cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore

R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com
O23 - Service: IHProtect Service (IHProtect Service) . (.XTab system - ProtectSvc.exe.) - C:\Program Files (x86)\XTab\ProtectService.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (.SysTool PasSame LIMITED - Windows SysTool Svr.) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
[MD5.F1E95E0D1C24D67E88CA4BB54A213465] [APT] [gameo_update] (...) -- C:\Users\Marie Pascaline\AppData\Roaming\Gameo\gameo.exe [42482176]
[MD5.00000000000000000000000000000000] [APT] [{6C15FD52-FC17-47CF-AF13-9D0490F0CC6F}] (...) -- C:\Users\Marie Pascaline\AppData\Roaming\istartsurf\UninstallManager.exe (.not file.) [0]
[HKCU\Software\Binkiland Browser]
[HKCU\Software\Gameo]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\SimplyTech]
[HKCU\Software\Store]
[HKCU\Software\WTools]
[HKLM\Software\Wow6432Node\IHProtect]
[HKLM\Software\Wow6432Node\MaxComputerCleaner]
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab
[HKLM\Software\Wow6432Node\istartsurfSoftware]
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab
[HKLM\Software\Wow6432Node\supWindowsMangerProtect]
O43 - CFD: 06/05/2015 - 21:59:21 - [] ----D C:\Program Files (x86)\MaxComputerCleaner
O43 - CFD: 06/05/2015 - 10:53:46 - [] ----D C:\Program Files (x86)\XTab
O43 - CFD: 06/05/2015 - 10:53:42 - [] ----D C:\ProgramData\IHProtectUpDate
O43 - CFD: 06/05/2015 - 10:53:23 - [] ----D C:\ProgramData\WindowsMangerProtect
O43 - CFD: 04/03/2015 - 17:40:17 - [] ----D C:\Users\Marie Pascaline\AppData\Roaming\Gameo
O43 - CFD: 06/05/2015 - 20:48:07 - [0] ----D C:\Users\Marie Pascaline\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 06/05/2015 - 20:56:04 - [0] ----D C:\Users\Marie Pascaline\AppData\Roaming\Store
O43 - CFD: 06/05/2015 - 20:58:57 - [0] ----D C:\Users\Marie Pascaline\AppData\Roaming\WTools
O43 - CFD: 04/03/2015 - 21:40:18 - [] ----D C:\Users\Marie Pascaline\AppData\Local\Gameo
O45 - LFCP:[MD5.EAD2B34670E568E0857C894A52DCA57E] - 06/05/2015 - 09:53:44 ---A- - C:\Windows\Prefetch\BUBBLE DOCK BSETUP.EXE-AA33BF58.pf =>PUP.BubbleDock
O45 - LFCP:[MD5.267CE63CBCBEF9CC0A658441F2E8D1F6] - 06/05/2015 - 19:44:30 ---A- - C:\Windows\Prefetch\BUBBLE DOCK UNINSTALL.EXE-3D36E657.pf =>PUP.BubbleDock
O45 - LFCP:[MD5.BC474FF36119805AF35F72A0B66C28FC] - 06/05/2015 - 19:44:18 ---A- - C:\Windows\Prefetch\BUBBLE DOCK UNINSTALL.EXE-5481F29E.pf =>PUP.BubbleDock
O45 - LFCP:[MD5.9532014022CB4AB0530922CE3A98EDCC] - 06/05/2015 - 18:54:44 ---A- - C:\Windows\Prefetch\BUBBLE DOCK UPDATE.EXE-1F271E73.pf =>PUP.BubbleDock
O45 - LFCP:[MD5.471A3810AA0CB0B98E7B32AA490B4929] - 06/05/2015 - 18:50:49 ---A- - C:\Windows\Prefetch\BUBBLE DOCK.EXE-DCEC5EFC.pf =>PUP.BubbleDock
O45 - LFCP:[MD5.ABC7DF022EF2B3C64FE2CC1724C0959C] - 06/05/2015 - 09:53:40 ---A- - C:\Windows\Prefetch\BUBBLEDOCK.EXE-58C3247C.pf =>PUP.BubbleDock
O45 - LFCP:[MD5.0106A771FCEE06425D4ACEEB94C45D38] - 06/05/2015 - 18:50:09 ---A- - C:\Windows\Prefetch\LBUBBLE DOCK.EXE-4D2B35E0.pf =>PUP.BubbleDock
O45 - LFCP:[MD5.8943E144F4A33BD2649642B2BA11517C] - 06/05/2015 - 09:48:49 ---A- - C:\Windows\Prefetch\PCSPEEDMAXIMIZER.EXE-60BA47FF.pf =>Rogue.PCSpeedMaximizer
O45 - LFCP:[MD5.BA8E9850D7D4BA9FB4DBA84CA20975D2] - 04/03/2015 - 16:29:38 ---A- - C:\Windows\Prefetch\PCSPEEDMAXIMIZER_AQFR_AFD_PPI-2479196C.pf =>Rogue.PCSpeedMaximizer
O45 - LFCP:[MD5.CAB0932BBA7D517D97A43589A0A03FA2] - 06/05/2015 - 09:43:37 ---A- - C:\Windows\Prefetch\PCSPEEDMAXIMIZER_AQFR_AFD_PPI-515A6E60.pf =>Rogue.PCSpeedMaximizer
O45 - LFCP:[MD5.900C46A42B48475B2505EF34C05D25D9] - 06/05/2015 - 09:43:37 ---A- - C:\Windows\Prefetch\PCSPEEDMAXIMIZER_AQFR_AFD_PPI-BC62B928.pf =>Rogue.PCSpeedMaximizer
O45 - LFCP:[MD5.A823B00294FB389248191387C14EADA0] - 06/05/2015 - 09:54:36 ---A- - C:\Windows\Prefetch\WAJAM.EXE-B2372A6B.pf =>PUP.Wajam
O45 - LFCP:[MD5.176F569685AB0D92825B315C264C371A] - 06/05/2015 - 09:53:22 ---A- - C:\Windows\Prefetch\WPM_V20.0.0.2227.EXE-D1CF25E2.pf =>PUP.WpManager
O69 - SBI: SearchScopes [HKCU] {0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} - (Bing) - http://www.istartsurf.com
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (e) - http://www.istartsurf.com
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (istartsurf) - http://www.istartsurf.com
O69 - SBI: SearchScopes [HKCU] {64905FDE-883F-48D0-AA36-9BF950864E31} - (Propositions de recherche Amazon.fr) - http://www.istartsurf.com
O69 - SBI: SearchScopes [HKCU] {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} - (Web Search) - http://www.istartsurf.com
O69 - SBI: SearchScopes [HKCU] {DAB3F0D2-D2D6-11E4-8280-142D27CF9A58} - (Search Provided by Yahoo) - http://www.istartsurf.com
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.istartsurf.com
SR - | Auto 20/04/2015 158816 | (IHProtect Service) . (.XTab system.) - C:\Program Files (x86)\XTab\ProtectService.exe
SR - | Auto 06/05/2015 337064 | (WindowsMangerProtect) . (.SysTool PasSame LIMITED.) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar] =>Adware.IMBooster
C:\Users\Marie Pascaline\AppData\Roaming\Nosibay =>PUP.BubbleDock^
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab^
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab^
O17 - HKLM\System\CCS\Services\Tcpip\..\{E6C046F2-3810-4BFF-BAB4-B4139600181E}: DhcpDomain = B1-LINE.COM
O17 - HKLM\System\CS1\Services\Tcpip\..\{E6C046F2-3810-4BFF-BAB4-B4139600181E}: DhcpDomain = B1-LINE.COM
[MD5.B7CC155422176FE83E6C8961B7FCEA71] - (.Pokki - Host App Service.) -- C:\Users\Marie Pascaline\AppData\Local\Pokki\Engine\HostAppService.exe [7853056] [PID.5236]
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
[HKCU\Software\AVG Web TuneUp]
O45 - LFCP:[MD5.2B7B5C20AE99F9FBDC3CAA1B7F2B84B6] - 07/05/2015 - 11:59:03 ---A- - C:\Windows\Prefetch\0215PI_AVG-SECURE-SEARCH-UPDA-3FCC5F64.pf
O45 - LFCP:[MD5.52AD23F4EA46C97867A320BCE3F63A06] - 07/05/2015 - 11:59:05 ---A- - C:\Windows\Prefetch\AVG-SECURE-SEARCH-UPDATE.EXE-13223F41.pf
O45 - LFCP:[MD5.9034155C42559B2A8FE009961691DFE8] - 07/05/2015 - 11:59:24 ---A- - C:\Windows\Prefetch\AVG-SECURE-SEARCH-UPDATE_0215-25A83384.pf
O45 - LFCP:[MD5.CBFBAD22FBE99EA0464EC1E4ED734AC3] - 07/05/2015 - 11:59:31 ---A- - C:\Windows\Prefetch\AVG-SECURE-SEARCH-UPDATE_0215-91DFF22E.pf
O61 - LFC: 05/05/2015 - 13:28:34 ---A- . (.Pokki.) -- C:\Users\Marie Pascaline\AppData\Local\Pokki\Engine\HostAppService.exe [7853056]
O61 - LFC: 05/05/2015 - 13:28:35 ---A- . (.Pokki.) -- C:\Users\Marie Pascaline\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe [10566144]
O61 - LFC: 05/05/2015 - 13:28:35 ---A- . (.The Chromium Authors.) -- C:\Users\Marie Pascaline\AppData\Local\Pokki\Engine\libPokki.dll [49324032]
O61 - LFC: 05/05/2015 - 13:28:36 ---A- . (.Pokki.) -- C:\Users\Marie Pascaline\AppData\Local\Pokki\Engine\StartMenuIndexer.exe [3052032]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O2 - BHO: (no name) [64Bits] - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Cl� orpheline
O2 - BHO: Sale Charger [64Bits] - {7a38e53c-e000-41e4-9b5a-47447db81c2b} Cl� orpheline
O4 - HKCU\..\Run: [Pokki] Cl� orpheline
O4 - HKUS\S-1-5-21-529664126-3926005380-882925007-1001\..\Run: [Pokki] Cl� orpheline
[HKCU\Software\Nosibay]
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- chrome.exe (.not file.)
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O44 - LFC:[MD5.14D6B09D3D0960846CAE33FB58FAC811] - 06/05/2015 - 19:58:50 ---A- . (...) -- C:\END [8]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.istartsurf.com




Publicité


Signaler le contenu de ce document

Publicité