cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script zhpfix
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.safefinder.com =>Hijacker.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.safefinder.com =>Hijacker.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.safefinder.com =>Hijacker.SmartBar
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.07.) (No version) -- (.not file.)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49227;https=127.0.0.1:49227 =>Hijacker.Proxy
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
[MD5.00000000000000000000000000000000] [APT] [{5C667260-CE47-40F6-ABA4-7EF6340036C6}] (...) -- C:\Program Files\SmartSaver+ 3\Uninstall.exe (.not file.) [0] =>PUP.CrossRider
[MD5.00000000000000000000000000000000] [APT] [{E19CF0DF-FD57-42DE-A405-F0CA499EFF00}] (...) -- C:\Users\Florence\AppData\Roaming\webssearches\UninstallManager.exe (.not file.) [0] =>Hijacker.WebsSearches
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1056]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1056]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1060]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1060]
O41 - Driver: (cmucnmhz) . (. - .) - C:\Windows\system32\drivers\cmucnmhz.sys (.not file.)
O41 - Driver: (ijkpplmj) . (. - .) - C:\Windows\system32\drivers\ijkpplmj.sys (.not file.) O41 - Driver: (nlstexgs) . (. - .) - C:\Windows\system32\drivers\nlstexgs.sys (.not file.)
O41 - Driver: (rvsorznd) . (. - .) - C:\Windows\system32\drivers\rvsorznd.sys (.not file.)
[HKLM\Software\Symantec]
O43 - CFD: 25/07/2014 - 23:07:15 - [0] ----D C:\Program Files\Setup Support for SearchProtect =>PUP.SearchProtect
O45 - LFCP:[MD5.565AF98E8F54A193409DF9CAF7E62271] - 02/08/2014 - 14:11:34 ---A- - C:\Windows\Prefetch\BABMAINT.EXE-4876B292.pf =>Hijacker.BabSolution
O45 - LFCP:[MD5.6261ADB0C62F8C33CD0F5E37C8785FA1] - 02/08/2014 - 14:12:28 ---A- - C:\Windows\Prefetch\BUENOSEARCH.EXE-CB0C201A.pf =>PUP.BuenoSearch
O45 - LFCP:[MD5.7AA3477E33077919AE4BFA3C34BA00D1] - 02/08/2014 - 14:12:37 ---A- - C:\Windows\Prefetch\BUENOSEARCH.EXE-E210C402.pf =>PUP.BuenoSearch
O45 - LFCP:[MD5.1D06F1C827B029057CD36DC1C5C3959D] - 02/08/2014 - 14:11:15 ---A- - C:\Windows\Prefetch\BUENOSEARCHTB.EXE-B7A2DF30.pf =>PUP.BuenoSearch
O45 - LFCP:[MD5.50F15655CAE1286BE56AA4083341A3E1] - 02/08/2014 - 14:12:10 ---A- - C:\Windows\Prefetch\DSEARCHLINK.EXE-1BB5AC19.pf =>Toolbar.DeltaSearch
O45 - LFCP:[MD5.9F3561287DC49C1A49A9200258F35968] - 02/08/2014 - 14:11:22 ---A- - C:\Windows\Prefetch\DSEARCHLINK.EXE-864AE3F5.pf =>Toolbar.DeltaSearch
O45 - LFCP:[MD5.E7375FEAAA007D80AD3690545818260A] - 02/08/2014 - 14:09:43 ---A- - C:\Windows\Prefetch\SOFTONICDOWNLOADER_POUR_MOZIL-AA47197A.pf =>Toolbar.Conduit
O45 - LFCP:[MD5.28942F316CDF1A439B8819541BC38BB8] - 02/08/2014 - 14:11:14 ---A- - C:\Windows\Prefetch\VOPACKAGE.EXE-9596194D.pf =>Adware.Downware
O45 - LFCP:[MD5.E7943B81C67621D52634C4A6DB5699A4] - 02/08/2014 - 14:10:40 ---A- - C:\Windows\Prefetch\VOPACKAGE.EXE-DC9CCDA2.pf =>Adware.Downware
O61 - LFC: 02/08/2014 - 17:48:54 ---A- . (.AppInstall Ltd..) -- C:\Users\Florence\AppData\Local\Temp\BuenoSearchTB.exe [429128] =>PUP.BuenoSearch
O61 - LFC: 26/07/2014 - 17:49:03 ---A- . (...) -- C:\Users\Florence\Downloads\adblockplusie-1.1.exe [4741136]
[MD5.4BEEA0336A11B3393267FA9FA90F3CDF] [WIS][25/06/2014] (.LPT - LPT System Updater Service.) -- C:\Windows\Installer\36f9c47.msi [2125824] =>Adware.IncrediBar
HKLM\SOFTWARE\Microsoft\Tracing\BrowserSafeguard_RASAPI32 =>PUP.BrowserSafeguard
HKLM\SOFTWARE\Microsoft\Tracing\BrowserSafeguard_RASMANCS =>PUP.BrowserSafeguard
HKLM\SOFTWARE\Microsoft\Tracing\melondrea_RASAPI32 =>PUP.Melondrea
HKLM\SOFTWARE\Microsoft\Tracing\melondrea_RASMANCS =>PUP.Melondrea
HKLM\SOFTWARE\Microsoft\Tracing\SafeFinder_RASAPI32 =>Hijacker.SmartBar
HKLM\SOFTWARE\Microsoft\Tracing\SafeFinder_RASMANCS =>Hijacker.SmartBar
HKLM\SOFTWARE\Microsoft\Tracing\updatemelondrea_RASAPI32 =>PUP.Melondrea
HKLM\SOFTWARE\Microsoft\Tracing\updatemelondrea_RASMANCS =>PUP.Melondrea
HKLM\SOFTWARE\Microsoft\Tracing\utilmelondrea_RASAPI32 =>PUP.Melondrea
HKLM\SOFTWARE\Microsoft\Tracing\utilmelondrea_RASMANCS =>PUP.Melondrea
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Classes\keepmysearch] =>Adware.MyWebSearch
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2516}] =>Adware.Bandoo^
C:\Program Files\Setup Support for SearchProtect =>PUP.SearchProtect^
C:\Windows\Installer\36f9c47.msi =>Adware.IncrediBar^
Emptytemp
Emptyflash
Proxyfix
Firewallraz
Systrestore
emptyPrefetch


Publicité


Signaler le contenu de ce document

Publicité