cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþScript ZHPFix
[MD5.2C8B926B982B8D170030C25C7488F110] - (.Totem Entertainment - DesktopVideoPlayer main executable.) -- C:\Users\Jérôme.000\AppData\Local\vghd\bin\vghd.exe [4076544] [PID.3740] © => Adware.VirtualGirl*
[MD5.3807BA07AD8CEDE5C7727A3A2A4256FE] - (.Totem Entertainment - VirtuaGirl Download Manager.) -- C:\Users\Jérôme.000\AppData\Local\vghd\bin\VirtuaGirl_Downloader.exe [587264] [PID.2776] © => Adware.VirtualGirl*
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> => Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:51994;https=127.0.0.1:51994 =>Hijacker.Proxy
O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll C:\Windows\system32\nvinitx.dll C:\PROGRA~2\OPTIMI~1\OPTPRO~3.DLL (.not file.) =>PUP.Optional.SearchProtect
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>PUP.Optional.Boxore
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job [930] =>PUP.Optional.Boxore
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\WINDOWS\System32\Tasks\SoftwareUpdateTaskMachineUA [3902] =>PUP.Optional.Boxore
O42 - Logiciel: Greener Web - (.Greener Web.) [HKLM][64Bits] -- Greener Web =>PUP.Optional.GreenerWeb
O42 - Logiciel: MyPC Backup - (.JDi Backup Ltd.) [HKLM][64Bits] -- MyPC Backup =>PUP.Optional.MyPCBackup
O42 - Logiciel: Buzzdock - (.Alactro LLC.) [HKLM][64Bits] -- {ac225167-00fc-452d-94c5-bb93600e7d9a} =>PUP.Optional.BuzzDock
O42 - Logiciel: realdeal - (.reaildeaL.) [HKLM][64Bits] -- {730C1F02-ABB6-7601-60ED-659A59700742} =>PUP.Optional.Multiplug
O42 - Logiciel: LuuckyuCoouupoN - (.LuuckyCouePon.) [HKLM][64Bits] -- {BA5D43C9-D633-D0EC-CFEA-2ABA974B333D} =>PUP.Optional.Multiplug
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {D8D8A342-0E9F-47EA-A35E-CF431B50B286} =>PUP.Optional.Boxore
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {F847B70A-FC29-4B82-872E-58F2CE9DEE09} =>PUP.Optional.Boxore
O42 - Logiciel: VirtuaGirl version 1.2.0.76 - (.Totem Entertainment.) [HKCU][64Bits] -- VirtuaGirl_is1 © => Adware.VirtualGirl*
HKLM\SOFTWARE\Wow6432Node\Bench => PUP.GiganticSavings
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\b7a6b3f1a13aae96b96b0c63d16d969c =>PUP.Optional.CrossRider
HKCU\SOFTWARE\EUcasino =>PUP.Optional.OnLineGames
HKCU\SOFTWARE\Totem =>PUP.Optional.VirtualGirl
O43 - CFD: 2014/11/10 03:30:09 - [0] D -- C:\Program Files (x86)\Bench => PUP.GiganticSavings
O43 - CFD: 2014/11/10 03:25:32 - [0] D -- C:\Program Files (x86)\Boxore =>PUP.Optional.Boxore
O43 - CFD: 2014/11/10 03:23:12 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2014/10/13 01:36:48 - [] D -- C:\Program Files (x86)\Software =>PUP.Optional.Boxore
O43 - CFD: 2015/01/15 01:41:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>PUP.Optional.ReImageRepair
O43 - CFD: 2014/06/28 02:47:01 - [] D -- C:\ProgramData\EmailNotifier =>PUP.Optional.EmailNotifier
O43 - CFD: 2014/09/09 22:50:29 - [] D -- C:\ProgramData\InstallMate =>PUP.Optional.Tarma
O43 - CFD: 2014/08/28 08:12:35 - [] D -- C:\ProgramData\LuuckyuCoouupoN =>PUP.Optional.Multiplug
O43 - CFD: 2015/01/15 01:41:39 - [] D -- C:\ProgramData\Reimage Protector =>PUP.Optional.ReImageRepair
O43 - CFD: 2014/07/09 08:48:41 - [] D -- C:\ProgramData\sauveRnnet =>PUP.Optional.Multiplug
O43 - CFD: 2014/06/20 21:09:33 - [] SHD -- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} => PUP.Agent
O43 - CFD: 2014/10/02 14:09:16 - [] D -- C:\Users\Jérôme.000\AppData\Roaming\VirusMaker =>PUP.Optional.VirusMaker
O43 - CFD: 2014/07/05 22:14:52 - [] D -- C:\Users\Jérôme.000\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2014/10/13 01:36:48 - [] D -- C:\Users\Jérôme.000\AppData\Local\Software =>PUP.Optional.Boxore
O43 - CFD: 2014/12/12 11:21:40 - [] D -- C:\Users\Jérôme.000\AppData\Local\vghd =>PUP.Optional.VirtualGirl
O43 - CFD: 2015/10/01 13:22:40 - [] D -- C:\Users\Jérôme.000\AppData\Local\Virus_Maker => PUP.VirusMaker
O43 - CFD: 2015/02/23 05:42:10 - [] D -- C:\Users\Jérôme.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtuaGirl =>PUP.Optional.VirtualGirl
O45 - LFCP:[MD5.1483B8328A068CEB17278E75D3D9724A] 2015/10/01 23:55:18 A -- C:\WINDOWS\Prefetch\VGHD.EXE-8898FAC5.pf =>PUP.Optional.VirtualGirl
O61 - LFC: 2015/10/01 22:47:14 A . (..) -- C:\Users\Jérôme.000\AppData\Local\vghd\data\liveFileCount.bin [820] =>PUP.Optional.VirtualGirl
O69 - SBI: prefs.js [arthur - seolf876.default] user_pref("browser.search.defaultenginename", "webssearches"); =>PUP.Optional.WebsSearches
O69 - SBI: prefs.js [arthur - seolf876.default] user_pref("extensions.a376a8310a27843eb8447cf979756a510d81d8b75358c47b49dfae1196fc86889com57020.57020.name", "PlusVid"); =>PUP.Optional.PlusVid
O69 - SBI: prefs.js [arthur - seolf876.default] user_pref("extensions.af80af4ec42b9429d99b04078ec7cf86444882d2088654b13b79eae8470d9a955com59568.59568.name", "Plus-HD-V1.8"); =>PUP.Optional.CrossRider
O87 - FAEL: "{156C7E87-6E71-4989-B359-464E67B17884}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\EmailNotifier\EmailNotifier.exe => PUP.Optional.EmailNotifier
O87 - FAEL: "{16D7BA5A-76CD-492F-BFD3-2C92B9E73AC2}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\EmailNotifier\EmailNotifier.exe => PUP.Optional.EmailNotifier
O90 - PUC: "243A8D8DF9E0AE743AE5FC34B1052B68" . (.Boxore Client.) -- C:\WINDOWS\Installer\{D8D8A342-0E9F-47EA-A35E-CF431B50B286}\boxore.ico =>PUP.Optional.Boxore
O90 - PUC: "A07B748F92CF28B478E2852FECD9EE90" . (.Boxore Client.) -- C:\Windows\Installer\{F847B70A-FC29-4B82-872E-58F2CE9DEE09}\boxore.ico =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32 =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS =>PUP.Optional.Wajam
C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job =>PUP.Optional.Boxore
C:\WINDOWS\System32\Tasks\SoftwareUpdateTaskMachineUA =>PUP.Optional.Boxore
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Greener Web =>PUP.Optional.GreenerWeb
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup =>PUP.Optional.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ac225167-00fc-452d-94c5-bb93600e7d9a} =>PUP.Optional.BuzzDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{730C1F02-ABB6-7601-60ED-659A59700742} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA5D43C9-D633-D0EC-CFEA-2ABA974B333D} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D8D8A342-0E9F-47EA-A35E-CF431B50B286} =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F847B70A-FC29-4B82-872E-58F2CE9DEE09} =>PUP.Optional.Boxore
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\b7a6b3f1a13aae96b96b0c63d16d969c =>PUP.Optional.CrossRider
HKCU\SOFTWARE\EUcasino =>PUP.Optional.OnLineGames
HKCU\SOFTWARE\Totem =>PUP.Optional.VirtualGirl
C:\Program Files (x86)\Boxore =>PUP.Optional.Boxore
C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\Software =>PUP.Optional.Boxore
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>PUP.Optional.ReImageRepair
C:\ProgramData\EmailNotifier =>PUP.Optional.EmailNotifier
C:\ProgramData\InstallMate =>PUP.Optional.Tarma
C:\ProgramData\LuuckyuCoouupoN =>PUP.Optional.Multiplug
C:\ProgramData\Reimage Protector =>PUP.Optional.ReImageRepair
C:\ProgramData\sauveRnnet =>PUP.Optional.Multiplug
C:\Users\Jérôme.000\AppData\Roaming\VirusMaker =>PUP.Optional.VirusMaker
C:\Users\Jérôme.000\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\Jérôme.000\AppData\Local\Software =>PUP.Optional.Boxore
C:\Users\Jérôme.000\AppData\Local\vghd =>PUP.Optional.VirtualGirl
C:\Users\Jérôme.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtuaGirl =>PUP.Optional.VirtualGirl
C:\WINDOWS\Prefetch\VGHD.EXE-8898FAC5.pf =>PUP.Optional.VirtualGirl
C:\Users\Jérôme.000\AppData\Local\vghd\data\liveFileCount.bin =>PUP.Optional.VirtualGirl
C:\WINDOWS\Installer\{D8D8A342-0E9F-47EA-A35E-CF431B50B286}\boxore.ico =>PUP.Optional.Boxore
HKLM\Software\Classes\Installer\Products\243A8D8DF9E0AE743AE5FC34B1052B68 =>PUP.Optional.Boxore
HKLM\Software\Classes\Installer\Features\243A8D8DF9E0AE743AE5FC34B1052B68 =>PUP.Optional.Boxore
C:\Windows\Installer\{F847B70A-FC29-4B82-872E-58F2CE9DEE09}\boxore.ico =>PUP.Optional.Boxore
HKLM\Software\Classes\Installer\Products\A07B748F92CF28B478E2852FECD9EE90 =>PUP.Optional.Boxore
HKLM\Software\Classes\Installer\Features\A07B748F92CF28B478E2852FECD9EE90 =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32 =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS =>PUP.Optional.Wajam
O39 - APT: Game_Booster_AutoUpdate - (...) -- C:\WINDOWS\System32\Tasks\Game_Booster_AutoUpdate [3162]
P2 - EXT: (.XK72 Ltd - Charles Autoconfiguration.) -- C:\Users\Jérôme.000\AppData\Roaming\Mozilla\Firefox\Profiles\seolf876.default\extensions\{3e9a3920-1b27-11da-8cd6-0800200c9a66}
P2 - FPN: [HKLM] [@raidcall.en/RCplugin] - (.Raidcall.) -- C:\Users\Jérôme.000\AppData\Roaming\raidcall\plugins\nprcplugin.dll
O42 - Logiciel: Messenger Du Sexe - (.Rentabiliweb.) [HKLM][64Bits] -- messengerdusexe ©
HKLM\SOFTWARE\Wow6432Node\Proxy
HKCU\SOFTWARE\Proxy
O43 - CFD: 2014/07/17 00:39:24 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{0E34321C-A3E2-48A5-926F-7CE7557E6996} => Empty Folder not necessary
O43 - CFD: 2014/07/06 18:50:56 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{117EAF2C-7B99-4435-8E7D-627992F4A490} => Empty Folder not necessary
O43 - CFD: 2014/07/13 01:03:22 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{134B6E5F-44AD-4575-B07C-2D17588DD5BA} => Empty Folder not necessary
O43 - CFD: 2014/07/13 01:03:02 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{23E97C01-0454-4D34-802A-85F9C9638DF5} => Empty Folder not necessary
O43 - CFD: 2014/07/13 01:02:38 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{4107D018-2765-407A-A407-A6B28153187B} => Empty Folder not necessary
O43 - CFD: 2014/06/18 14:49:50 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{9FEB39FD-614B-4AB1-877A-F2D599B1EE45} => Empty Folder not necessary
O43 - CFD: 2014/07/17 00:16:58 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{B2FC52F7-E34E-4405-987C-FC405484A257} => Empty Folder not necessary
O43 - CFD: 2014/07/18 03:08:23 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{B771F450-2D4D-4457-922D-B7BDA681C2B7} => Empty Folder not necessary
O43 - CFD: 2014/07/17 00:29:34 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{E1752898-C53F-4401-B3E2-B8136732814B} => Empty Folder not necessary
O43 - CFD: 2014/12/08 20:23:00 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{E34B72F1-37C8-493F-8EAF-E7BAF65991CC} => Empty Folder not necessary
O43 - CFD: 2014/07/06 18:48:58 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{F50356B5-1B1D-4780-9F8C-DB093B1EE7DB} => Empty Folder not necessary
O43 - CFD: 2014/07/17 00:19:36 - [0] D -- C:\Users\Jérôme.000\AppData\Local\{FEA90BC5-659D-4C36-A7C6-3BF4BB293A33}
O43 - CFD: 2014/10/13 00:23:12 - [] D -- C:\Users\Jérôme.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\messengerdusexe




SysRestore
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash







Publicité


Signaler le contenu de ce document

Publicité