cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
SysRestore
ProxyFix
C:\Users\Aim�e RAYNAUD\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - EXT: C:\Users\Aim�e RAYNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\dadfmpenpjapnmnhipmpfpnpiioeaodf [HHtMllConverteoR]
G2 - EXT: C:\Users\Aim�e RAYNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\emfbbbhgghinodnebmckbjkmbfcaedmd [toapbuyaeri]
M2 - MFEP: prefs.js [Aim�e RAYNAUD - vn94jlxe.default\lmxglb@yyyirgol.com] [] toapbuyaeri v4.1 (..)
M2 - MFEP: prefs.js [Aim�e RAYNAUD - vn94jlxe.default\o2jxw@i-dqzlzffs.co.uk] [] ShoopnDroopu v3.1 (..)
M2 - MFEP: prefs.js [Aim�e RAYNAUD - vn94jlxe.default\wnuuayjx@eoivhrfx.org] [] HHtMllConverteoR v4.2 (..)
O4 - GS\Desktop [Aim�e RAYNAUD]: Sync Folder.lnk . (...) -- C:\Program Files\MyPC Backup\MyPC Backup.exe (.not file.)
O4 - HKLM\..\Run: [fst_fr_101] Cl� orpheline
O4 - HKUS\.DEFAULT\..\Run: [SearchProtect] Cl� orpheline
O4 - HKUS\S-1-5-18\..\Run: [SearchProtect] Cl� orpheline
O23 - Service: Protect Monitor (ProtectMonitor) . (...) - C:\monitorsvc.exe
[MD5.00000000000000000000000000000000] [APT] [BrowseForTheCauseUpdate] (...) -- C:\Program Files\BrowseForTheCause\BrowseForTheCause.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F37AD26D-D8B0-4142-A066-88C592254A92}] (...) -- C:\Users\Aim�e RAYNAUD\AppData\Roaming\awesomehp\UninstallManager.exe (.not file.) [0]
O39 - APT: - (..) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineCore1cefb155ffb416a.job [916]
O41 - Driver: (fudvzlhn) . (. - .) - C:\Windows\system32\drivers\fudvzlhn.sys (.not file.)
O41 - Driver: (fwbgpopk) . (. - .) - C:\Windows\system32\drivers\fwbgpopk.sys (.not file.)
O41 - Driver: (pcwatch) . (...) - C:\Windows\system32\Drivers\pcwatch.sys
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {A071D640-978E-4731-9B65-71ADA7566EA2}
O42 - Logiciel: Web Protect for Windows - (.Web Protect.) [HKLM] -- wp-cb
[HKCU\Software\BrowseForTheCause]
[HKCU\Software\Mixi.DJ]
[HKLM\Software\BrowseForTheCause]
[HKLM\Software\WebProtect]
O43 - CFD: 03/10/2013 - 11:21:46 - [] ----D C:\Program Files\GUMD3D.tmp
O43 - CFD: 28/04/2014 - 10:47:50 - [] ----D C:\Program Files\Web Protect
O43 - CFD: 31/10/2012 - 12:05:25 - [] ----D C:\ProgramData\Ask
O43 - CFD: 20/07/2012 - 08:19:43 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 18/02/2014 - 08:46:52 - [] ----D C:\ProgramData\c1687ebd3f7bacf6
O43 - CFD: 14/03/2014 - 15:16:32 - [0] ----D C:\ProgramData\Conduit
O43 - CFD: 14/04/2014 - 16:21:02 - [] ----D C:\ProgramData\dadfmpenpjapnmnhipmpfpnpiioeaodf
O43 - CFD: 14/03/2014 - 15:16:13 - [0] ----D C:\ProgramData\DSearchLink
O43 - CFD: 11/02/2014 - 16:53:33 - [] ----D C:\ProgramData\FlexxibleShoppeeR
O43 - CFD: 04/02/2014 - 10:06:46 - [] ----D C:\ProgramData\HHtMllConverteoR
O43 - CFD: 24/01/2014 - 13:46:13 - [] ----D C:\ProgramData\nlbniejkibppjcihnihdcfogjhdnbajb
O43 - CFD: 18/02/2014 - 08:46:52 - [] ----D C:\ProgramData\ShoopnDroopu
O43 - CFD: 19/12/2013 - 16:39:05 - [] ----D C:\ProgramData\Tarma Installer
O43 - CFD: 11/02/2014 - 17:15:45 - [] ----D C:\ProgramData\toapbuyaeri
O43 - CFD: 24/02/2014 - 10:31:02 - [] ----D C:\ProgramData\WPM
O43 - CFD: 02/10/2013 - 09:01:17 - [] ----D C:\Users\Aim�e RAYNAUD\AppData\Local\avgchrome
O43 - CFD: 08/10/2013 - 11:31:28 - [] ----D C:\Users\Aim�e RAYNAUD\AppData\Local\CRE
O45 - LFCP:[MD5.73139EC4445B0507176F36D314DCB6C4] - 02/10/2013 - 07:01:17 ---A- - C:\Windows\Prefetch\BITGUARD.EXE-86EB8BEB.pf
O45 - LFCP:[MD5.6B2039E4C6300D97C7DAC62FA14B4583] - 04/03/2014 - 12:45:10 ---A- - C:\Windows\Prefetch\BROWSEFORTHECAUSE.EXE-B43A6D69.pf
O45 - LFCP:[MD5.C28C2F64D9B1E60DE3D708104E726862] - 13/09/2013 - 15:13:18 ---A- - C:\Windows\Prefetch\BROWSERPROTECT.EXE-EBDB159D.pf
O45 - LFCP:[MD5.5C559E52D89FD50543DDC3381969808D] - 28/10/2013 - 11:23:18 ---A- - C:\Windows\Prefetch\YONTOODESKTOP.EXE-D9C7FA11.pf
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\pcwatch.sys . (...) -- C:\Windows\System32\Drivers\pcwatch.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\pcwatch.sys . (...) -- C:\Windows\System32\Drivers\pcwatch.sys (.not file.)
O53 - SMSR:HKLM\...\startupreg\BackgroundContainer [Key] . (...) -- C:\Users\Aim�e RAYNAUD\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll (.not file.)
O53 - SMSR:HKLM\...\startupreg\BrowseForTheCause [Key] . (...) -- C:\Program Files\BrowseForTheCause\BrowseForTheCause.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Browser Infrastructure Helper [Key] . (...) -- C:\Users\Aim�e RAYNAUD\AppData\Local\Smartbar\Application\QuickShare.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Yontoo Desktop [Key] . (...) -- C:\Users\Aim�e RAYNAUD\AppData\Roaming\Yontoo\YontooDesktop.exe (.not file.)
O58 - SDL:02/01/1601 - 23:00:00 ---A- . (...) -- C:\Windows\System32\Drivers\pcwatch.sys [20480]
O64 - Services: CurCS - 04/05/1742 - C:\Windows\system32\Drivers\pcwatch.sys (pcwatch) .(...) - LEGACY_PCWATCH
O69 - SBI: SearchScopes [HKCU] {685BA2B3-B24A-41AE-AB36-846A8163536F - (Mysearchdial) - http://start.mysearchdial.com
O69 - SBI: SearchScopes [HKCU] {685BA2B3-B24A-41AE-AB36-846A8163536F} - (MixiDJ V30 Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {AA24555C-0247-4930-9290-91707B4DA259} - (Ask Search) - http://websearch.ask.com
O90 - PUC: "046D170AE8791374B95617DA7A65E62A" . (.Boxore Client.) -- C:\Windows\Installer\{A071D640-978E-4731-9B65-71ADA7566EA2}\boxore.ico
[MD5.E6A476329CDC652B02404453D1A4314D] [WIS][18/02/2013] (.QwertyBox Team - FrameFox Extensions 1.0.100.0 Setup.) -- C:\Windows\Installer\2fe17c.msi [688128]
[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][25/09/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\943f8.msi [45056]
HKLM\SOFTWARE\Microsoft\Tracing\BabMaint_RASAPI32 =>Hijacker.BabSolution
HKLM\SOFTWARE\Microsoft\Tracing\BabMaint_RASMANCS =>Hijacker.BabSolution
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASAPI32 =>Toolbar.Bing
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock AddonsUI_RASAPI32 =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock AddonsUI_RASMANCS =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASAPI32 =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASMANCS =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock Update_RASAPI32 =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock Update_RASMANCS =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASAPI32 =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASMANCS =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\bubbledock_RASAPI32 =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\bubbledock_RASMANCS =>PUP.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\DomaIQ10_RASAPI32 =>Adware.DomaIQ
HKLM\SOFTWARE\Microsoft\Tracing\DomaIQ10_RASMANCS =>Adware.DomaIQ
HKLM\SOFTWARE\Microsoft\Tracing\FindRight_RASAPI32 =>Hijacker.FindrToolbar
HKLM\SOFTWARE\Microsoft\Tracing\FindRight_RASMANCS =>Hijacker.FindrToolbar
HKLM\SOFTWARE\Microsoft\Tracing\Fortunitas_RASAPI32 =>PUP.Fortunitas
HKLM\SOFTWARE\Microsoft\Tracing\Fortunitas_RASMANCS =>PUP.Fortunitas
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_0102-0d89a395_RASAPI32 =>Adware.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_0102-0d89a395_RASMANCS =>Adware.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_0103-cb05d1c4_RASAPI32 =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_0103-cb05d1c4_RASMANCS =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04160551_RASAPI32 =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04160551_RASMANCS =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04290544_RASAPI32 =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04290544_RASMANCS =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASAPI32 =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASMANCS =>Adware.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\mconduitinstaller_RASAPI32 =>Adware.Bloson
HKLM\SOFTWARE\Microsoft\Tracing\mconduitinstaller_RASMANCS =>Adware.Bloson
HKLM\SOFTWARE\Microsoft\Tracing\MixiDJ_V30AutoUpdateHelper_RASAPI32 =>Toolbar.MixiDJ
HKLM\SOFTWARE\Microsoft\Tracing\MixiDJ_V30AutoUpdateHelper_RASMANCS =>Toolbar.MixiDJ
HKLM\SOFTWARE\Microsoft\Tracing\MixiDJ_V30ToolbarHelper_RASAPI32 =>Toolbar.MixiDJ
HKLM\SOFTWARE\Microsoft\Tracing\MixiDJ_V30ToolbarHelper_RASMANCS =>Toolbar.MixiDJ
HKLM\SOFTWARE\Microsoft\Tracing\MyDeltaTB_RASAPI32 =>Toolbar.DeltaSearch
HKLM\SOFTWARE\Microsoft\Tracing\MyDeltaTB_RASMANCS =>Toolbar.DeltaSearch
HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-1_RASAPI32 =>Adware.PlusHD
HKLM\SOFTWARE\Microsoft\Tracing\Plus-HD-1_RASMANCS =>Adware.PlusHD
HKLM\SOFTWARE\Microsoft\Tracing\pricepeep_RASAPI32 =>Adware.PricePeep
HKLM\SOFTWARE\Microsoft\Tracing\pricepeep_RASMANCS =>Adware.PricePeep
HKLM\SOFTWARE\Microsoft\Tracing\updateFindRight_RASAPI32 =>Hijacker.FindrToolbar
HKLM\SOFTWARE\Microsoft\Tracing\updateFindRight_RASMANCS =>Hijacker.FindrToolbar
HKLM\SOFTWARE\Microsoft\Tracing\updateFortunitas_RASAPI32 =>PUP.Fortunitas
HKLM\SOFTWARE\Microsoft\Tracing\updateFortunitas_RASMANCS =>PUP.Fortunitas
HKLM\SOFTWARE\Microsoft\Tracing\utilFortunitas_RASAPI32 =>PUP.Fortunitas
HKLM\SOFTWARE\Microsoft\Tracing\utilFortunitas_RASMANCS =>PUP.Fortunitas
HKLM\SOFTWARE\Microsoft\Tracing\VAFPlayer_RASAPI32 =>PUP.VAFPlayer
HKLM\SOFTWARE\Microsoft\Tracing\VAFPlayer_RASMANCS =>PUP.VAFPlayer
HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASAPI32 =>Adware.Yontoo
HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASMANCS =>Adware.Yontoo
[HKCR\CLSID\{56A45471-9392-433a-9DC8-16D1141D49C2}] (MediaGoLyricsComponent Class) =>Adware.AddLyrics
[HKCR\CLSID\{F4B8D46C-4EEE-401B-8607-DC03025F34B1}] (SaveSenseLive Core Class) =>PUP.SaveSense
SS - | Auto 13/02/2014 34244 | (ProtectMonitor) . (...) - C:\monitorsvc.exe
SR - | Demand 08/01/2014 1265608 | (PCProtect) . (.Objectify Media Inc.) - C:\Program Files\Web Protect\PCProtect.exe
C:\Users\Aim�e RAYNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifjamchknccokmaecnbknhbfhaicfafd
C:\Windows\Installer\2fe17c.msi
C:\Windows\Installer\943f8.msi
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply] =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311211154}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011441179}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311211154}] =>PUP.CrossRider
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:fst_fr_101 =>Adware.FreeSoftToday^
C:\Users\Aim�e RAYNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\emfbbbhgghinodnebmckbjkmbfcaedmd =>PUP.TopBuyer^
C:\Users\Aim�e RAYNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp =>PUP.BubbleDock^
C:\Users\Aim�e RAYNAUD\AppData\Roaming\Mozilla\Firefox\Profiles\vn94jlxe.default\extensions\lmxglb@yyyirgol.com =>PUP.TopBuyer^
[HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}] =>Adware.Boxore
[HKLM\Software\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Classes\Installer\Features\046D170AE8791374B95617DA7A65E62A] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\046D170AE8791374B95617DA7A65E62A] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\046D170AE8791374B95617DA7A65E62A]
[HKLM\Software\Google\Chrome\Extensions\emfbbbhgghinodnebmckbjkmbfcaedmd] =>PUP.TopBuyer^
[HKLM\Software\Google\Chrome\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp] =>PUP.BubbleDock^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A071D640-978E-4731-9B65-71ADA7566EA2}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\wp-cb] =>PUP.WebProtect^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\BackgroundContainer] =>PUP.Babylon^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\BrowseForTheCause] =>Adware.BrowseForTheCause^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Browser Infrastructure Helper] =>PUP.QuickShare^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Yontoo Desktop]
EmptyCLSID
EmptyFlash
EmptyTemp

Publicité


Signaler le contenu de ce document

Publicité