Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore
G2 - GCE: Preference [User Data\Default] [afbpdhiclgghnffhkinjikglgmolhpee] Torrent Search v.1.2.0.3 (D�sactiv�)
G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Extutil v.0.1 (Activ�) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activ�) =>PUP.Manager
G2 - EXT: C:\Users\SWAP\AppData\Local\Google\Chrome\User Data\Default\Extensions\afbpdhiclgghnffhkinjikglgmolhpee [Torrent Search]
O4 - GS\Program [Public]: Webplayer.lnk . (...) -- C:\Program Files\Webplayer\Webplayer.exe =>Adware.SocialSkinz
[MD5.00000000000000000000000000000000] [APT] [wp_update] (...) -- C:\Users\SWAP\AppData\Roaming\~jnaehdi.exe (.not file.) [0] =>PUP.WpManager
[HKCU\Software\AnyProtect] =>PUP.AnyProtect
O43 - CFD: 06/04/2014 - 19:59:54 - [] ----D C:\Program Files\Webplayer
O43 - CFD: 20/12/2013 - 11:23:16 - [] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 09/05/2014 - 13:09:48 - [] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
O43 - CFD: 06/04/2014 - 20:03:44 - [0] ----D C:\Users\SWAP\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 06/04/2014 - 19:59:55 - [] ----D C:\Users\SWAP\AppData\Roaming\Webplayer
O43 - CFD: 12/04/2014 - 09:32:23 - [] ----D C:\Users\SWAP\AppData\Roaming\wp_update =>PUP.WpManager
[MD5.BB124067B287BF060B73143842C01289] [WIS][06/04/2014] (.Kreapixel - Webplayer.) -- C:\Windows\Installer\61448.msi [21504] =>Adware.SocialSkinz
HKLM\SOFTWARE\Microsoft\Tracing\updatemaucampo_RASAPI32 =>PUP.Maucampo
HKLM\SOFTWARE\Microsoft\Tracing\updatemaucampo_RASMANCS =>PUP.Maucampo
HKLM\SOFTWARE\Microsoft\Tracing\utilmaucampo_RASAPI32 =>PUP.Maucampo
HKLM\SOFTWARE\Microsoft\Tracing\utilmaucampo_RASMANCS =>PUP.Maucampo
[HKLM\Software\Google\Chrome\Extensions\booedmolknjekdopkepjjeckmjkdpfgl] =>PUP.Manager^
[HKLM\Software\Google\Chrome\Extensions\flpcjncodpafbgdpnkljologafpionhb] =>PUP.Manager^
[HKLM\Software\Classes\TypeLib\{3277CD27-4001-4EF8-9D96-C6CA745AC2F9}] =>Trojan.BHO
[HKLM\Software\Classes\Interface\{38493F7F-2922-4C6C-9A9A-8DA2C940D0EE}] =>Trojan.BHO
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
C:\Users\SWAP\AppData\Local\Google\Chrome\User Data\Default\Extensions\booedmolknjekdopkepjjeckmjkdpfgl =>PUP.Manager^
C:\Users\SWAP\AppData\Local\Google\Chrome\User Data\Default\Extensions\flpcjncodpafbgdpnkljologafpionhb =>PUP.Manager^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\Users\SWAP\AppData\Roaming\Nosibay =>PUP.BubbleDock^
C:\Users\SWAP\AppData\Roaming\wp_update =>PUP.WpManager^
[HKCU\Software\AnyProtect] =>PUP.AnyProtect^
C:\Windows\Installer\61448.msi =>Adware.SocialSkinz^
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
[MD5.00000000000000000000000000000000] [APT] [Compta AVRIL 2014] (...) -- D:\1 DAVID 82 GO\TAXI\2 GESCOP\Comptes\04 AVRIL 2014 .xls" (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [cpam] (...) -- D:\1 DAVID 82 GO\TAXI\1 CPAM\Calcul cpam .xlsx" (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [MAI 2014] (...) -- D:\1 DAVID 82 GO\TAXI\2 GESCOP\Comptes\07 JUILLET 2014 .xls" (.not file.) [0]
O43 - CFD: 29/12/2013 - 10:40:34 - [0] ----D C:\ProgramData\Spybot - Search & Destroy
O61 - LFC: 14/09/2014 - 19:17:55 ---A- . (...) -- C:\Users\SWAP\AppData\Local\Temp\e4j9BE1.tmp_dir1410718033\i4jdel.exe [35224]
[MD5.1D4D9DFAC5EB13AA80825E13E0247B06] [SPRF][12/11/2013] (...) -- C:\ProgramData\1384280383.bdinstall.bin [468164]
O3 - Toolbar: Dashlane Toolbar - [HKLM]{669695BC-A811-4A9D-8CDF-BA8C795F261C} . (.Dashlane - Dashlane Toolbar.) -- C:\Users\SWAP\AppData\Roaming\Dashlane\ie\KWIEBar.dll
O2 - BHO: Dashlane BHO - {42D79B50-CC4A-4A8E-860F-BE674AF053A2} . (.Dashlane - Dashlane Dll.) -- C:\Users\SWAP\AppData\Roaming\Dashlane\ie\Dashlanei.dll
[HKCU\Software\Conduit]
[HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{669695BC-A811-4A9D-8CDF-BA8C795F261C}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{669695BC-A811-4A9D-8CDF-BA8C795F261C}]
[HKLM\Software\Classes\CLSID\{669695BC-A811-4A9D-8CDF-BA8C795F261C}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:Dashlane
[HKCU\Software\Conduit]
G1 - GCS: Preference [User Data\Default] None
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O61 - LFC: 15/09/2014 - 19:17:55 ---A- . (.IObit.) -- C:\Users\SWAP\Downloads\driver_booster_setup_fr.exe [20053376]O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Not Key.)
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore
G2 - GCE: Preference [User Data\Default] [afbpdhiclgghnffhkinjikglgmolhpee] Torrent Search v.1.2.0.3 (D�sactiv�)
G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Extutil v.0.1 (Activ�) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activ�) =>PUP.Manager
G2 - EXT: C:\Users\SWAP\AppData\Local\Google\Chrome\User Data\Default\Extensions\afbpdhiclgghnffhkinjikglgmolhpee [Torrent Search]
O4 - GS\Program [Public]: Webplayer.lnk . (...) -- C:\Program Files\Webplayer\Webplayer.exe =>Adware.SocialSkinz
[MD5.00000000000000000000000000000000] [APT] [wp_update] (...) -- C:\Users\SWAP\AppData\Roaming\~jnaehdi.exe (.not file.) [0] =>PUP.WpManager
[HKCU\Software\AnyProtect] =>PUP.AnyProtect
O43 - CFD: 06/04/2014 - 19:59:54 - [] ----D C:\Program Files\Webplayer
O43 - CFD: 20/12/2013 - 11:23:16 - [] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 09/05/2014 - 13:09:48 - [] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
O43 - CFD: 06/04/2014 - 20:03:44 - [0] ----D C:\Users\SWAP\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 06/04/2014 - 19:59:55 - [] ----D C:\Users\SWAP\AppData\Roaming\Webplayer
O43 - CFD: 12/04/2014 - 09:32:23 - [] ----D C:\Users\SWAP\AppData\Roaming\wp_update =>PUP.WpManager
[MD5.BB124067B287BF060B73143842C01289] [WIS][06/04/2014] (.Kreapixel - Webplayer.) -- C:\Windows\Installer\61448.msi [21504] =>Adware.SocialSkinz
HKLM\SOFTWARE\Microsoft\Tracing\updatemaucampo_RASAPI32 =>PUP.Maucampo
HKLM\SOFTWARE\Microsoft\Tracing\updatemaucampo_RASMANCS =>PUP.Maucampo
HKLM\SOFTWARE\Microsoft\Tracing\utilmaucampo_RASAPI32 =>PUP.Maucampo
HKLM\SOFTWARE\Microsoft\Tracing\utilmaucampo_RASMANCS =>PUP.Maucampo
[HKLM\Software\Google\Chrome\Extensions\booedmolknjekdopkepjjeckmjkdpfgl] =>PUP.Manager^
[HKLM\Software\Google\Chrome\Extensions\flpcjncodpafbgdpnkljologafpionhb] =>PUP.Manager^
[HKLM\Software\Classes\TypeLib\{3277CD27-4001-4EF8-9D96-C6CA745AC2F9}] =>Trojan.BHO
[HKLM\Software\Classes\Interface\{38493F7F-2922-4C6C-9A9A-8DA2C940D0EE}] =>Trojan.BHO
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
C:\Users\SWAP\AppData\Local\Google\Chrome\User Data\Default\Extensions\booedmolknjekdopkepjjeckmjkdpfgl =>PUP.Manager^
C:\Users\SWAP\AppData\Local\Google\Chrome\User Data\Default\Extensions\flpcjncodpafbgdpnkljologafpionhb =>PUP.Manager^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\Users\SWAP\AppData\Roaming\Nosibay =>PUP.BubbleDock^
C:\Users\SWAP\AppData\Roaming\wp_update =>PUP.WpManager^
[HKCU\Software\AnyProtect] =>PUP.AnyProtect^
C:\Windows\Installer\61448.msi =>Adware.SocialSkinz^
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
[MD5.00000000000000000000000000000000] [APT] [Compta AVRIL 2014] (...) -- D:\1 DAVID 82 GO\TAXI\2 GESCOP\Comptes\04 AVRIL 2014 .xls" (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [cpam] (...) -- D:\1 DAVID 82 GO\TAXI\1 CPAM\Calcul cpam .xlsx" (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [MAI 2014] (...) -- D:\1 DAVID 82 GO\TAXI\2 GESCOP\Comptes\07 JUILLET 2014 .xls" (.not file.) [0]
O43 - CFD: 29/12/2013 - 10:40:34 - [0] ----D C:\ProgramData\Spybot - Search & Destroy
O61 - LFC: 14/09/2014 - 19:17:55 ---A- . (...) -- C:\Users\SWAP\AppData\Local\Temp\e4j9BE1.tmp_dir1410718033\i4jdel.exe [35224]
[MD5.1D4D9DFAC5EB13AA80825E13E0247B06] [SPRF][12/11/2013] (...) -- C:\ProgramData\1384280383.bdinstall.bin [468164]
O3 - Toolbar: Dashlane Toolbar - [HKLM]{669695BC-A811-4A9D-8CDF-BA8C795F261C} . (.Dashlane - Dashlane Toolbar.) -- C:\Users\SWAP\AppData\Roaming\Dashlane\ie\KWIEBar.dll
O2 - BHO: Dashlane BHO - {42D79B50-CC4A-4A8E-860F-BE674AF053A2} . (.Dashlane - Dashlane Dll.) -- C:\Users\SWAP\AppData\Roaming\Dashlane\ie\Dashlanei.dll
[HKCU\Software\Conduit]
[HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{669695BC-A811-4A9D-8CDF-BA8C795F261C}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{669695BC-A811-4A9D-8CDF-BA8C795F261C}]
[HKLM\Software\Classes\CLSID\{669695BC-A811-4A9D-8CDF-BA8C795F261C}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:Dashlane
[HKCU\Software\Conduit]
G1 - GCS: Preference [User Data\Default] None
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O61 - LFC: 15/09/2014 - 19:17:55 ---A- . (.IObit.) -- C:\Users\SWAP\Downloads\driver_booster_setup_fr.exe [20053376]O67 - Shell Spawning: <.html>