cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore

G0 - GCSP: Preference [User Data\Default][StartupURLs] http://istart.webssearches.com/?type=hp&ts=1410193143&from=tugs&uid=WDCXWD3200BEVT-22ZCT0_WD-WXE308E8435284352" ] =>Hijacker.WebsSearches
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896; =>Hijacker.Proxy
O39 - APT: - (..) -- C:\Windows\Tasks\c97dffd1-5d91-492f-9a9c-5852e7d72a49-5_user.job [2416] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\HQPureV1.8] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\IObit Apps]
[HKCU\Software\IObit Apps]
[HKCU\Software\PCCleaners] =>Rogue.PCCleanerPro
[HKLM\Software\ED8C9CDF-28C5-4A5A-9A1D-8200C60706FF] =>PUP.CrossRider
[HKLM\Software\HQPureV1.8-nv] =>PUP.CrossRider
[HKLM\Software\IObit Apps]
O53 - SMSR:HKLM\...\startupreg\Slick Savings [Key] . (...) -- c:\users\cl�ment\appdata\roaming\slick savings\couponshelper.exe (.not file.) =>PUP.Dealio
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {31090377-0740-419E-BEFC-A56E50500D5B} - (Speedial) - http://speedial.com =>Adware.SearchYa
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {31090377-0740-419E-BEFC-A56E50500D5B} - (Speedial) - http://speedial.com =>Adware.SearchYa
[MD5.31EBB8ADF314C0439FFB8B038B8DED8C] [SPRF][18/05/2014] (.PC Cleaners - PC Cleaner Pro.) -- C:\ProgramData\pclunst.exe [4954384] =>Rogue.PCCleanerPro
O90 - PUC: "8B501B6E56F182443979D1DFA8309BD4" . (.SupraSavings.) -- c:\Windows\Installer\{E6B105B8-1F65-4428-9397-1DFD8A03B94D}\icon64.ico =>PUP.SupraSavings
O90 - PUC: "AB4C6D07EBCD9C14DBAFAD89913E05C1" . (.IObit Apps Toolbar v9.3.) -- C:\Windows\Installer\{70D6C4BA-DCBE-41C9-BDFA-DA9819E3501C}\ARPPRODUCTICON.exe =>PUP.Dealio
[MD5.AF07E05BE1B9B4B15721484C898280AC] [WIS][03/06/2014] (.Spigot, Inc. - Widgi Toolbar.) -- C:\Windows\Installer\16815.msi [1491456] =>PUP.Dealio
[MD5.0DCFF197F7CEDF4B21F6D67A4C7628C1] [WIS][16/05/2014] (.SupraSavings - SupraSavings.) -- C:\Windows\Installer\1f220a.msi [1868288] =>PUP.SupraSavings
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Slick Savings] =>PUP.Dealio^
[HKCU\Software\IObit Apps] =>PUP.Dealio
[HKCU\Software\AppDataLow\Software\IObit Apps] =>PUP.Dealio
[HKLM\Software\IObit Apps] =>PUP.Dealio
C:\Windows\Tasks\c97dffd1-5d91-492f-9a9c-5852e7d72a49-5_user.job =>PUP.CrossRider^
[HKCU\Software\AppDataLow\Software\HQPureV1.8] =>PUP.CrossRider^
[HKCU\Software\PCCleaners] =>Rogue.PCCleanerPro^
[HKLM\Software\ED8C9CDF-28C5-4A5A-9A1D-8200C60706FF] =>PUP.CrossRider^
[HKLM\Software\HQPureV1.8-nv] =>PUP.CrossRider^
C:\ProgramData\pclunst.exe =>Rogue.PCCleanerPro^
C:\Windows\Installer\16815.msi =>PUP.Dealio^
C:\Windows\Installer\1f220a.msi =>PUP.SupraSavings^
O43 - CFD: 16/11/2014 - 18:11:37 - [] ----D C:\ProgramData\ProductData
O43 - CFD: 17/11/2014 - 19:33:17 - [] ----D C:\Users\cl�ment\AppData\Roaming\ProductData
[MD5.4D30C9AA6BF04AF4223A68B771B0B7CE] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [344896] [PID.316]
O44 - LFC:[MD5.DE0269B69861CD68EC8D29AD4A01894E] - 17/11/2014 - 20:00:28 ---A- . (.Microsoft Corporation - H�te des applications HTML de Microsoft.) -- C:\Windows\System32\mshta.exe [11776]
[MD5.241A50559F72B6B48B7FB22334B8DF9C] [SPRF][10/09/2014] (...) -- C:\ProgramData\Setup.exe [1482656]
O43 - CFD: 13/05/2014 - 20:28:32 - [] ----D C:\Program Files\Norton 360
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9EC0F99D-EDC5-42DE-89B1-3632F4C8B275}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{D181FBEA-FFA7-4233-8E3E-8FA84FCA4E6E}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{9EC0F99D-EDC5-42DE-89B1-3632F4C8B275}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{D181FBEA-FFA7-4233-8E3E-8FA84FCA4E6E}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\..\{9EC0F99D-EDC5-42DE-89B1-3632F4C8B275}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\..\{D181FBEA-FFA7-4233-8E3E-8FA84FCA4E6E}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS3\Services\Tcpip\..\{9EC0F99D-EDC5-42DE-89B1-3632F4C8B275}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS3\Services\Tcpip\..\{D181FBEA-FFA7-4233-8E3E-8FA84FCA4E6E}: DhcpNameServer = 8.8.8.8
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O67 - Shell Spawning: <.exe> [HKCU\..\open\Command] (.Not Key.)
[MD5.E8B7FD67DA14A7BE57A5CB80E3139E60] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe [309704] [PID.5580]
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
[HKLM\Software\PB_EBAY]
[HKLM\Software\PB_EBAY]






Publicité


Signaler le contenu de ce document

Publicité