cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore

[MD5.59FACC534E8A35956950F90B7DE421A6] - (...) -- C:\Program Files (x86)\0ca45c95134d\5596b4e010aa.exe [418368] [PID.3908] =>PUP.Salus
O4 - HKLM\..\Wow6432Node\Run: [CrashMon] . (...) -- C:\Program Files (x86)\0ca45c95134d\5596b4e010aa.exe =>PUP.Salus
O36 - AppCertDlls: (x86) . (...) -- c:\program files (x86)\settings manager\systemk\sysapcrt.dll (Not file) =>PUP.SystemK
[HKCU\Software\Tutorials] =>PUP.AgenceExclusive
O43 - CFD: 20/05/2014 - 22:34:39 - [] ----D C:\Program Files (x86)\Babylon =>PUP.Babylon
O43 - CFD: 12/11/2014 - 22:24:57 - [] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 12/11/2014 - 22:25:03 - [] ----D C:\Users\home\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 12/11/2014 - 22:25:19 - [0] ----D C:\Users\home\AppData\Local\fst_be_68 =>Adware.FreeSoftToday
O58 - SDL:7/08/2014 - 12:27:58 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{49ae2e47-5ec4-48ed-9fbc-0a5ab39ede5a}w64.sys [61584] =>PUP.LinkiDoo
O58 - SDL:7/08/2014 - 13:09:20 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys [61584] =>PUP.LinkiDoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ClearThinkUntemp_RASAPI32 =>PUP.ClearThink
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ClearThinkUntemp_RASMANCS =>PUP.ClearThink
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateClearThink_RASAPI32 =>PUP.ClearThink
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateClearThink_RASMANCS =>PUP.ClearThink
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilClearThink_RASAPI32 =>PUP.ClearThink
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilClearThink_RASMANCS =>PUP.ClearThink
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:CrashMon =>PUP.Salus^
C:\Program Files (x86)\Babylon =>PUP.Babylon^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\Users\home\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\home\AppData\Local\fst_be_68 =>Adware.FreeSoftToday^
C:\Program Files (x86)\0ca45c95134d\5596b4e010aa.exe =>PUP.Salus^
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (...) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (.not file.)
[HKCU\Software\Reg]
[HKLM\Software\Wow6432Node\Reg]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O61 - LFC: 11/11/2014 - 22:29:58 ---A- . (.Microsoft Corporation.) -- C:\Users\home\Downloads\FileFormatConverters (1).exe [39060536]
O61 - LFC: 12/11/2014 - 22:29:58 ---A- . (...) -- C:\Users\home\Downloads\MaConfig_Win (3).exe [255864]
O61 - LFC: 14/11/2014 - 22:29:58 ---A- . (.Microsoft Corporation.) -- C:\Users\home\Downloads\PowerPointViewer.exe [63347104]
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)

Publicité


Signaler le contenu de ce document

Publicité