cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash

G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://www.dregol.com/?f=7&a=drg_pwrisofs_15_26&cd=2XzuyEtN2Y1L1Qzu0E0Czy0AyByEyDtDzzyC0BtBzzyD0F0FtN0D0Tzu0StCtByBtCtN1L2XzutAtFtCtCtFtAtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StDyDtA0BtDtAyB0CtGyE0ByBtCtGyB0FyC0FtGtB0AyBtBtGtCzyzztCtDyDyBtCzzyBzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzz0F0D0CzytA0BtG0AzzyEzztGyE0EyD0AtGzy0DyBtDtG0CyCyBtC0FyDyBtBtByCtBtC2QtN0A0LzutB&cr=482304572&ir=" =>PUP.Optional.Browser
O4 - HKCU\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe (.not file.)
O4 - HKUS\S-1-5-21-1386845314-2381527918-4033854710-1000\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe (.not file.)
O10 - WLSP:\Catalog_Entries\000000000001\Winsock LSP File . (...) -- C:\Windows\System32\LavasoftTcpService.dll (Not File) (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries\000000000002\Winsock LSP File . (...) -- C:\Windows\System32\LavasoftTcpService.dll (Not File) (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries\000000000003\Winsock LSP File . (...) -- C:\Windows\System32\LavasoftTcpService.dll (Not File) (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries\000000000004\Winsock LSP File . (...) -- C:\Windows\System32\LavasoftTcpService.dll (Not File) (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries\000000000016\Winsock LSP File . (...) -- C:\Windows\System32\LavasoftTcpService.dll (Not File) (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries64\000000000001\Winsock LSP File . (.Lavasoft Limited.) -- C:\Windows\system32\LavasoftTcpService64.dll (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries64\000000000002\Winsock LSP File . (.Lavasoft Limited.) -- C:\Windows\system32\LavasoftTcpService64.dll (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries64\000000000003\Winsock LSP File . (.Lavasoft Limited.) -- C:\Windows\system32\LavasoftTcpService64.dll (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries64\000000000004\Winsock LSP File . (.Lavasoft Limited.) -- C:\Windows\system32\LavasoftTcpService64.dll (Hijacker.Winsock)
O10 - WLSP:\Catalog_Entries64\000000000016\Winsock LSP File . (.Lavasoft Limited.) -- C:\Windows\system32\LavasoftTcpService64.dll (Hijacker.Winsock)
O23 - Service: LavasoftTcpService (LavasoftTcpService) . (.Lavasoft Limited - .) - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe =>PUA.Loadshop
O23 - Service: IE Search Set (SearchProtectionService) . (...) - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe (.not file.)
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
O43 - CFD: 2015/06/27 01:05:34 - [] D -- C:\Users\hp\AppData\Roaming\RHEng =>PUP.Optional.Conduit
O69 - SBI: prefs.js [hp - ir8xr7q9.default] user_pref("extensions.a587fea1b1c7643c08b293c3da78e24852309207e4ba642d8b8a23b0a22e052b5com57050.57050.name", "SavePass"); =>PUP.Optional.CrossRider
C:\Windows\system32\LavasoftTcpService64.dll =>Hijacker.Winsock
HKLM\SYSTEM\CurrentControlSet\Services\LavasoftTcpService =>PUA.Loadshop
C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe =>PUA.Loadshop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DriverAgent_is1 =>PUP.Optional.eSupport
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} =>PUP.Optional.BestADBlocker
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
C:\Users\hp\AppData\Roaming\RHEng =>PUP.Optional.Conduit


Publicité


Signaler le contenu de ce document

Publicité