cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
[MD5.235B9A609B7C1E4A7582C1277FB602B5] - (...) -- C:\Program Files\NetCrawl\updater.exe [137216] [PID.608]
[MD5.44A9229022A519ED45294A1934C05EEC] - (.Flux Software LLC - f.lux.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\FluxSoftware\Flux\flux.exe [1017224] [PID.2052]
[MD5.0819CDA111B5FA27B4D57A25E4E2467F] - (...) -- C:\Program Files\NetCrawl\bin\utilNetCrawl.exe [318752] [PID.804]
[MD5.0819CDA111B5FA27B4D57A25E4E2467F] - (...) -- C:\Program Files\NetCrawl\updateNetCrawl.exe [318752] [PID.3396]
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.beyluxe.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.arabyonline.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://dts.search.ask.com
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,,C:\Program Files\SiSZHYaIB�q��kgkmasme.exe\kgkmasme.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Cl� orpheline
O4 - HKCU\..\Run: [F.lux] . (.Flux Software LLC - f.lux.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\FluxSoftware\Flux\flux.exe
O4 - HKUS\S-1-5-21-1004336348-1417001333-842925246-500\..\Run: [F.lux] . (.Flux Software LLC - f.lux.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\FluxSoftware\Flux\flux.exe
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} . (.AVM Software Inc. - Paltalk Messenger.) -- C:\Program Files\Paltalk Messenger\Paltalk.exe
O23 - Service: Distribuwxv Transaction Coordinator Service (Distribukhq) . (...) - C:\WINDOWS\system32\dqrhqi.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Update NetCrawl (Update NetCrawl) . (...) - C:\Program Files\NetCrawl\updateNetCrawl.exe
O23 - Service: UpdaterSvcNetCrawl (UpdaterSvcNetCrawl) . (...) - C:\Program Files\NetCrawl\updater.exe
O23 - Service: Util NetCrawl (Util NetCrawl) . (...) - C:\Program Files\NetCrawl\bin\utilNetCrawl.exe
O36 - AppCertDlls: (x64) . (...) -- c:\program files\music toolbar\datamngr\x64\apcrtldr.dll =>PUP.Datamngr
O41 - Driver: (dkftmmgb) . (. - .) - C:\WINDOWS\system32\drivers\dkftmmgb.sys (.not file.)
O41 - Driver: (fveqlwmu) . (. - .) - C:\WINDOWS\system32\drivers\fveqlwmu.sys (.not file.)
O41 - Driver: (hhwyzaby) . (. - .) - C:\WINDOWS\system32\drivers\hhwyzaby.sys (.not file.)
O41 - Driver: (jaelwtzb) . (. - .) - C:\WINDOWS\system32\drivers\jaelwtzb.sys (.not file.)
O41 - Driver: (uczuslcn) . (. - .) - C:\WINDOWS\system32\drivers\uczuslcn.sys (.not file.)
O41 - Driver: (urbpqdpj) . (. - .) - C:\WINDOWS\system32\drivers\urbpqdpj.sys (.not file.)
O41 - Driver: (xnuyoguo) . (. - .) - C:\WINDOWS\system32\drivers\xnuyoguo.sys (.not file.)
O41 - Driver: (yiaymfbp) . (. - .) - C:\WINDOWS\system32\drivers\yiaymfbp.sys (.not file.)
[HKCU\Software\ARHome] =>Trojan.Vonteera
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\NoVooITSet] =>Trojan.Vonteera
[HKCU\Software\Vonteera Safe ads] =>Trojan.Vonteera
[HKLM\Software\SafetyNut] =>PUP.MoviesToolbar
O43 - CFD: 20/06/2014 - 08:07:29 - [0] ----D C:\Program Files\Greener Web =>PUP.GreenerWeb
O43 - CFD: 12/06/2014 - 13:14:49 - [] ----D C:\Documents and Settings\Administrateur\Application Data\Music Toolbar =>Adware.Bandoo
O43 - CFD: 14/05/2014 - 12:35:03 - [] ----D C:\Documents and Settings\Administrateur\Local Settings\Application Data\http___www.httptunnel.ge
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O50 - IFEO:Image File Execution Options - bitguard.exe - tasklist.exe =>PUP.BitGuard
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsermngr.exe - tasklist.exe =>PUP.Babylon
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsersafeguard.exe - tasklist.exe =>PUP.BrowserSafeguard
O50 - IFEO:Image File Execution Options - bundlesweetimsetup.exe - tasklist.exe =>PUP.SweetIM
O50 - IFEO:Image File Execution Options - delta babylon.exe - tasklist.exe =>PUP.Babylo
O50 - IFEO:Image File Execution Options - deltatb.exe - tasklist.exe =>Toolbar.DeltaSearch
O50 - IFEO:Image File Execution Options - deltatb_2501-c733154b.exe - tasklist.exe =>Toolbar.DeltaSearch
O50 - IFEO:Image File Execution Options - dprotectsvc.exe - tasklist.exe =>Trojan.Staser
O50 - IFEO:Image File Execution Options - iminentsetup.exe - tasklist.exe =>Adware.IMBooster
O50 - IFEO:Image File Execution Options - jumpflip - tasklist.exe =>PUP.JumpFlip
O50 - IFEO:Image File Execution Options - protectedsearch.exe - tasklist.exe =>Spyware.ProtectedSearch
O50 - IFEO:Image File Execution Options - searchprotection.exe - tasklist.exe =>PUP.SearchProtect
O50 - IFEO:Image File Execution Options - searchprotector.exe - tasklist.exe =>PUP.SearchProtect
O50 - IFEO:Image File Execution Options - searchsettings.exe - tasklist.exe =>Adware.SearchSettings
O50 - IFEO:Image File Execution Options - searchsettings64.exe - tasklist.exe =>Adware.SearchSettings
O50 - IFEO:Image File Execution Options - snapdo.exe - tasklist.exe =>Hijacker.SmartBar
O50 - IFEO:Image File Execution Options - sweetimsetup.exe - tasklist.exe =>PUP.SweetIM
O50 - IFEO:Image File Execution Options - tbdelta.exetoolbar783881609.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - umbrella.exe - tasklist.exe =>Adware.IMBooster
O50 - IFEO:Image File Execution Options - utiljumpflip.exe - tasklist.exe =>PUP.JumpFlip
O50 - IFEO:Image File Execution Options - volaro - tasklist.exe =>Trojan.Vonteera
O50 - IFEO:Image File Execution Options - vonteera - tasklist.exe =>Trojan.Vonteera
O50 - IFEO:Image File Execution Options - websteroids.exe - tasklist.exe =>PUP.TubeDimmer
O50 - IFEO:Image File Execution Options - websteroidsservice.exe - tasklist.exe =>PUP.TubeDimmer
O53 - SMSR:HKLM\...\startupreg\eaa03e16e09241cd3c5816926dea5ac6 [Key] . (...) -- C:\WINDOWS\ctfmon.exe
O69 - SBI: SearchScopes [HKCU] {756D1D40-E491-4E1D-9BC6-5B37CEDE646E} [DefaultScope] - (VenteeRo) - http://www.arabyonline.com =>Trojan.Vonteer
[MD5.0B8A80CA2CC6CE5A227AD84A13503E12] [SPRF][16/01/2014] (...) -- C:\Documents and Settings\Administrateur\Application Data\4.exe [1445440]
[MD5.D71D423685E4F189032790D891ADC5B4] [SPRF][15/01/2014] (...) -- C:\Documents and Settings\Administrateur\Application Data\7C.exe [1462696]
[MD5.E2D12C87F244A95D0D655802C9CEFF5C] [SPRF][09/03/2014] (...) -- C:\Documents and Settings\Administrateur\Application Data\lpk.dll [46592]
SR - | Auto 26/06/2014 318752 | (Update NetCrawl) . (...) - C:\Program Files\NetCrawl\updateNetCrawl.exe
SR - | Auto 24/06/2014 137216 | (UpdaterSvcNetCrawl) . (...) - C:\Program Files\NetCrawl\updater.exe
SR - | Auto 26/06/2014 318752 | (Util NetCrawl) . (...) - C:\Program Files\NetCrawl\bin\utilNetCrawl.exe
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\ARhome] =>Trojan.Vonteera^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\mobilegeni daemon] =>PUP.Mobogenie^
[HKLM\Software\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}] =>PUP.GetNow
[HKLM\Software\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}] =>PUP.GetNow
[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\FilesFrog Update Checker] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Smart PC Cleaner] =>Rogue.Multiple
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
C:\Program Files\Greener Web =>PUP.GreenerWeb^
C:\Program Files\MyPC Backup =>PUP.MyPCBackup^
C:\Documents and Settings\Administrateur\Application Data\Music Toolbar =>Adware.Bandoo
C:\Documents and Settings\All Users\Application Data\InstallMate =>PUP.Tarma
[HKCU\Software\ARHome] =>Trojan.Vonteera
[HKCU\Software\NoVooITSet] =>Trojan.Vonteera^
[HKCU\Software\Vonteera Safe ads] =>Trojan.Vonteera^
[HKLM\Software\SafetyNut] =>PUP.MoviesToolbar^

ShortcutFix
FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité