cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore

[MD5.2D4A06023B1B51E3DFC64B51978C9B5B] - (.TODO: - TODO: .) -- C:\Program Files (x86)\SFK\SSFK.exe [463560] [PID.2852]
[MD5.125B4997444C993F2D89BF1BE433572A] - (...) -- C:\Program Files (x86)\SFK\SFKEX64.exe [122880] [PID.3468]
G2 - GCE: Preference [User Data\Default] [pflphaooapbgpeakohlggbpidpppgdff] __MSG_ext_name__
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/ =>PUP.Optional.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.nationzoom.com/ =>PUP.Optional.NationZoom
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/ =>PUP.Optional.SmartBar
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/ =>PUP.Optional.SweetPage
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/ =>PUP.Optional.SweetPage
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/ =>PUP.Optional.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/ =>PUP.Optional.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://feed.snapdo.com/ =>PUP.Optional.SmartBar
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://start.mysearchdial.com/ =>PUP.Optional.MySearchDial
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://start.mysearchdial.com/ =>PUP.Optional.MySearchDial
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/ =>PUP.Optional.SweetPage
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/ =>PUP.Optional.SweetPage
O4 - HKUS\.DEFAULT\..\Run: [SearchProtect] \SearchProtect\bin\cltmng.exe =>PUP.Optional.SearchProtect
O4 - HKUS\S-1-5-18\..\Run: [SearchProtect] \SearchProtect\bin\cltmng.exe =>PUP.Optional.SearchProtect
O23 - Service: SSFK (SSFK) . (.TODO: - TODO: .) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
[MD5.2064E97CF3396C4EC5A497CE49E4515F] [APT] [bench-sys] (.Copyright 2009.) -- C:\Program Files (x86)\Bench\Updater\updater.exe [254456]
[MD5.00000000000000000000000000000000] [APT] [DealPlyUpdate] (...) -- C:\Program Files (x86)\DealPly\DealPlyUpdate.exe (.not file.) [0] =>PUP.Optional.Dealply
[MD5.00000000000000000000000000000000] [APT] [DSite] (...) -- C:\Users\UTILIS~1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE (.not file.) [0] =>PUP.Optional.SimpleSearches
[MD5.00000000000000000000000000000000] [APT] [MySearchDial] (...) -- C:\Users\UTILIS~1\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE (.not file.) [0] =>PUP.Optional.MySearchDial
[MD5.00000000000000000000000000000000] [APT] [{BCD18979-B7BD-4869-847D-52550369804D}] (...) -- c:\users\utilisateur\appdata\local\vosteran\application\vosteran.exe (.not file.) [0] =>PUP.Optional.Vosteran
O39 - APT: bench-sys - (.Copyright 2009.) -- C:\Windows\Tasks\bench-sys.job [356]
O39 - APT: MySearchDial - (...) -- C:\Windows\Tasks\MySearchDial.job [310] =>PUP.Optional.MySearchDial
O39 - APT: DealPlyUpdate - (...) -- C:\Windows\System32\Tasks\DealPlyUpdate [3378] =>PUP.Optional.Dealply
O39 - APT: DSite - (...) -- C:\Windows\System32\Tasks\DSite [3544] =>PUP.Optional.SimpleSearches
O39 - APT: MySearchDial - (...) -- C:\Windows\System32\Tasks\MySearchDial [3274] =>PUP.Optional.MySearchDial
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\Bench
HKLM\SOFTWARE\Wow6432Node\DataMngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\DealPly =>PUP.Optional.Dealply
HKLM\SOFTWARE\Wow6432Node\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\Wow6432Node\Duuqu =>PUP.Optional.FrameFox
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstallCore =>Adware.InstallCore
HKLM\SOFTWARE\Wow6432Node\nationzoomSoftware =>PUP.Optional.NationZoom
HKLM\SOFTWARE\Wow6432Node\OfferBox =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Services x86 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SoftwareUpdater =>PUP.Optional.SoftwareUpdater
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\supWPM =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\sweet-pageSoftware =>PUP.Optional.SweetPage
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\V9 =>PUP.Optional.V9Software
HKLM\SOFTWARE\Wow6432Node\Vittalia =>PUP.Optional.Vittalia
HKLM\SOFTWARE\Wow6432Node\winzipersvc
HKCU\SOFTWARE\5f578cdce669ba43 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\BabylonToolbar =>PUP.Optional.Babylon
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DealPly =>PUP.Optional.Dealply
HKCU\SOFTWARE\DSiteProducts =>PUP.Optional.DSite
HKCU\SOFTWARE\Duuqu =>PUP.Optional.FrameFox
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\InstalledThirdPartyPrograms =>PUP.Optional.Generic
HKCU\SOFTWARE\mysearchdial =>PUP.Optional.MySearchDial
HKCU\SOFTWARE\mysearchdial.com =>PUP.Optional.MySearchDial
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\OfferBox =>PUP.Optional.OfferBox
HKCU\SOFTWARE\Smartbar =>PUP.Optional.SmartBar
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\V9 =>PUP.Optional.V9Software
HKCU\SOFTWARE\Vosteran Browser =>PUP.Optional.Vosteran
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar
O43 - CFD: 2014/01/13 23:53:50 - [] D -- C:\Program Files (x86)\Bench
O43 - CFD: 2014/01/13 23:39:01 - [] D -- C:\Program Files (x86)\Duuqu =>PUP.Optional.Duuqu
O43 - CFD: 2013/09/25 12:49:43 - [] D -- C:\Program Files (x86)\JustCloud =>PUP.Optional.JustCloud
O43 - CFD: 2013/04/02 17:05:19 - [] D -- C:\Program Files (x86)\MyPC Backup =>PUP.Optional.MyPCBackup
O43 - CFD: 2013/10/01 08:59:05 - [] D -- C:\Program Files (x86)\Nosibay =>PUP.Optional.SPointer
O43 - CFD: 2014/01/13 22:36:31 - [0] D -- C:\Program Files (x86)\Optimizer Pro =>PUP.Optional.OptimizerPro
O43 - CFD: 2014/01/13 22:35:48 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 2015/09/02 14:55:34 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 2013/04/02 17:29:17 - [0] D -- C:\ProgramData\Babylon =>PUP.Optional.Babylon
O43 - CFD: 2015/04/13 13:26:18 - [] D -- C:\ProgramData\IePluginServices =>Trojan.SProtector
O43 - CFD: 2015/04/13 13:26:39 - [] D -- C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 2013/06/08 14:25:59 - [] D -- C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
O43 - CFD: 2013/04/02 17:29:17 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Babylon =>PUP.Optional.Babylon
O43 - CFD: 2013/04/02 17:29:22 - [] D -- C:\Users\Utilisateur\AppData\Roaming\DealPly =>PUP.Optional.Dealply
O43 - CFD: 2013/04/11 17:59:02 - [] D -- C:\Users\Utilisateur\AppData\Roaming\DSite =>PUP.Optional.SimpleSearches
O43 - CFD: 2013/09/25 10:21:59 - [] D -- C:\Users\Utilisateur\AppData\Roaming\mysearchdial =>PUP.Optional.MySearchDial
O43 - CFD: 2013/10/01 09:01:08 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
O43 - CFD: 2013/06/08 14:22:37 - [] D -- C:\Users\Utilisateur\AppData\Roaming\OfferBox =>PUP.Optional.OfferBox
O43 - CFD: 2013/04/11 21:50:49 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Systweak =>PUP.Optional.Systweak
O43 - CFD: 2014/01/13 22:34:26 - [] D -- C:\Users\Utilisateur\AppData\Local\Duuqu =>PUP.Optional.Duuqu
O43 - CFD: 2013/06/08 14:25:43 - [0] D -- C:\Users\Utilisateur\AppData\Local\Services x86 =>PUP.Optional.CrossRider
O43 - CFD: 2013/04/02 17:29:21 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.Optional.Dealply
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Vosteran) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {1FB29533-FA16-E291-5A00-535AB041EB6E} [DefaultScope] - (Bing) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (e) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (istartsurf) - http://www.istartsurf.com/ =>PUP.Optional.IsStart
O69 - SBI: SearchScopes [HKCU] {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} - (Web Search) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://do-search.com/ =>PUP.Optional.DoSearches
SR - Auto [2015/07/28 08:42:15] [ 463560] SSFK (SSFK) . (.TODO: .) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\updateBrowseFox_RASAPI32 =>Adware.BrowseFox
HKLM\SOFTWARE\Microsoft\Tracing\updateBrowseFox_RASMANCS =>Adware.BrowseFox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SecureDownloadManager_RASAPI32 =>PUP.Optional.SearchAssist
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SecureDownloadManager_RASMANCS =>PUP.Optional.SearchAssist
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SnapDo_RASAPI32 =>PUP.Optional.SmartBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SnapDo_RASMANCS =>PUP.Optional.SmartBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASAPI32 =>PUP.Optional.WebCake
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASMANCS =>PUP.Optional.WebCake
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASAPI32 =>PUP.Optional.Yontoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASMANCS =>PUP.Optional.Yontoo
HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
C:\Windows\Tasks\MySearchDial.job =>PUP.Optional.MySearchDial
C:\Windows\System32\Tasks\DealPlyUpdate =>PUP.Optional.Dealply
C:\Windows\System32\Tasks\DSite =>PUP.Optional.SimpleSearches
C:\Windows\System32\Tasks\MySearchDial =>PUP.Optional.MySearchDial
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\DataMngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\DealPly =>PUP.Optional.Dealply
HKLM\SOFTWARE\Wow6432Node\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\Wow6432Node\Duuqu =>PUP.Optional.FrameFox
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstallCore =>Adware.InstallCore
HKLM\SOFTWARE\Wow6432Node\nationzoomSoftware =>PUP.Optional.NationZoom
HKLM\SOFTWARE\Wow6432Node\OfferBox =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Services x86 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SoftwareUpdater =>PUP.Optional.SoftwareUpdater
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\supWPM =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\sweet-pageSoftware =>PUP.Optional.SweetPage
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\V9 =>PUP.Optional.V9Software
HKLM\SOFTWARE\Wow6432Node\Vittalia =>PUP.Optional.Vittalia
HKCU\SOFTWARE\5f578cdce669ba43 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\BabylonToolbar =>PUP.Optional.Babylon
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DealPly =>PUP.Optional.Dealply
HKCU\SOFTWARE\DSiteProducts =>PUP.Optional.DSite
HKCU\SOFTWARE\Duuqu =>PUP.Optional.FrameFox
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\InstalledThirdPartyPrograms =>PUP.Optional.Generic
HKCU\SOFTWARE\mysearchdial =>PUP.Optional.MySearchDial
HKCU\SOFTWARE\mysearchdial.com =>PUP.Optional.MySearchDial
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\OfferBox =>PUP.Optional.OfferBox
HKCU\SOFTWARE\Smartbar =>PUP.Optional.SmartBar
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\V9 =>PUP.Optional.V9Software
HKCU\SOFTWARE\Vosteran Browser =>PUP.Optional.Vosteran
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar
C:\Program Files (x86)\Duuqu =>PUP.Optional.Duuqu
C:\Program Files (x86)\JustCloud =>PUP.Optional.JustCloud
C:\Program Files (x86)\MyPC Backup =>PUP.Optional.MyPCBackup
C:\Program Files (x86)\Nosibay =>PUP.Optional.SPointer
C:\Program Files (x86)\Optimizer Pro =>PUP.Optional.OptimizerPro
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
C:\ProgramData\Babylon =>PUP.Optional.Babylon
C:\ProgramData\IePluginServices =>Trojan.SProtector
C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
C:\Users\Utilisateur\AppData\Roaming\Babylon =>PUP.Optional.Babylon
C:\Users\Utilisateur\AppData\Roaming\DealPly =>PUP.Optional.Dealply
C:\Users\Utilisateur\AppData\Roaming\DSite =>PUP.Optional.SimpleSearches
C:\Users\Utilisateur\AppData\Roaming\mysearchdial =>PUP.Optional.MySearchDial
C:\Users\Utilisateur\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
C:\Users\Utilisateur\AppData\Roaming\OfferBox =>PUP.Optional.OfferBox
C:\Users\Utilisateur\AppData\Roaming\Systweak =>PUP.Optional.Systweak
C:\Users\Utilisateur\AppData\Local\Duuqu =>PUP.Optional.Duuqu
C:\Users\Utilisateur\AppData\Local\Services x86 =>PUP.Optional.CrossRider
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.Optional.Dealply
HKLM64\SOFTWARE\Microsoft\Tracing\updateBrowseFox_RASAPI32 =>Adware.BrowseFox
HKLM64\SOFTWARE\Microsoft\Tracing\updateBrowseFox_RASMANCS =>Adware.BrowseFox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SecureDownloadManager_RASAPI32 =>PUP.Optional.SearchAssist
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SecureDownloadManager_RASMANCS =>PUP.Optional.SearchAssist
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SnapDo_RASAPI32 =>PUP.Optional.SmartBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SnapDo_RASMANCS =>PUP.Optional.SmartBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASAPI32 =>PUP.Optional.WebCake
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASMANCS =>PUP.Optional.WebCake
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASAPI32 =>PUP.Optional.Yontoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASMANCS =>PUP.Optional.Yontoo
HKLM\SOFTWARE\Wow6432Node\CLSID
HKLM\SOFTWARE\Wow6432Node\PIP
HKLM\SOFTWARE\Wow6432Node\PIP
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
[MD5.FDDB01A9B94A66A6FD5921DAE2C8EFEB] - (.Taiwan Shui Mu Chih Ching Technology Limited. - dsk service.) -- C:\Program Files (x86)\WinZipper\winzipersvc.exe [336528] [PID.1396]
O23 - Service: WinZiper service (winzipersvc) . (.Taiwan Shui Mu Chih Ching Technology Limited. - dsk service.) - C:\Program Files (x86)\WinZipper\winzipersvc.exe
O42 - Logiciel: WinZipper - (.Taiwan Shui Mu Chih Ching Technology Limited..) [HKLM][64Bits] -- WinZipper
O43 - CFD: 2015/09/02 14:55:04 - [] D -- C:\Program Files (x86)\WinZipper
O43 - CFD: 2015/05/28 13:35:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
O43 - CFD: 2015/06/04 13:39:28 - [] D -- C:\Users\Utilisateur\AppData\Roaming\WinZipper
O87 - FAEL: "TCP Query User{8C4BFF69-D009-497F-8AF8-ADE59290F3B9}F:\lisco\apache\apache.exe" [In-None-P6-TRUE] .(...) -- F:\lisco\apache\apache.exe (.not file.)
O87 - FAEL: "UDP Query User{19F6D60D-7D89-4CDF-A6FB-43E1EFD73067}F:\lisco\apache\apache.exe" [In-None-P17-TRUE] .(...) -- F:\lisco\apache\apache.exe (.not file.)
SR - Auto [2015/06/18 06:05:47] [ 336528] WinZiper service (winzipersvc) . (.Taiwan Shui Mu Chih Ching Technology Limited..) - C:\Program Files (x86)\WinZipper\winzipersvc.exe


Publicité


Signaler le contenu de ce document

Publicité