cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
[MD5.20AD09F5D0DF16349FEDB034B069320D] - (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Program Files\Baidu Security\Baidu Antivirus\BavTray.exe [1699688] [PID.3996]
[MD5.F879344305F0BA2B57CB7C8DD2CF2AEC] - (.Baidu Inc. - PC Faster Tray.) -- C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFTray.exe [1351360] [PID.2540]
[MD5.FE7D052DEF4B61C500AD8134D8972C0D] - (.Baidu Inc. - FasterNow.) -- C:\Program Files\Baidu Security\PC Faster\4.0.0.0\FasterNow.exe [542192] [PID.800]
[MD5.068A9264C4E4160B24A40A5C3CCB4F4F] - (.No owner - BaiduYunGuanjia.) -- C:\Users\????\AppData\Roaming\baidu\BaiduYunGuanjia\BaiduYunGuanjia.exe [3876296] [PID.940]
[MD5.4F05C03708D215F1B092EECE818C93F6] - (.Baidu, Inc. - Baidu Antivirus Service.) -- C:\Program Files\Baidu Security\PC Faster\4.0.0.0\Cloud Security\BCloudScan.exe [1910632] [PID.9220]
G1 - GCS: Preference [User Data\Default] http://www.default-search.net =>Hijacker.Browsers
M3 - MFPP: Plugins - [????] -- C:\Users\????\AppData\Roaming\Mozilla\Firefox\Profiles\oelah6ir.default\searchplugins\default-search.xml =>Hijacker.Browsers
M0 - MFSP: prefs.js [???? - oelah6ir.default] http://www.default-search.net? =>Hijacker.Browsers
M2 - MFEP: prefs.js [???? - oelah6ir.default\extension@linkeyproject.com] [] Linkey for Firefox v1.0 (..) =>PUP.LinkeySearch
M2 - MFEP: prefs.js [???? - oelah6ir.default\{F739D6FC-F9EF-F58F-254C-FC49E2694E5E}] [] Settings Manager v5.0.0.12791 (..) =>PUP.SystemK
P2 - FPN: [HKLM] [@baidu.com/UploadPlugin] - (.Baidu.com, Inc. - ??????(2.0.0.4).) -- C:\Users\????\AppData\Roaming\baidu\Baidu Uploader\npUploader.dll
P2 - FPN: [HKLM] [@baidu.com/YunWebDetectPlugin] - (.Baidu.com, Inc. - YunWebDetect.) -- C:\Users\????\AppData\Roaming\baidu\BaiduYunGuanjia\npYunWebDetect.dll
O2 - BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} . (.Aztec Media Inc - Linkey.) -- C:\Program Files\Linkey\IEExtension\iedll.dll =>PUP.LinkeySearch
O4 - HKLM\..\Run: [Baidu PC Faster 4.0.0.0] . (.Baidu Inc. - PC Faster.) -- C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFaster.exe
O4 - HKLM\..\Run: [Baidu Antivirus] . (.Baidu, Inc. - Baidu Antivirus Tray Application.) -- C:\Program Files\Baidu Security\Baidu Antivirus\BavTray.exe
O4 - HKCU\..\Run: [BaiduYunGuanjia] . (.No owner - BaiduYunGuanjia.) -- C:\Users\????\AppData\Roaming\baidu\BaiduYunGuanjia\BaiduYunGuanjia.exe
O4 - HKUS\S-1-5-21-4122249670-2922848707-2742521171-1000\..\Run: [BaiduYunGuanjia] . (.No owner - BaiduYunGuanjia.) -- C:\Users\????\AppData\Roaming\baidu\BaiduYunGuanjia\BaiduYunGuanjia.exe
O23 - Service: Baidu Antivirus Service (BAVSvc) . (.Baidu, Inc. - Baidu Antivirus Service.) - C:\Program Files\Baidu Security\Baidu Antivirus\BAVSvc.exe
O23 - Service: Baidu Hips Service (BHipsSvc) . (.Baidu, Inc. - Baidu Antivirus Hips Service.) - C:\Program Files\Baidu Security\Baidu Antivirus\BHipsSvc.exe
O23 - Service: F06DEFF2-5B9C-490D-910F-35D3A91196222 (F06DEFF2-5B9C-490D-910F-35D3A91196222) . (.Aztec Media Inc - SystemK Configuration.) - C:\Program Files\Settings Manager\systemk\systemkmgrc1.cfg =>PUP.SystemK
O23 - Service: Baidu PC App Store Service 4.2.1.5384 (PCAppStoreSvc_{PCAppStore_4.2.1.5384}) . (.Baidu Inc. - Baidu PC App Store Service.) - C:\Program Files\Baidu Security\PC App Store\4.2.1.5384\PCAppStoreSvc.exe
O23 - Service: Baidu PC Faster Service 4.0.0.0 (PCFasterSvc_{PCFaster_4.0.0.0}) . (.Baidu Inc. - Baidu PC Faster Service.) - C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFasterSvc.exe
O23 - Service: Systemk Service (SystemkService) . (.Aztec Media Inc - Systemk Service.) - C:\Program Files\Settings Manager\systemk\SystemkService.exe =>PUP.SystemK
O36 - AppCertDlls: (x64) . (...) -- c:\program files\settings manager\systemk\x64\sysapcrt.dll =>PUP.SystemK
O36 - AppCertDlls: (x86) . (...) -- C:\Program Files\Settings Manager\systemk\sysapcrt.dll =>PUP.SystemK
[MD5.8C8A6C556E05C0BACB66EDEFBC327659] [APT] [Baidu Antivirus Update] (.Baidu, Inc..) -- C:\Program Files\Baidu Security\Baidu Antivirus\BavUpdater.exe [2864792]
[MD5.5271945AAC716F3839B36DC0CAC3275F] [APT] [Baidu PC Faster Service] (.Baidu Inc..) -- C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFasterSvc.exe [699376]
[MD5.D99EEC8D42542BDC806A8D7888941698] [APT] [Baidu PC Faster Update] (.Baidu Inc..) -- C:\Program Files\Baidu Security\PC Faster\4.0.0.0\Updater.exe [1343472]
[MD5.00000000000000000000000000000000] [APT] [{241A1EF3-85CB-4B24-ACF8-9133EB032C1C}] (...) -- C:\Users\????\Downloads\flashget3.7.0.1220en.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{27A5B541-4A8A-4937-82DD-6F24F626F791}] (...) -- C:\Users\????\Downloads\flashget3.7.0.1220en.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{3B0C26D5-DCDD-487F-879D-4784FD643F5C}] (...) -- C:\Users\????\Downloads\flashget3.7.0.1220en.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{49AB285D-0B41-4FA3-8403-5C6975F3BE2A}] (...) -- C:\Users\????\Downloads\flashget3.7.0.1220en.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{4B6A734B-347F-4C42-89E9-0514A0FD0A2E}] (...) -- C:\Users\????\Desktop\Setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F36FD200-AC5C-4711-B9E0-CDB020D3B7D0}] (...) -- C:\Users\????\Downloads\flashget3.7.0.1220en.exe (.not file.) [0]
O41 - Driver: (F06DEFF2-5B9C-490D-910F-35D3A91196222) . (.Aztec Media Inc - SystemK Configuration.) - C:\Program Files\Settings Manager\systemk\systemkmgrc1.cfg =>PUP.SystemK
O42 - Logiciel: Linkey - (.Aztec Media Inc.) [HKCU] -- Linkey =>PUP.LinkeySearch
O42 - Logiciel: Settings Manager - (.Aztec Media Inc.) [HKLM] -- Settings Manager =>PUP.SystemK
[HKCU\Software\Baidu Security]
[HKCU\Software\Baidu]
[HKCU\Software\SystemK] =>PUP.SystemK
[HKCU\Software\Tencent] =>Adware.TencentAddressBar
[HKLM\Software\Baidu Security]
[HKLM\Software\Baidu]
[HKLM\Software\Linkey] =>PUP.LinkeySearch
[HKLM\Software\SystemK] =>PUP.SystemK
[HKLM\Software\Tencent] =>Adware.TencentAddressBar
O43 - CFD: 09-06-2014 - 17:48:59 - [] ----D C:\Program Files\Baidu Security
O43 - CFD: 18-04-2014 - 3:15:08 - [] ----D C:\Program Files\Linkey =>PUP.LinkeySearch
O43 - CFD: 18-04-2014 - 3:13:51 - [] ----D C:\Program Files\Settings Manager =>PUP.SystemK
O43 - CFD: 13-06-2014 - 3:56:40 - [] ----D C:\Program Files\Tencent =>Adware.TencentAddressBar
O43 - CFD: 08-04-2014 - 5:38:36 - [] ----D C:\Program Files\Common Files\Tencent =>Adware.TencentAddressBar
O43 - CFD: 09-06-2014 - 17:49:04 - [] ----D C:\ProgramData\Baidu
O43 - CFD: 04-06-2014 - 5:28:27 - [] ----D C:\ProgramData\Baidu Security
O43 - CFD: 15-06-2014 - 0:30:07 - [] ----D C:\ProgramData\systemk =>PUP.SystemK
O43 - CFD: 08-04-2014 - 5:38:40 - [] ----D C:\ProgramData\Tencent =>Adware.TencentAddressBar
O43 - CFD: 09-06-2014 - 17:49:25 - [] ----D C:\Users\????\AppData\Roaming\baidu
O43 - CFD: 04-06-2014 - 5:42:12 - [] ----D C:\Users\????\AppData\Roaming\Baidu Security
O43 - CFD: 04-06-2014 - 5:49:25 - [] ----D C:\Users\????\AppData\Roaming\BaiduYunGuanjia
O43 - CFD: 11-04-2014 - 17:12:10 - [] ----D C:\Users\????\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 10-04-2014 - 16:02:28 - [] ----D C:\Users\????\AppData\Roaming\Tencent =>Adware.TencentAddressBar
O43 - CFD: 13-06-2014 - 3:56:45 - [] ----D C:\Users\????\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar
O45 - LFCP:[MD5.85205A3AF6B41389D671C53B93E284E9] - 13-06-2014 - 3:58:18 ---A- - C:\Windows\Prefetch\SYSTEMKU.EXE-4B10B732.pf =>PUP.SystemK
O50 - IFEO:Image File Execution Options - bitguard.exe - tasklist.exe =>PUP.BitGuard
O50 - IFEO:Image File Execution Options - bprotect.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsersafeguard.exe - tasklist.exe =>PUP.BrowserSafeguard
O50 - IFEO:Image File Execution Options - dprotectsvc.exe - tasklist.exe =>Trojan.Staser
O50 - IFEO:Image File Execution Options - jumpflip - tasklist.exe =>PUP.JumpFlip
O50 - IFEO:Image File Execution Options - protectedsearch.exe - tasklist.exe =>Spyware.ProtectedSearch
O50 - IFEO:Image File Execution Options - searchsettings.exe - tasklist.exe =>Adware.SearchSettings
O50 - IFEO:Image File Execution Options - searchsettings64.exe - tasklist.exe =>Adware.SearchSettings
O50 - IFEO:Image File Execution Options - snapdo.exe - tasklist.exe =>Hijacker.SmartBar
O50 - IFEO:Image File Execution Options - umbrella.exe - tasklist.exe =>Adware.IMBooster
O50 - IFEO:Image File Execution Options - utiljumpflip.exe - tasklist.exe =>PUP.JumpFlip
O50 - IFEO:Image File Execution Options - volaro - tasklist.exe =>Trojan.Vonteera
O50 - IFEO:Image File Execution Options - vonteera - tasklist.exe =>Trojan.Vonteera
O50 - IFEO:Image File Execution Options - websteroids.exe - tasklist.exe =>PUP.TubeDimmer
O50 - IFEO:Image File Execution Options - websteroidsservice.exe - tasklist.exe =>PUP.TubeDimmer
[HKCU\Software\Softonic] =>Toolbar.Conduit
O50 - IFEO:Image File Execution Options - searchprotection.exe - tasklist.exe =>Toolbar.Conduit
O50 - IFEO:Image File Execution Options - searchprotector.exe - tasklist.exe =>Toolbar.Conduit
O61 - LFC: 11-06-2014 - 1:06:21 ---A- . (...) -- C:\Users\????\AppData\Local\Temp\BingBarSetup-Partner.exe [671744] =>Toolbar.Bing
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_xnview_RASAPI32 =>Toolbar.Conduit
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_xnview_RASMANCS =>Toolbar.Conduit
[HKCU\Software\Softonic] =>Toolbar.Conduit
O64 - Services: CurCS - 16-05-2014 - C:\Program Files\Baidu Security\Baidu Antivirus\BdApiUtil.sys (BdApiUtil) .(.Baidu, Inc. - Baidu Antivirus BdApi Driver.) - LEGACY_BDAPIUTIL
O64 - Services: CurCS - 27-05-2014 - C:\Program Files\Baidu Security\Baidu Antivirus\BdCameraProtect.sys (BdCameraProtect) .(.Baidu, Inc. - Baidu Antivirus Camera Protector Driver.) - LEGACY_BDCAMERAPROTECT
O64 - Services: CurCS - 25-05-2014 - C:\Program Files\Settings Manager\systemk\systemkmgrc1.cfg (F06DEFF2-5B9C-490D-910F-35D3A91196222) .(.Aztec Media Inc - SystemK Configuration.) - LEGACY_F06DEFF2-5B9C-490D-910F-35D3A91196222 =>PUP.SystemK
O64 - Services: CurCS - 11-03-2014 - C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil.sys (PCFApiUtil) .(.Baidu, Inc. - Baidu Antivirus BdApi Driver.) - LEGACY_PCFAPIUTIL
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} - (default-search.net) - http://www.default-search.net =>Hijacker.Browsers
O87 - FAEL: "{F1660CFD-61CB-46E7-BF5E-9BE998BDA33C}" | In - Public - P6 - TRUE | .(.Tencent - ????????.) -- C:\Windows.old\Program Files\Tencent\QQPlayer\Tencentdl.exe =>Adware.TencentAddressBar
O87 - FAEL: "{1825C272-012C-4AE4-B797-3FA695C724AC}" | In - Public - P17 - TRUE | .(.Tencent - ????????.) -- C:\Windows.old\Program Files\Tencent\QQPlayer\Tencentdl.exe =>Adware.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 =>Adware.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASMANCS =>Adware.TencentAddressBar
[HKCR\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}] (Linkey) =>PUP.LinkeySearch
SR - | Auto 20-05-2014 2015088 | (BAVSvc) . (.Baidu, Inc..) - C:\Program Files\Baidu Security\Baidu Antivirus\BAVSvc.exe
SR - | Auto 16-05-2014 480920 | (BHipsSvc) . (.Baidu, Inc..) - C:\Program Files\Baidu Security\Baidu Antivirus\BHipsSvc.exe
SR - | System 25-05-2014 31120 | (F06DEFF2-5B9C-490D-910F-35D3A91196222) . (.Aztec Media Inc.) - C:\Program Files\Settings Manager\systemk\systemkmgrc1.cfg =>PUP.SystemK
SR - | Auto 08-04-2014 575008 | (PCAppStoreSvc_{PCAppStore_4.2.1.5384}) . (.Baidu Inc..) - C:\Program Files\Baidu Security\PC App Store\4.2.1.5384\PCAppStoreSvc.exe
SR - | Auto 06-06-2014 699376 | (PCFasterSvc_{PCFaster_4.0.0.0}) . (.Baidu Inc..) - C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFasterSvc.exe
SR - | Auto 25-05-2014 3543056 | (SystemkService) . (.Aztec Media Inc.) - C:\Program Files\Settings Manager\systemk\SystemkService.exe =>PUP.SystemK
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}] =>PUP.LinkeySearch^
[HKLM\SYSTEM\CurrentControlSet\Services\F06DEFF2-5B9C-490D-910F-35D3A91196222] =>PUP.SystemK^
[HKLM\SYSTEM\CurrentControlSet\Services\SystemkService] =>PUP.SystemK^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey] =>PUP.LinkeySearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager] =>PUP.SystemK^
[HKLM\Software\Classes\AppID\{2C254882-699A-464B-95F5-32F003F4F45C}] =>Adware.BDSearch
[HKLM\Software\Classes\CLSID\{10245650-5917-4ff8-BED6-ABB91DD73E47}] =>Adware.BDSearch
[HKLM\Software\Classes\AppID\FlashgetHook.DLL] =>Adware.BDSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{116ba71c-8187-4f15-9a1f-c9d6289155d1}] =>Adware.BDSearch
[HKLM\Software\Classes\CLSID\{116ba71c-8187-4f15-9a1f-c9d6289155d1}] =>Adware.BDSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974c985-8151-4de5-b23c-b875f0a8522f}] =>Adware.BDSearch
[HKLM\Software\Classes\CLSID\{2974c985-8151-4de5-b23c-b875f0a8522f}] =>Adware.BDSearch
[HKLM\Software\Classes\CLSID\{A0939A48-0E2F-453F-899C-595F6648EE88}] =>Adware.BDSearch
[HKLM\Software\Classes\Interface\{A0939A48-0E2F-453F-899C-595F6648EE88}] =>Adware.BDSearch
[HKLM\Software\Classes\Interface\{6DD9E779-2707-4BF0-8269-E4C6BD8B39B7}] =>Adware.BDSearch
[HKLM\Software\Classes\Interface\{810B845F-70F3-4B05-9625-3FB37B59A884}] =>Adware.BDSearch
[HKLM\Software\Classes\TypeLib\{DF772EB8-4116-49AE-8FA4-B5B078AA4198}] =>Adware.BDSearch
[HKLM\Software\Classes\FG2CatchUrl.Netscape] =>Adware.BDSearch
[HKLM\Software\Classes\FG2CatchUrl.Netscape.1] =>Adware.BDSearch
[HKLM\Software\Classes\FlashGetHook.FG3DownMgr] =>Adware.BDSearch
[HKLM\Software\Classes\FlashGetHook.FG3DownMgr.1] =>Adware.BDSearch
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476}] =>Adware.Bandoo^
C:\Users\????\AppData\Roaming\Mozilla\Firefox\Profiles\oelah6ir.default\extensions\extension@linkeyproject.com =>PUP.LinkeySearch^
C:\Users\????\AppData\Roaming\Mozilla\Firefox\Profiles\oelah6ir.default\extensions\{F739D6FC-F9EF-F58F-254C-FC49E2694E5E} =>PUP.SystemK^
C:\Program Files\Linkey =>PUP.LinkeySearch^
C:\Program Files\Settings Manager =>PUP.SystemK^
C:\Program Files\Tencent =>Adware.TencentAddressBar^
C:\Program Files\Common Files\Tencent =>Adware.TencentAddressBar^
C:\ProgramData\systemk =>PUP.SystemK^
C:\ProgramData\Tencent =>Adware.TencentAddressBar^
C:\Users\????\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\Users\????\AppData\Roaming\Tencent =>Adware.TencentAddressBar^
C:\Users\????\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar^
[HKCU\Software\SystemK] =>PUP.SystemK^
[HKCU\Software\Tencent] =>Adware.TencentAddressBar^
[HKLM\Software\Linkey] =>PUP.LinkeySearch^
[HKLM\Software\SystemK] =>PUP.SystemK^
[HKLM\Software\Tencent] =>Adware.TencentAddressBar^
[HKCR\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}] (Linkey) =>PUP.LinkeySearch^

EmptyFlash
EmptyTemp
EmptyClsid
Emptyprefetch
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité