Hijacker.Eazel
[HKCU\Software\9eda8ae23cec40\history\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:serviceName="BitGuard" =>PUP.BitGuard
[HKCU\Software\9eda8ae23cec40\history\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:version="2.6.1694.246" =>Hijacker.Hijacker.Eazel
[HKLM\Software\9eda8ae23cec40]
[MD5.7060806820D6348A572CC57F19DCF0A9] [WIS][24/02/14] (.APN, LLC - KMP Media Toolbar.) -- C:\Windows\Installer\1619d63.msi [359936] =>Toolbar.KMPMedia
SS - | Auto 11/02/13 572928 | (DefaultTabSearch) . (...) - C:\Program Files\DefaultTab\DefaultTabSearch.exe =>Adware.Bandoo
SR - | Auto 13/02/14 166352 | (APNMCP) . (.APN LLC..) - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe =>Toolbar.Ask
SR - | Auto 16/08/13 107520 | (DefaultTabUpdate) . (...) - C:\Users\TOSHIBA\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe =>Adware.Bandoo
[HKLM\Software\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc] =>Adware.Bandoo^
[HKLM\Software\Google\Chrome\Extensions\pkbfpjcjiaepaefidojjphdcmhmdmepf] =>Toolbar.KMPMedia^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C95A4E8E-816D-4655-8C79-D736DA1ADB6D}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F16708B8-D2DF-482D-9DFA-AA8D8894F0F4}] =>Toolbar.Conduit^
[HKLM\SYSTEM\CurrentControlSet\Services\APNMCP] =>Toolbar.Ask^
[HKLM\SYSTEM\CurrentControlSet\Services\DefaultTabSearch] =>Adware.Bandoo^
[HKLM\SYSTEM\CurrentControlSet\Services\DefaultTabUpdate] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4B4D5056-3763-006A-76A7-A758B70C0A03}] =>Toolbar.KMPMedia^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>PUP.Babylon
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}] =>Adware.iWinArcade
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>PUP.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{87EAB409-97D7-4889-ACFA-C548FC6F3ECF}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{87EAB409-97D7-4889-ACFA-C548FC6F3ECF}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{87EAB409-97D7-4889-ACFA-C548FC6F3ECF}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{87EAB409-97D7-4889-ACFA-C548FC6F3ECF}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>PUP.ToparcadeHits
[HKLM\Software\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}] =>PUP.Babylon
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>PUP.Babylon
[HKLM\Software\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>PUP.Babylon
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware.BullseyeToolbar
[HKLM\Software\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FF7C3CF0-4B15-11D1-ABED-709549C10000}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FF7C3CF0-4B15-11D1-ABED-709549C10000}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{FF7C3CF0-4B15-11D1-ABED-709549C10000}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF7C3CF0-4B15-11D1-ABED-709549C10000}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\escort.dll] =>PUP.Babylon
[HKLM\Software\Classes\AppID\escortapp.dll] =>PUP.Babylon
[HKLM\Software\Classes\AppID\escorteng.dll] =>PUP.Babylon
[HKLM\Software\Classes\AppID\esrv.EXE] =>PUP.Babylon
[HKLM\Software\Classes\AppID\ScriptHelper.EXE] =>Toolbar.AVGSearch
[HKLM\Software\Classes\comobject.deskbarenabler] =>Toolbar.Agent
[HKLM\Software\Classes\comobject.deskbarenabler.1] =>Toolbar.Agent
[HKLM\Software\Classes\escort.escortIEPane] =>PUP.Funmoods
[HKLM\Software\Classes\escort.escortIEPane.1] =>PUP.Funmoods
[HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook] =>Toolbar.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1] =>Adware.Agent
[HKCU\Software\APN DTX] =>Toolbar.Ask
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes] =>Toolbar.Conduit
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\default tab] =>Adware.IMBooster
[HKLM\Software\default tab] =>Adware.IMBooster
[HKCU\Software\defaulttab] =>Adware.IMBooster
[HKCU\Software\AppDataLow\Software\defaulttab] =>Adware.IMBooster
[HKLM\Software\defaulttab] =>Adware.IMBooster
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab Chrome] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hotspot_Shield Toolbar] =>Toolbar.Conduit
[HKLM\Software\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}] =>PUP.Funmoods
[HKLM\Software\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}] =>PUP.Funmoods
[HKLM\Software\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}] =>Toolbar.Conduit
[HKLM\Software\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\softonic] =>Toolbar.Conduit
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKLM\Software\Microsoft\Tracing\ConduitInstaller_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Tracing\ConduitInstaller_RASMANCS] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Tracing\ConduitUninstaller_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Tracing\ConduitUninstaller_RASMANCS] =>Toolbar.Conduit
[HKCU\Software\AskPartnerNetwork] =>Toolbar.Ask
[HKLM\Software\AskPartnerNetwork] =>Toolbar.Ask
[HKCU\Software\BI] =>Adware.MegaSearch
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
[HKLM\Software\Microsoft\Tracing\askpartnercobrandingtool_rasapi32] =>Toolbar.Ask
[HKLM\Software\Microsoft\Tracing\askpartnercobrandingtool_rasmancs] =>Toolbar.Ask
[HKLM\Software\Microsoft\Tracing\AskInstallChecker_RASAPI32] =>Toolbar.Ask
[HKLM\Software\Microsoft\Tracing\AskInstallChecker_RASMANCS] =>Toolbar.Ask
[HKLM\Software\Connectify\OpenCandy] =>Adware.OpenCandy
[HKLM\Software\Classes\Toolbar.CT1561552] =>Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT2707060] =>Toolbar.Conduit
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SBCONVERT] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SBCONVERT.1] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{5018CFD2-804D-4C99-9F81-25EAEA2769DE} =>Toolbar.Conduit^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:ApnTBMon =>Toolbar.Ask^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:iLivid =>Adware.Bandoo^
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc =>Adware.Bandoo^
C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkbfpjcjiaepaefidojjphdcmhmdmepf =>Toolbar.KMPMedia^
C:\Program Files\DefaultTab =>Adware.Bandoo^
C:\Program Files\Movies Toolbar =>PUP.MoviesToolbar^
C:\Program Files\MyPC Backup =>PUP.MyPCBackup^
C:\Program Files\Softonic =>Toolbar.Conduit^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\BitGuard =>PUP.BitGuard^
C:\ProgramData\BrowserProtect =>Hijacker.Eazel^
C:\Users\TOSHIBA\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\TOSHIBA\AppData\Roaming\DefaultTab =>Adware.Bandoo^
C:\Users\TOSHIBA\AppData\Roaming\newnext.me =>PUP.NextLive^
C:\Users\TOSHIBA\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\Users\TOSHIBA\AppData\Roaming\Softonic =>Toolbar.Conduit^
C:\Users\TOSHIBA\AppData\Local\genienext =>PUP.NextLive^
C:\Program Files\Conduit =>Toolbar.Conduit
C:\Program Files\Disk Cleaner =>Rogue.DiskCleaner
C:\Program Files\AskPartnerNetwork =>Toolbar.Ask
C:\ProgramData\Browser Manager =>PUP.Babylon
C:\ProgramData\AskPartnerNetwork =>Toolbar.Ask
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Cleaner =>Rogue.DiskCleaner
C:\Users\TOSHIBA\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\TOSHIBA\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\TOSHIBA\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\p0g3w44z.default\SearchPlugins\conduit.xml =>Toolbar.Conduit
C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\p0g3w44z.default\Extensions\addon@defaulttab.com.xpi =>Adware.Bandoo
C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask^
C:\Users\TOSHIBA\AppData\Local\VNT\vntldr.exe =>Toolbar.Ask^
C:\Users\TOSHIBA\AppData\Roaming\DefaultTab\DefaultTab\DTReg.exe =>Adware.Bandoo^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr^
[HKCU\Software\Default Tab] =>Adware.Bandoo^
[HKCU\Software\DefaultTab] =>Adware.Bandoo^
[HKCU\Software\iLivid] =>Adware.Bandoo^
[HKLM\Software\Conduit] =>Toolbar.Conduit^
[HKLM\Software\Datamngr] =>PUP.Datamngr^
[HKLM\Software\Default Tab] =>Adware.Bandoo^
[HKCU\Software\9eda8ae23cec40\history\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:dllName="BitGuard.dll" =>PUP.BitGuard^
C:\Windows\Installer\1619d63.msi =>Toolbar.KMPMedia^

EmptyFlash
EmptyTemp
EmptyClsid
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité