cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation


Script ZHPFix

[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SPDriver] =>PUP.ShopperPro^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\YTDownloader] =>PUP.YTDownloader^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application^
C:\Users\hp\AppData\Local\Temp\uninst1.exe =>PUP.Babylon
O61 - LFC: 19/06/2015 - 13:45:59 ---A- . (...) -- C:\Users\hp\AppData\Local\Temp\Install_5853\ins_shopperpro.exe [2684376] =>PUP.ShopperPro
O61 - LFC: 19/06/2015 - 13:45:59 ---A- . (...) -- C:\Users\hp\AppData\Local\Temp\nsu5340.tmp\DcryptDll.dll [159744]
O61 - LFC: 19/06/2015 - 13:45:59 ---A- . (.Reimage®.) -- C:\Users\hp\AppData\Local\Temp\814347213950\Setup_product_26943.exe [768512] =>Rogue.ReimageRepair
O61 - LFC: 19/06/2015 - 13:45:59 ---A- . (.Softanics, Artem A. Razin.) -- C:\Users\hp\AppData\Local\Temp\Install_5853\bxsdk32.dll [942080]
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (...) -- C:\Users\hp\AppData\Local\Temp\nsu5340.tmp\LogEx.dll [45056]
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (...) -- C:\Users\hp\AppData\Local\Temp\nsu5340.tmp\System.dll [11264]
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (...) -- C:\Users\hp\AppData\Local\Temp\nsu5340.tmp\nsExec.dll [6144]
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (.Microsoft Corporation.) -- C:\Users\hp\AppData\Local\Temp\SpOrder.dll [8704]
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (.Reimage®.) -- C:\Users\hp\AppData\Local\Temp\ReiSysUpdate.exe [295912] =>Rogue.ReimageRepair
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (.Reimage®.) -- C:\Users\hp\AppData\Local\Temp\ReimagePackage.exe [13370912] =>Rogue.ReimageRepair
O61 - LFC: 17/06/2015 - 13:46:04 ---A- . (.Reimage®.) -- C:\Users\hp\Downloads\ReimageRepair.exe [772016] =>Rogue.ReimageRepair
O53 - SMSR:HKLM\...\startupreg\SPDriver [Key] . (...) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.1995\jsdrv.exe (.not file.) =>PUP.ShopperPro
O53 - SMSR:HKLM\...\startupreg\YTDownloader [Key] . (...) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.) =>PUP.YTDownloader
O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (...) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_ActiveX.exe (.not file.)
O50 - IFEO:Image File Execution Options - volaro - tasklist.exe =>Trojan.Vonteera
O50 - IFEO:Image File Execution Options - vonteera - tasklist.exe =>Trojan.Vonteera
O51 - MPSK:{1dc49aa6-4726-11e3-bc96-2c27d7ce23a2}\AutoRun\command. (...) -- F:\LGCMInstaller.exe (.not file.)
O51 - MPSK:{2576e180-0e4f-11e3-bbc4-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{345ec842-05f5-11e3-a76c-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{6e3c46e8-cc20-11e2-9f16-cc52af9c7744}\AutoRun\command. (...) -- F:\autorun.exe (.not file.)
O51 - MPSK:{b2b06f73-05df-11e3-9a2d-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{b2b06f82-05df-11e3-9a2d-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application
O45 - LFCP:[MD5.E1C9A8E34637500C292AB5BA1637F594] - 15/06/2015 - 14:34:09 ---A- - C:\Windows\Prefetch\BACKUPSTACK.EXE-0A0E71E8.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.359108360A8EFB87C438ADA7891DE378] - 08/08/2014 - 22:15:24 ---A- - C:\Windows\Prefetch\DATAMNGRCOORDINATOR.EXE-40042183.pf =>PUP.Datamngr
O45 - LFCP:[MD5.3A49DE0A53D19FB7307231D0E2C9D47B] - 08/08/2014 - 22:15:24 ---A- - C:\Windows\Prefetch\DATAMNGRUI.EXE-D2B3D245.pf =>PUP.Datamngr


FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité