cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

?--SS-- ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
C:\Windows\System32\fr-FR\user32.dll.mui [20480]
C:\Program Files (x86)\SensePlus\3a540345-be26-4600-9c18-f903676ed2d9-6.exe [1506816] [PID.2700] =>Adware.CrossRider
G2 - GCE: Extension [User Data\Default] [fpmeembnagmagppkgghhfjfdfajdfcah] Linkey =>PUP.LinkeySearch
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.GlobalUpdate
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.IsStart
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.IsStart
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.IsStart
O2 - BHO: Linkey [64Bits] - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} . (.Aztec Media Inc - Linkey.) -- C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll =>PUP.LinkeySearch
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKCU\..\Run: [ad93b436fb8e7983a5561ca585d26696] . (.aai7U4dNMBcDR - a5FGnp3Z8ez.) -- C:\Users\nabil\AppData\Local\Temp\counter.exe
O4 - HKLM\..\Wow6432Node\Run: [ad93b436fb8e7983a5561ca585d26696] . (.aai7U4dNMBcDR - a5FGnp3Z8ez.) -- C:\Users\nabil\AppData\Local\Temp\counter.exe
O4 - HKUS\S-1-5-21-3611033843-1339807178-79065574-1001\..\Run: [ad93b436fb8e7983a5561ca585d26696] . (.aai7U4dNMBcDR - a5FGnp3Z8ez.) -- C:\Users\nabil\AppData\Local\Temp\counter.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe

Publicité


Signaler le contenu de ce document

Publicité