cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
G2 - GCE: Preference [User Data\Default] [pelmeidfhdlhlbjimpabfcbnnojbboma] Quick start v.4.5.7, (D�sactiv�) =>PUP.QuickStart
G2 - EXT: C:\Users\BLRS_FCB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma [Quick start] =>PUP.QuickStart
M0 - MFSP: prefs.js [BLRS_FCB - 7mcdg6pj.default] http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com =>Hijacker.WebsSearches
O4 - GS\QuickLaunch [BLRS_FCB]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com =>Hijacker.WebsSearches
O4 - GS\TaskBar [BLRS_FCB]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe http://istart.webssearches.com =>Hijacker.WebsSearches
O4 - GS\TaskBar [BLRS_FCB]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com =>Hijacker.WebsSearches
O4 - GS\Program [BLRS_FCB]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com =>Hijacker.WebsSearches
O4 - GS\SystemTools [BLRS_FCB]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com =>Hijacker.WebsSearches
[MD5.4ED02CE710F856EA419171CDC93D03E9] [APT] [{F46CD161-256A-4EC5-AAFE-20EC402D5C73}] (.Skytech Co., Ltd..) -- C:\Users\BLRS_FCB\AppData\Roaming\webssearches\UninstallManager.exe [1862296] =>Hijacker.WebsSearches
O41 - Driver: ({2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw.sys =>PUP.LinkiDoo
[HKLM\Software\webssearchesSoftware] =>Hijacker.WebsSearches
O43 - CFD: 07/07/2014 - 02:10:27 - [0] ----D C:\ProgramData\Log
O43 - CFD: 10/07/2014 - 04:38:35 - [] ----D C:\Users\BLRS_FCB\AppData\Roaming\webssearches =>Hijacker.WebsSearches
O58 - SDL:08/07/2014 - 17:42:04 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw.sys [52920] =>PUP.LinkiDoo
O64 - Services: CurCS - 08/07/2014 - C:\Windows\System32\drivers\{2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw.sys ({2f0ff925-183b-4210-98f5-cb2ffd917f2b}Gw) .(.StdLib - StdLib.) - LEGACY_{2F0FF925-183B-4210-98F5-CB2FFD917F2B}GW =>PUP.LinkiDoo
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com =>Hijacker.WebsSearches
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (webssearches) - http://istart.webssearches.com =>Hijacker.WebsSearches
[HKLM\Software\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma] =>PUP.QuickStart^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
C:\Users\BLRS_FCB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma =>PUP.QuickStart^
C:\Users\BLRS_FCB\AppData\Roaming\webssearches =>Hijacker.WebsSearches^
C:\Users\BLRS_FCB\AppData\Roaming\webssearches\UninstallManager.exe =>Hijacker.WebsSearches^
[HKLM\Software\webssearchesSoftware] =>Hijacker.WebsSearches^
[HKCU\Software\APN PIP]
[HKCU\Software\APN PIP]

EmptyFlash
EmptyTemp
EmptyClsid
Emptyprefetch
FirewallRaz
Proxyfix
SysRestore

Publicité


Signaler le contenu de ce document

Publicité