cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
[MD5.6AF51C7D8F05017C14B496E6C2D4718E] - (...) -- C:\Users\SIEF\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\facebookx.exe [180756] [PID.2600]
O2 - BHO: CrossriderApp0035580 - {11111111-1111-1111-1111-110311551180} . (...) -- C:\Program Files\PutLockerDownloader V3.0\PutLockerDownloader V3.0-bho.dll (.not file.) =>PUP.CrossRider
O2 - BHO: weBsaivoE - {5A9A0BFC-5235-C01D-0939-29F49A36FA55} . (...) -- C:\Program Files\weBsaivoE\fuPL1wdI4.dll =>PUP.Websave
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [GfxServiceInstall] . (...) -- C:\Windows\system32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
[MD5.00000000000000000000000000000000] [APT] [PutLockerDownloader V3.0-codedownloader] (...) -- C:\Program Files\PutLockerDownloader V3.0\PutLockerDownloader V3.0-codedownloader.exe (.not file.) [0] =>Spyware.PutLocker
[MD5.00000000000000000000000000000000] [APT] [PutLockerDownloader V3.0-enabler] (...) -- C:\Program Files\PutLockerDownloader V3.0\PutLockerDownloader V3.0-enabler.exe (.not file.) [0] =>Spyware.PutLocker
[MD5.00000000000000000000000000000000] [APT] [PutLockerDownloader V3.0-updater] (...) -- C:\Program Files\PutLockerDownloader V3.0\PutLockerDownloader V3.0-updater.exe (.not file.) [0] =>Spyware.PutLocker
O39 - APT: PutLockerDownloader V3.0-codedownloader - (...) -- C:\Windows\Tasks\PutLockerDownloader V3.0-codedownloader.job [1252] =>PUP.CrossRider
O39 - APT: PutLockerDownloader V3.0-codedownloader - (...) -- C:\Windows\System32\Tasks\PutLockerDownloader V3.0-codedownloader [1252] =>PUP.CrossRider
O39 - APT: PutLockerDownloader V3.0-enabler - (...) -- C:\Windows\Tasks\PutLockerDownloader V3.0-enabler.job [1162] =>PUP.CrossRider
O39 - APT: PutLockerDownloader V3.0-enabler - (...) -- C:\Windows\System32\Tasks\PutLockerDownloader V3.0-enabler [1162] =>PUP.CrossRider
O39 - APT: PutLockerDownloader V3.0-updater - (...) -- C:\Windows\Tasks\PutLockerDownloader V3.0-updater.job [1360] =>PUP.CrossRider
O39 - APT: PutLockerDownloader V3.0-updater - (...) -- C:\Windows\System32\Tasks\PutLockerDownloader V3.0-updater [1360] =>PUP.CrossRider
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\PutLockerDownloader V3.0] =>Spyware.PutLocker
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}]
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\RegisteredApplicationsEx] =>PUP.SfKpCouponApp
[HKCU\Software\Tencent] =>Adware.TencentAddressBar
[HKLM\Software\Babylon] =>PUP.Babylon
[HKLM\Software\PutLockerDownloader V3.0] =>Spyware.PutLocker
[HKLM\Software\Tencent] =>Adware.TencentAddressBar
[HKLM\Software\WeatherBlinkEI] =>PUP.WeatherBlink
[HKLM\Software\dosearchesSoftware] =>PUP.DoSearches
O43 - CFD: 14/01/2013 - 21:42:05 - [] ----D C:\Program Files\Tencent =>Adware.TencentAddressBar
O43 - CFD: 09/11/2013 - 22:09:31 - [] ----D C:\Program Files\WeatherBlinkEI =>PUP.WeatherBlink
O43 - CFD: 07/03/2014 - 20:29:45 - [] ----D C:\Program Files\weBsaivoE =>PUP.Websave
O43 - CFD: 19/03/2014 - 15:01:21 - [0] ----D C:\Program Files\webusavE =>PUP.Websave
O43 - CFD: 19/03/2014 - 14:59:32 - [0] ----D C:\Program Files\YoutubeAdblocker =>PUP.TubeAdBlocker
O43 - CFD: 14/01/2013 - 21:42:23 - [] ----D C:\Program Files\Common Files\Tencent =>Adware.TencentAddressBar
O43 - CFD: 17/01/2013 - 15:28:46 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 03/04/2014 - 22:16:32 - [] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 14/01/2013 - 21:43:16 - [] ----D C:\ProgramData\Tencent =>Adware.TencentAddressBar
O43 - CFD: 07/03/2014 - 20:29:52 - [] ----D C:\ProgramData\weBsaivoE =>PUP.Websave
O43 - CFD: 19/03/2014 - 15:04:47 - [0] ----D C:\ProgramData\webusavE =>PUP.Websave
O43 - CFD: 19/03/2014 - 15:04:47 - [0] ----D C:\ProgramData\YoutubeAdblocker =>PUP.TubeAdBlocker
O43 - CFD: 17/01/2013 - 15:28:45 - [] ----D C:\Users\SIEF\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 23/01/2013 - 23:40:10 - [] ----D C:\Users\SIEF\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 14/01/2013 - 21:43:16 - [] ----D C:\Users\SIEF\AppData\Roaming\Tencent =>Adware.TencentAddressBar
O43 - CFD: 17/01/2013 - 15:28:52 - [] ----D C:\Users\SIEF\AppData\Local\Babylon =>PUP.Babylon
O43 - CFD: 10/01/2013 - 13:50:04 - [] ----D C:\Users\SIEF\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar
O23 - Service: (syshost32) . (...) - C:\Windows\Installer\{43ED3469-B6E3-C619-AEDF-2B2E8E9F0C97}\syshost.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{45D3E5BB-7EA9-432B-B62E-A8219E0725D4}] (...) -- D:\Programs\Sakhr Dictionary\Uninstall.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{8FC3D188-16B1-4EAC-AA22-655EE1203A82}] (...) -- C:\Program Files\stinger\mfehidin.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{8FE0751D-42CE-499A-95E9-635244D96494}] (...) -- D:\Compressed\shamela\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A529417A-7B4E-4503-82F9-453E98C1D90A}] (...) -- F:\Programs\QQPlayer_Setup_1.3.429.400.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{BDE458AF-FB42-4184-B1A7-63F3F406E65F}] (...) -- D:\Programs\Shockwave_Installer_FF.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EF28F07A-8F45-4406-86E8-73403703575F}] (...) -- D:\Programs\upgrade3.53.exe (.not file.) [0]
O41 - Driver: (vivmfugr) . (. - .) - C:\Windows\system32\drivers\vivmfugr.sys (.not file.)
O43 - CFD: 12/03/2013 - 14:24:28 - [0] ----D C:\Users\SIEF\AppData\Local\PackageAware
O43 - CFD: 07/03/2014 - 20:28:16 - [] ----D C:\Users\SIEF\AppData\Local\Torch
O87 - FAEL: "{61D81D31-E50B-4FCA-901A-90E486C4D997}" | In - Public - P6 - TRUE | .(.Tencent - QQ????????.) -- C:\Program Files\Tencent\QQPlayer\QPUp.exe =>Adware.TencentAddressBar
O87 - FAEL: "{CCE637BE-950C-47BC-A7B7-D7F650C5F1BD}" | In - Public - P17 - TRUE | .(.Tencent - QQ????????.) -- C:\Program Files\Tencent\QQPlayer\QPUp.exe =>Adware.TencentAddressBar
O87 - FAEL: "{C0801059-A2AA-4BC2-9AF5-B038A5E26B8B}" | In - Public - P6 - TRUE | .(.Tencent - ????????.) -- C:\Program Files\Common Files\Tencent\QQDownload\118\Tencentdl.exe =>Adware.TencentAddressBar
O87 - FAEL: "{9F58D63B-348F-49EF-AEDE-663DB7677802}" | In - Public - P17 - TRUE | .(.Tencent - ????????.) -- C:\Program Files\Common Files\Tencent\QQDownload\118\Tencentdl.exe =>Adware.TencentAddressBar
O87 - FAEL: "TCP Query User{102436D6-5F79-4443-B2A8-FC0F85AD0333}C:\program files\common files\tencent\qqdownload\118\tencentdl.exe" | In - Private - P6 - TRUE | .(.Tencent - ????????.) -- C:\program files\common files\tencent\qqdownload\118\tencentdl.exe =>Adware.TencentAddressBar
O87 - FAEL: "UDP Query User{6622ADCA-6F84-4D6F-90ED-FC9D426B2A08}C:\program files\common files\tencent\qqdownload\118\tencentdl.exe" | In - Private - P17 - TRUE | .(.Tencent - ????????.) -- C:\program files\common files\tencent\qqdownload\118\tencentdl.exe =>Adware.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32 =>Adware.OpenCandy
HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS =>Adware.OpenCandy
HKLM\SOFTWARE\Microsoft\Tracing\PutLockerDownloader_RASAPI32 =>Spyware.PutLocker
HKLM\SOFTWARE\Microsoft\Tracing\PutLockerDownloader_RASMANCS =>Spyware.PutLocker
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 =>Adware.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASMANCS =>Adware.TencentAddressBar
[HKCR\CLSID\{11111111-1111-1111-1111-110311551180}] (PutLockerDownloader V3.0) =>Spyware.PutLocker
[HKCR\CLSID\{22222222-2222-2222-2222-220322552280}] (CrossriderApp0035580.Sandbox) =>PUP.CrossRider
[HKCR\CLSID\{FB437E84-0352-82C1-BCED-1F1E2D5D2DC7}] (YoutubeAdblocker) =>PUP.Multiplug
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551180}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5A9A0BFC-5235-C01D-0939-29F49A36FA55}] =>PUP.Websave^
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKLM\Software\Classes\PutLockerDownloader] =>Spyware.PutLocker
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035580.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035580.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035580.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035580.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311551180}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311551180}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322552280}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311551180}] =>PUP.CrossRider
C:\Program Files\Tencent =>Adware.TencentAddressBar^
C:\Program Files\WeatherBlinkEI =>PUP.WeatherBlink^
C:\Program Files\weBsaivoE =>PUP.Websave^
C:\Program Files\webusavE =>PUP.Websave^
C:\Program Files\YoutubeAdblocker =>PUP.TubeAdBlocker^
C:\Program Files\Common Files\Tencent =>Adware.TencentAddressBar^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\Tencent =>Adware.TencentAddressBar^
C:\ProgramData\weBsaivoE =>PUP.Websave^
C:\ProgramData\webusavE =>PUP.Websave^
C:\ProgramData\YoutubeAdblocker =>PUP.TubeAdBlocker^
C:\Users\SIEF\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\SIEF\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\Users\SIEF\AppData\Roaming\Tencent =>Adware.TencentAddressBar^
C:\Users\SIEF\AppData\Local\Babylon =>PUP.Babylon^
C:\Users\SIEF\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar^
C:\Windows\Tasks\PutLockerDownloader V3.0-codedownloader.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\PutLockerDownloader V3.0-codedownloader =>PUP.CrossRider^
C:\Windows\Tasks\PutLockerDownloader V3.0-enabler.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\PutLockerDownloader V3.0-enabler =>PUP.CrossRider^
C:\Windows\Tasks\PutLockerDownloader V3.0-updater.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\PutLockerDownloader V3.0-updater =>PUP.CrossRider^
[HKCU\Software\AppDataLow\Software\PutLockerDownloader V3.0] =>Spyware.PutLocker^
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\RegisteredApplicationsEx] =>PUP.SfKpCouponApp^
[HKCU\Software\Tencent] =>Adware.TencentAddressBar^
[HKLM\Software\Babylon] =>PUP.Babylon^
[HKLM\Software\PutLockerDownloader V3.0] =>Spyware.PutLocker^
[HKLM\Software\Tencent] =>Adware.TencentAddressBar^
[HKLM\Software\WeatherBlinkEI] =>PUP.WeatherBlink^
[HKLM\Software\dosearchesSoftware] =>PUP.DoSearches^
[HKCR\CLSID\{11111111-1111-1111-1111-110311551180}] (PutLockerDownloader V3.0) =>Spyware.PutLocker^
[HKCR\CLSID\{22222222-2222-2222-2222-220322552280}] (CrossriderApp0035580.Sandbox) =>PUP.CrossRider^
[HKCR\CLSID\{FB437E84-0352-82C1-BCED-1F1E2D5D2DC7}] (YoutubeAdblocker) =>PUP.Multiplug^
[HKCU\Software\APN PIP]
[HKCU\Software\Conduit]
[HKCU\Software\PIP]
[HKCU\Software\Softonic]
[HKLM\Software\PIP]
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_3d-world-map_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_3d-world-map_RASMANCS
[HKCU\Software\APN PIP]
[HKCU\Software\PIP]
[HKLM\Software\PIP]
[HKCU\Software\Softonic]
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]
[HKCU\Software\Conduit]

ShortcutFix
FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité