cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
Sysrestore
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.buenosearch.com =>PUP.BuenoSearch
G2 - GCE: Preference [User Data\Default] [acfoobbgoakpihljnfedbcfaipcdlfhk] Buenosearch Toolbar v.1.6.2 (D�sactiv�) =>PUP.BuenoSearch
G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Extutil v.0.1 (Activ�)
G2 - GCE: Preference [User Data\Default] [elimbdhmmpnhjgnmiakjlklfggpfbjkd] Webexp Enhanced v.1.1 (D�sactiv�) =>PUP.WebexpEnhanced
G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activ�) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [gngfnjclpjflgomhidfecidndbfaniak] Plus-HD-9.3 v.1.26.53, (Activ�) =>Adware.PlusHD
G2 - GCE: Preference [User Data\Default] [ipehglehbapldpjfdjkenchhkipdeiod] Media Viewer v.1.1 (Activ�) =>PUP.MediaViewer
G2 - GCE: Preference [User Data\Default] [jidcmajlahpimfcbgfoaonbfbginpbbl] Media View v.1.1 (Activ�) =>PUP.MediaViewer
G2 - GCE: Preference [User Data\Default] [kigpmgkoelepakabiliblldhdpnidcod] Shop-Up v.1.26.87, (Activ�) =>PUP.CrossRider
G2 - GCE: Preference [User Data\Default] [mggojgmcbfegobponfddoplddmeefbik] Media View v.1.1 (Activ�) =>PUP.MediaViewer
G2 - EXT: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfoobbgoakpihljnfedbcfaipcdlfhk [Buenosearch Toolbar] =>PUP.BuenoSearch
G2 - EXT: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\elimbdhmmpnhjgnmiakjlklfggpfbjkd [Webexp Enhanced] =>PUP.WebexpEnhanced
G2 - EXT: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngfnjclpjflgomhidfecidndbfaniak [Plus-HD-9.3] =>Adware.PlusHD
G2 - EXT: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipehglehbapldpjfdjkenchhkipdeiod [Media Viewer] =>PUP.MediaViewer
G2 - EXT: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidcmajlahpimfcbgfoaonbfbginpbbl [Media View] =>PUP.MediaViewer
G2 - EXT: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggojgmcbfegobponfddoplddmeefbik [Media View] =>PUP.MediaViewer
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\APSnotifierPP1.job [382] =>PUP.AnyProtect
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\APSnotifierPP2.job [378] =>PUP.AnyProtect
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\APSnotifierPP3.job [378] =>PUP.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP1] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP2] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP3] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.AnyProtect
O42 - Logiciel: VisualBee for Microsoft PowerPoint - (.VisualBee.com.) [HKCU][64Bits] -- VisualBee for Microsoft PowerPoint =>Adware.VisualBeeToolbar
[HKCU\Software\AnyProtect] =>PUP.AnyProtect
[HKLM\Software\Wow6432Node\Better Surf Plus]
[HKLM\Software\Wow6432Node\Better-Surf] =>PUP.BetterSurf
[HKLM\Software\Wow6432Node\MediaViewV1] =>PUP.MediaViewer
[HKLM\Software\Wow6432Node\MediaViewV1alpha3953] =>PUP.MediaViewer
[HKLM\Software\Wow6432Node\MediaViewV1alpha9253] =>PUP.MediaViewer
[HKLM\Software\Wow6432Node\MediaViewerV1]
[HKLM\Software\Wow6432Node\MediaViewerV1alpha101]
[HKLM\Software\Wow6432Node\VBMZ] =>PUP.Duuqu
[HKLM\Software\Wow6432Node\VideoPlayerV3]
[HKLM\Software\Wow6432Node\Webexp Enhanced] =>PUP.WebexpEnhanced
[HKLM\Software\Wow6432Node\WebexpEnhancedV1] =>PUP.WebexpEnhanced
[HKLM\Software\Wow6432Node\hosts]
O43 - CFD: 23/02/2014 - 21:23:32 - [0,517] ----D C:\Program Files (x86)\MediaViewerV1
O43 - CFD: 15/03/2014 - 16:23:04 - [0,738] ----D C:\Program Files (x86)\MediaViewV1 =>PUP.MediaViewer
O43 - CFD: 10/01/2014 - 20:35:10 - [0] ----D C:\Users\asus\AppData\Roaming\.StarMade =>PUP.Tarma
O43 - CFD: 29/11/2013 - 21:13:23 - [0,996] ----D C:\Users\asus\AppData\Roaming\SpeedTestAnalysis =>PUP.SpeedAnalysis
O45 - LFCP:[MD5.1496BEAFF629290A609C9DC5077A734A] - 12/04/2014 - 06:57:00 ---A- - C:\Windows\Prefetch\DEALPLYLIVEHANDLER.EXE-2529B0CB.pf =>PUP.DealPly
O45 - LFCP:[MD5.D6D5FCAB010D8FCF51F14AC11D0779D7] - 13/04/2014 - 11:36:44 ---A- - C:\Windows\Prefetch\SHOP-UP-ENABLER.EXE-676EABCF.pf =>PUP.CrossRider
O45 - LFCP:[MD5.0863CB96B0A9D6D6354F38581BF8A637] - 13/04/2014 - 11:36:49 ---A- - C:\Windows\Prefetch\SHOP-UP-FIREFOXINSTALLER.EXE-98E54367.pf =>PUP.CrossRider
O45 - LFCP:[MD5.ACFB5762A75456679C51840015C91E62] - 13/04/2014 - 12:40:00 ---A- - C:\Windows\Prefetch\DEALPLYLIVE.EXE-B469C63A.pf =>PUP.DealPly
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.) =>Adware.IMBooster
O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) =>Adware.IMBooster
O61 - LFC: 10/04/2014 - 14:32:48 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage [3072] =>PUP.AkamaiHD
O61 - LFC: 10/04/2014 - 14:32:48 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage-journal [3608] =>PUP.AkamaiHD
O61 - LFC: 10/04/2014 - 14:32:51 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_cdncache-a.akamaihd.net_0.localstorage [3072] =>PUP.AkamaiHD
O61 - LFC: 10/04/2014 - 14:32:51 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_cdncache-a.akamaihd.net_0.localstorage-journal [3608] =>PUP.AkamaiHD
O61 - LFC: 12/04/2014 - 14:32:50 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_static.livelyrics00.live-lyrics.com_0.localstorage [927744] =>Adware.AddLyrics
O61 - LFC: 12/04/2014 - 14:32:50 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_static.livelyrics00.live-lyrics.com_0.localstorage-journal [16384] =>Adware.AddLyrics
O61 - LFC: 13/04/2014 - 14:32:34 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\databases\chrome-extension_gngfnjclpjflgomhidfecidndbfaniak_0\12 [20480]
O61 - LFC: 13/04/2014 - 14:32:35 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Extensions\gngfnjclpjflgomhidfecidndbfaniak\1.26.53_0\js\lib\installer.js [780]
O61 - LFC: 13/04/2014 - 14:32:47 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Extension Settings\gngfnjclpjflgomhidfecidndbfaniak\000239.ldb [476341]
O61 - LFC: 13/04/2014 - 14:32:47 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Extension Settings\gngfnjclpjflgomhidfecidndbfaniak\CURRENT [16]
O61 - LFC: 13/04/2014 - 14:32:47 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Extension Settings\gngfnjclpjflgomhidfecidndbfaniak\LOG [267]
O61 - LFC: 13/04/2014 - 14:32:47 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Extension Settings\gngfnjclpjflgomhidfecidndbfaniak\LOG.old [267]
O61 - LFC: 13/04/2014 - 14:32:47 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Extension Settings\gngfnjclpjflgomhidfecidndbfaniak\MANIFEST-000245 [125]
O61 - LFC: 13/04/2014 - 14:32:47 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\chrome-extension_gngfnjclpjflgomhidfecidndbfaniak_0.localstorage [3072]
O61 - LFC: 13/04/2014 - 14:32:47 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\chrome-extension_gngfnjclpjflgomhidfecidndbfaniak_0.localstorage-journal [3608]
O61 - LFC: 13/04/2014 - 14:32:55 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_static.livelyrics00.live-lyrics.com_0.localstorage [927744] =>Adware.AddLyrics
O61 - LFC: 13/04/2014 - 14:32:55 ---A- . (...) -- C:\Users\asus\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_static.livelyrics00.live-lyrics.com_0.localstorage-journal [16384] =>Adware.AddLyrics
O69 - SBI: SearchScopes [HKCU] D15E95C190C44B9D9C4871010DD59AB3 - (83DF9163E55F415F96C553242D93C818) - http://search.babylon.com =>PUP.Babylon
O87 - FAEL: "TCP Query User{74AE0A89-45BE-4832-A716-6D37D1387D9F}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{0B98DF62-828D-4E39-9946-A2CFE24E9D39}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "TCP Query User{942A15B1-A561-4EB7-8C13-D592748BADE4}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{C0240ACB-3F0E-4082-A69E-9F3B2D18EB8B}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASAPI32 =>Adware.MegaSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASMANCS =>Adware.MegaSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\vbmz16_RASAPI32 =>PUP.Duuqu
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\vbmz16_RASMANCS =>PUP.Duuqu
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBeeSilent_2506-8ea7fd25_RASAPI32 =>Adware.VisualBeeToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VisualBeeSilent_2506-8ea7fd25_RASMANCS =>Adware.VisualBeeToolbar
[HKLM\Software\Google\Chrome\Extensions\acfoobbgoakpihljnfedbcfaipcdlfhk] =>PUP.BuenoSearch^
[HKLM\Software\Google\Chrome\Extensions\elimbdhmmpnhjgnmiakjlklfggpfbjkd] =>PUP.WebexpEnhanced^
[HKLM\Software\Google\Chrome\Extensions\flpcjncodpafbgdpnkljologafpionhb] =>PUP.Manager^
[HKLM\Software\Google\Chrome\Extensions\gngfnjclpjflgomhidfecidndbfaniak] =>Adware.PlusHD^
[HKLM\Software\Google\Chrome\Extensions\ipehglehbapldpjfdjkenchhkipdeiod] =>PUP.MediaViewer^
[HKLM\Software\Google\Chrome\Extensions\jidcmajlahpimfcbgfoaonbfbginpbbl] =>PUP.MediaViewer^
[HKLM\Software\Google\Chrome\Extensions\kigpmgkoelepakabiliblldhdpnidcod] =>PUP.CrossRider^
[HKLM\Software\Google\Chrome\Extensions\mggojgmcbfegobponfddoplddmeefbik] =>PUP.MediaViewer^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\VisualBee for Microsoft PowerPoint] =>Adware.VisualBeeToolbar^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Iminent] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKLM\Software\Wow6432Node\hosts] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfoobbgoakpihljnfedbcfaipcdlfhk =>PUP.BuenoSearch^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\elimbdhmmpnhjgnmiakjlklfggpfbjkd =>PUP.WebexpEnhanced^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\flpcjncodpafbgdpnkljologafpionhb =>PUP.Manager^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gngfnjclpjflgomhidfecidndbfaniak =>Adware.PlusHD^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipehglehbapldpjfdjkenchhkipdeiod =>PUP.MediaViewer^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidcmajlahpimfcbgfoaonbfbginpbbl =>PUP.MediaViewer^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\kigpmgkoelepakabiliblldhdpnidcod =>PUP.CrossRider^
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggojgmcbfegobponfddoplddmeefbik =>PUP.MediaViewer^
C:\Program Files (x86)\MediaViewV1 =>PUP.MediaViewer^
C:\Users\asus\AppData\Roaming\.StarMade =>PUP.Tarma^
C:\Users\asus\AppData\Roaming\SpeedTestAnalysis =>PUP.SpeedAnalysis^
C:\Windows\Tasks\APSnotifierPP1.job =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP2.job =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP3.job =>PUP.AnyProtect^
[HKCU\Software\AnyProtect] =>PUP.AnyProtect^
[HKLM\Software\Wow6432Node\Better-Surf] =>PUP.BetterSurf^
[HKLM\Software\Wow6432Node\MediaViewV1] =>PUP.MediaViewer^
[HKLM\Software\Wow6432Node\MediaViewV1alpha3953] =>PUP.MediaViewer^
[HKLM\Software\Wow6432Node\MediaViewV1alpha9253] =>PUP.MediaViewer^
[HKLM\Software\Wow6432Node\Webexp Enhanced] =>PUP.WebexpEnhanced^
[HKLM\Software\Wow6432Node\WebexpEnhancedV1] =>PUP.WebexpEnhanced^
O51 - MPSK:{3f9a5cfc-bc85-11e3-bcc6-1c4bd6cddde8}\AutoRun\command. (...) -- E:\setup.exe (.not file.)
O51 - MPSK:{5e0cc68c-c165-11e3-a023-1c4bd6cddde8}\AutoRun\command. (...) -- E:\setup.exe (.not file.)
O51 - MPSK:{a686f015-b9bf-11e3-b433-1c4bd6cddde8}\AutoRun\command. (...) -- E:\setup.exe (.not file.)
O51 - MPSK:{ed6063fc-be5d-11e3-aac2-1c4bd6cddde8}\AutoRun\command. (...) -- E:\setup.exe (.not file.)
M3 - MFPP: Plugins - [asus] -- C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\c31pkzw7.default\searchplugins\utorrentbarfr-customized-web-search.xml =>Toolbar.Conduit
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll (.not file.) =>Toolbar.Conduit
O69 - SBI: SearchScopes [HKCU] {73F4032A-EC23-4220-9F98-67B66AB6EBF5} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
[HKLM\Software\Wow6432Node\VBMZ] =>Toolbar.Conduit
C:\Users\asus\AppData\Local\Temp\nsd22FD.exe =>Toolbar.Conduit
C:\Users\asus\AppData\Local\Temp\nsdD4AA.exe =>Toolbar.Conduit
C:\Users\asus\AppData\Local\Temp\nsj2C91.exe =>Toolbar.Conduit
C:\Users\asus\AppData\Local\Temp\nso27CF.exe =>Toolbar.Conduit
C:\Users\asus\AppData\Local\Temp\nstD027.exe =>Toolbar.Conduit
C:\Users\asus\AppData\Local\Temp\nsyD96C.exe =>Toolbar.Conduit
ProxyFix
EmptyTemp
FirewallRaz
Emptyflash
EmptyCLSID

Publicité


Signaler le contenu de ce document

Publicité