cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
O23 - Service: Eset Trial Reset (.EsetTrialReset) . (...) - C:\Windows\reset.exe
O41 - Driver: (hlnfd) . (. - .) - C:\Windows\System32\drivers\hlnfd.sys (.not file.)
SS - | Auto 20/03/2009 357182 | (.EsetTrialReset) . (...) - C:\Windows\reset.exe
O23 - Service: Search Protect by Conduit Updater (CltMngSvc) . (.Conduit - Search Protect by Conduit.) - C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
O42 - Logiciel: Search Protect by conduit - (.Conduit.) [HKLM][64Bits] -- SearchProtect
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\Conduit]
[HKCU\Software\SearchProtect]
[HKCU\Software\Softonic]
[HKLM\Software\Wow6432Node\Conduit]
O43 - CFD: 01/12/2013 - 19:54:24 - [] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 01/12/2013 - 19:50:44 - [] ----D C:\Program Files (x86)\SearchProtect
O43 - CFD: 01/12/2013 - 19:54:18 - [] ----D C:\ProgramData\Conduit
O43 - CFD: 01/12/2013 - 20:06:42 - [] ----D D:\Utilisateurs\Gladys\AppData\Roaming\SearchProtect
O43 - CFD: 01/12/2013 - 19:53:49 - [] ----D D:\Utilisateurs\Gladys\AppData\Local\Conduit
O43 - CFD: 01/12/2013 - 19:52:30 - [] ----D D:\Utilisateurs\Gladys\AppData\Local\CRE
SS - | Auto 22/09/2013 220960 | (CltMngSvc) . (.Conduit.) - C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
[HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS]
[HKCU\Software\Softonic]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
[HKLM\Software\Wow6432Node\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}]
C:\Program Files (x86)\SearchProtect
D:\Utilisateurs\Gladys\AppData\Roaming\SearchProtect
C:\Program Files (x86)\Conduit
C:\ProgramData\Conduit
D:\Utilisateurs\Gladys\AppData\Local\Conduit
D:\Utilisateurs\Gladys\AppData\LocalLow\Conduit
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\Conduit]
[HKCU\Software\SearchProtect]
[HKLM\Software\Wow6432Node\Conduit]
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com
R3 - URLSearchHook: appbarioFR Toolbar [64Bits] - {73ee2cf2-7b76-4c49-b659-c3d8cf30825d} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
O2 - BHO: CrossriderApp0044150 [64Bits] - {11111111-1111-1111-1111-110411411150} . (.freeven - media enhance BHO.) -- C:\Program Files (x86)\media enhance\media enhance-bho.dll
O39 - APT: - (..) -- C:\Windows\Tasks\media enhance-chromeinstaller.job [3102]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\media enhance-chromeinstaller [3102]
O39 - APT: - (..) -- C:\Windows\Tasks\media enhance-codedownloader.job [1546]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\media enhance-codedownloader [1546]
O39 - APT: - (..) -- C:\Windows\Tasks\media enhance-firefoxinstaller.job [2374]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\media enhance-firefoxinstaller [2374]
O39 - APT: - (..) -- C:\Windows\Tasks\PCHelpers1st.job [302]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\PCHelpers1st [302]
O39 - APT: - (..) -- C:\Windows\Tasks\PCHelpers_period.job [302]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\PCHelpers_period [302]
O42 - Logiciel: media enhance - (.freeven.) [HKLM][64Bits] -- media enhance
[HKCU\Software\AppDataLow\Software\Crossrider]
[HKCU\Software\AppDataLow\Software\Re_markit]
[HKCU\Software\AppDataLow\Software\SmartBar]
[HKCU\Software\AppDataLow\Software\appbarioFR]
[HKCU\Software\AppDataLow\Software\media enhance]
[HKCU\Software\AppDataLow\Software\rrsavings]
[HKCU\Software\Boxore]
[HKCU\Software\InstallCore]
[HKCU\Software\Linkey]
[HKCU\Software\OfferBox]
[HKCU\Software\Optimizer Pro]
[HKLM\Software\Iminent]
[HKLM\Software\Wow6432Node\Boxore]
[HKLM\Software\Wow6432Node\Iminent]
[HKLM\Software\Wow6432Node\InstallCore]
[HKLM\Software\Wow6432Node\OfferBox]
[HKLM\Software\Wow6432Node\appbarioFR]
O43 - CFD: 18/05/2014 - 08:21:15 - [] ----D C:\Program Files (x86)\media enhance
O43 - CFD: 18/05/2014 - 08:20:06 - [] ----D C:\Program Files (x86)\Mysearchdial
O43 - CFD: 21/03/2014 - 21:10:15 - [] ----D C:\Program Files (x86)\Software
O43 - CFD: 10/02/2014 - 12:07:18 - [0] ----D D:\Utilisateurs\Gladys\AppData\Roaming\Advanced System Protector
O43 - CFD: 01/12/2013 - 19:48:26 - [] ----D D:\Utilisateurs\Gladys\AppData\Roaming\freegames4357
O43 - CFD: 10/02/2014 - 12:06:24 - [] ----D D:\Utilisateurs\Gladys\AppData\Roaming\IminentToolbar
O43 - CFD: 11/02/2014 - 17:24:19 - [0] ----D D:\Utilisateurs\Gladys\AppData\Roaming\Nosibay
O43 - CFD: 10/02/2014 - 12:06:10 - [] ----D D:\Utilisateurs\Gladys\AppData\Roaming\OfferBox
O43 - CFD: 21/03/2014 - 20:06:06 - [] ----D D:\Utilisateurs\Gladys\AppData\Roaming\Optimizer Elite Max
O43 - CFD: 21/03/2014 - 20:52:45 - [] ----D D:\Utilisateurs\Gladys\AppData\Roaming\speedtest4354
O43 - CFD: 10/02/2014 - 17:44:33 - [] ----D D:\Utilisateurs\Gladys\AppData\Local\SwvUpdater
O45 - LFCP:[MD5.8B3CD9167D303A7284B98437136D88EB] - 08/05/2014 - 15:59:22 ---A- - C:\Windows\Prefetch\AMONETIZE_RRSAVINGS.EXE-541146A4.pf
O45 - LFCP:[MD5.A0CADC28F258464AA8302E7F16A6744B] - 08/05/2014 - 16:17:11 ---A- - C:\Windows\Prefetch\COUPONDOWNLOADER.EXE-50CBDB61.pf
O45 - LFCP:[MD5.E6E27315BA856B411A295C72A9A6B992] - 08/05/2014 - 17:29:10 ---A- - C:\Windows\Prefetch\COUPONDOWNLOADER.EXE-5CE56912.pf
O45 - LFCP:[MD5.B25E2B1A66B2C70F319EFE7A7F039125] - 08/05/2014 - 16:18:33 ---A- - C:\Windows\Prefetch\COUPONDOWNLOADER.EXE-8ACA1470.pf
O45 - LFCP:[MD5.5F145E80A2EFFB7ACB5EBB5C96C2B68A] - 11/05/2014 - 10:31:10 ---A- - C:\Windows\Prefetch\COUPONDOWNLOADER.EXE-98968238.pf
O45 - LFCP:[MD5.1C2DDA8DE7BA72EFEF644155B67B4AC6] - 08/05/2014 - 17:26:03 ---A- - C:\Windows\Prefetch\COUPONDOWNLOADER.EXE-DBC8B474.pf
O45 - LFCP:[MD5.628C4C4AB3935077CF38C85782AFC583] - 16/05/2014 - 18:02:13 ---A- - C:\Windows\Prefetch\MEDIA ENHANCE-CHROMEINSTALLER-A460FB3F.pf
O45 - LFCP:[MD5.38D43582F465F36BE34FDD20171674FC] - 16/05/2014 - 18:02:05 ---A- - C:\Windows\Prefetch\MEDIA ENHANCE-CODEDOWNLOADER.-B652FFD5.pf
O45 - LFCP:[MD5.2A370FCA6DF4D24CB9B142FDB6E3AB6E] - 16/05/2014 - 18:02:10 ---A- - C:\Windows\Prefetch\MEDIA ENHANCE-FIREFOXINSTALLE-5595FDF0.pf
O45 - LFCP:[MD5.A6174038C872EF469DB4E12332E250DC] - 11/05/2014 - 10:31:40 ---A- - C:\Windows\Prefetch\MYPC BACKUP.EXE-B5EA9514.pf
O45 - LFCP:[MD5.7800059FD64EEEB0433FFCBE41B0FD09] - 08/05/2014 - 17:29:11 ---A- - C:\Windows\Prefetch\OPTIMIZERPRO_600.EXE-45AE3968.pf
O45 - LFCP:[MD5.1A7A23D62021E5D44AF1EB14189AE0F1] - 08/05/2014 - 16:17:16 ---A- - C:\Windows\Prefetch\OPTIMIZERPRO_600.EXE-62D838E8.pf
O45 - LFCP:[MD5.4F767D2CCB0283881EDDA2C2E7BF3D64] - 08/05/2014 - 16:18:47 ---A- - C:\Windows\Prefetch\OPTIMIZERPRO_600.EXE-98DE3832.pf
O45 - LFCP:[MD5.664940BAC21D2BA43BCABD1123AE0126] - 08/05/2014 - 17:26:17 ---A- - C:\Windows\Prefetch\OPTIMIZERPRO_600.EXE-D43EC764.pf
O45 - LFCP:[MD5.7E54B3034011A1251C4FBAFC0D3B2B74] - 11/05/2014 - 10:31:17 ---A- - C:\Windows\Prefetch\OPTIMIZERPRO_600.EXE-E3F2B71E.pf
O45 - LFCP:[MD5.C8C9CE6B74FB8C86ECC21289995736F9] - 11/05/2014 - 10:44:16 ---A- - C:\Windows\Prefetch\SIGNUP WIZARD.EXE-322905CC.pf
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Mysearchdial) - http://start.mysearchdial.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} - (default-search.net) - http://www.default-search.net
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bizzybolt_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bizzybolt_RASMANCS
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411411150}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\media enhance]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}]
[HKLM\Software\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}]
[HKLM\Software\Wow6432Node\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}]
[HKLM\Software\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}]
[HKLM\Software\Classes\Updater.AmiUpd]
[HKLM\Software\Classes\Updater.AmiUpd.1]
[HKCU\Software\Boxore]
[HKLM\Software\Wow6432Node\Boxore]
[HKLM\Software\Iminent]
[HKLM\Software\Wow6432Node\Iminent]
[HKCU\Software\OfferBox]
[HKLM\Software\Wow6432Node\OfferBox]
[HKCU\Software\InstallCore]
[HKLM\Software\Wow6432Node\InstallCore]
[HKCU\AppEvents\Schemes\Apps\Explorer\Navigating\Old_Current]
[HKCU\Software\AppDataLow\Software\Crossrider]
[HKLM\Software\Classes\CrossriderApp0044150.BHO]
[HKLM\Software\Classes\CrossriderApp0044150.BHO.1]
[HKLM\Software\Classes\CrossriderApp0044150.Sandbox]
[HKLM\Software\Classes\CrossriderApp0044150.Sandbox.1]
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0044150.BHO]
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0044150.BHO.1]
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0044150.Sandbox]
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0044150.Sandbox.1]
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110411411150}]
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220422412250}]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411411150}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC]
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{73ee2cf2-7b76-4c49-b659-c3d8cf30825d}
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
C:\Program Files (x86)\media enhance
C:\Program Files (x86)\Mysearchdial
D:\Utilisateurs\Gladys\AppData\Roaming\Advanced System Protector
D:\Utilisateurs\Gladys\AppData\Roaming\IminentToolbar
D:\Utilisateurs\Gladys\AppData\Roaming\Nosibay
D:\Utilisateurs\Gladys\AppData\Roaming\OfferBox
D:\Utilisateurs\Gladys\AppData\Roaming\Optimizer Elite Max
D:\Utilisateurs\Gladys\AppData\Local\SwvUpdater
C:\Program Files (x86)\Software
D:\Utilisateurs\Gladys\AppData\Local\Software
C:\Windows\Tasks\media enhance-chromeinstaller.job
C:\Windows\System32\Tasks\media enhance-chromeinstaller
C:\Windows\Tasks\media enhance-codedownloader.job
C:\Windows\System32\Tasks\media enhance-codedownloader
C:\Windows\Tasks\media enhance-firefoxinstaller.job
C:\Windows\System32\Tasks\media enhance-firefoxinstaller
C:\Windows\Tasks\PCHelpers1st.job
C:\Windows\System32\Tasks\PCHelpers1st
C:\Windows\Tasks\PCHelpers_period.job
C:\Windows\System32\Tasks\PCHelpers_period
[HKCU\Software\AppDataLow\Software\Re_markit]
[HKCU\Software\AppDataLow\Software\SmartBar]
[HKCU\Software\AppDataLow\Software\appbarioFR]
[HKCU\Software\AppDataLow\Software\media enhance]
[HKCU\Software\AppDataLow\Software\rrsavings]
[HKCU\Software\Linkey]
[HKCU\Software\Optimizer Pro]
[HKLM\Software\Wow6432Node\appbarioFR]
FirewallRAZ
EmptyFlash
EmptyCLSID
EmptyTemp

Publicité


Signaler le contenu de ce document

Publicité