cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
M0 - MFSP: prefs.js [KEVIN - ze4lw5pg.default] http://start.qone8.com =>Hijacker.Qone8
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} Clé orpheline
O3 - Toolbar: Acer eDataSecurity Management - [HKLM]{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.HiTRUST - eDStoolbar Module.) -- C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{FA4ACD63-FDBF-4EE2-85E1-CAD95E77CDF0} Clé orpheline
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-734004386-2388447732-2219970774-1001Core] (.Facebook Inc..) -- C:\Users\KEVIN\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-734004386-2388447732-2219970774-1001UA] (.Facebook Inc..) -- C:\Users\KEVIN\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.00000000000000000000000000000000] [APT] [{CF0EFBA1-A3C9-4C31-901E-1CFE85F13802}] (...) -- C:\Program Files\Acer GameZone\Luxor 2\Uninstall.exe (.not file.) [0]
O51 - MPSK:{0ebccdfe-a9b8-11e1-9328-beaad783fd86}\AutoRun\command. (...) -- G:\iStudio.exe (.not file.)
O51 - MPSK:{5f20770e-5994-11de-a63c-0019d265b131}\AutoRun\command. (...) -- F:\Install.cmd (.not file.)
O51 - MPSK:{cebb6184-446c-11de-9138-0019d265b131}\AutoRun\command. (...) -- F:\CDPCDOC\Install.cmd (.not file.)
[HKCU\Software\APN PIP]
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\PIP]
O43 - CFD: 02/04/2012 - 00:31:18 - [0] ----D C:\Users\KEVIN\AppData\Local\Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit
[HKCU\Software\APN PIP] =>Toolbar.Ask
[HKLM\Software\PIP] =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKLM\Software\Classes\CLSID\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Classes\Toolbar.CT1332861] =>Toolbar.Conduit
C:\Users\KEVIN\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\KEVIN\AppData\LocalLow\Conduit =>Toolbar.Conduit
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKLM\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKLM\Software\Bandoo] =>Adware.Bandoo
[HKLM\Software\SupDp] =>PUP.SupTab
[HKLM\Software\Wpm] =>PUP.WpManager
[HKLM\Software\supTab] =>PUP.SupTab
[HKLM\Software\supWindowsProtectManger] =>Trojan.Fuyu
O43 - CFD: 02/04/2012 - 00:44:16 - [] ----D C:\Program Files\Bandoo =>Adware.Bandoo
O43 - CFD: 11/06/2014 - 16:43:15 - [] ----D C:\ProgramData\IePluginServices =>Trojan.SProtector
O43 - CFD: 10/06/2014 - 14:35:39 - [] ----D C:\ProgramData\WindowsProtectManger =>Trojan.Fuyu
O43 - CFD: 10/06/2014 - 14:15:13 - [0] ----D C:\Users\KEVIN\AppData\Roaming\SupTab =>PUP.SupTab
O45 - LFCP:[MD5.B61CA9C0A0B0D0F571938799A338DB8C] - 10/06/2014 - 21:50:38 ---A- - C:\Windows\Prefetch\SPYHUNTER-INSTALLER(1).EXE-6F2CE290.pf =>Crapware.SpyHunter
O61 - LFC: 10/06/2014 - 16:55:51 ---A- . (...) -- C:\Users\KEVIN\AppData\Local\Temp\adks_qone8_20140514.exe [689848] =>Hijacker.Qone8
O61 - LFC: 10/06/2014 - 16:55:51 ---A- . (.Fuyu LIMITED.) -- C:\Users\KEVIN\AppData\Local\Temp\6890798\6890798.zipDir\tmp\wpm.exe [573344] =>PUP.WpManager
O61 - LFC: 10/06/2014 - 16:55:52 ---A- . (...) -- C:\Users\KEVIN\AppData\Local\Temp\SHSetup.exe [0] =>Crapware.SpyHunter
[HKCR\CLSID\{BB76A90B-2B4C-4378-8506-9A2B6E16943C}] (BandooCore Class) =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{1301a8a5-3dfb-4731-a162-b357d00c9644}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{27f69c85-64e1-43ce-98b5-3c9f22fb408e}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624f4-c5dd-4e1d-bdd0-1e9c9b7799cc}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{477f210a-2a86-4666-9c4b-1189634d2c84}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{8a96af9e-4074-43b7-bea3-87217bda74c8}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9c8a3ca5-889e-4554-beec-ec0876e4e96a}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{B543EF05-9758-464E-9F37-4C28525B4A4C}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{bb76a90b-2b4c-4378-8506-9a2b6e16943c}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{C3AB94A4-BFD0-4BBA-A331-DE504F07D2DB}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f9189560-573a-4fde-b055-ae7b0f4cf080}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{ff871e51-2655-4d06-aed5-745962a96b32}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\bandoocore.exe] =>Adware.Bandoo
[HKLM\Software\Bandoo] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.BandooCore] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.BandooCore.1] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.ResourcesMngr] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.ResourcesMngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.SettingsMngr] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.SettingsMngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.StatisticMngr] =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.StatisticMngr.1] =>Adware.Bandoo
C:\Program Files\Bandoo =>Adware.Bandoo^
C:\ProgramData\IePluginServices =>Trojan.SProtector^
C:\ProgramData\WindowsProtectManger =>Trojan.Fuyu^
C:\Users\KEVIN\AppData\Roaming\SupTab =>PUP.SupTab^
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar^
[HKLM\Software\SupDp] =>PUP.SupTab^
[HKLM\Software\Wpm] =>PUP.WpManager^
[HKLM\Software\supTab] =>PUP.SupTab^
[HKLM\Software\supWindowsProtectManger] =>Trojan.Fuyu^
[HKCR\CLSID\{BB76A90B-2B4C-4378-8506-9A2B6E16943C}] (BandooCore Class) =>Adware.Bandoo^

ShortcutFix
FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité