cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
sysrestore
HKLM\SOFTWARE\Wow6432Node\HiDefMedia
HKCU\SOFTWARE\AppDataLow\Software\SmartBar
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- Bad: (C:\PROGRA~2\PANDAS~1\PANDAG~1\PavScrip.exe "%1" %*) Good: (WScript.exe "%1" %*)
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("browser.search.selectedEngine", "Vosteran");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.AL", 4);
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.aflt", "vst_coinis_14_52_ie");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.appId", "{4CB3598A-82E8-4D1F-983F-061238AE696E}");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.cd", "2XzuyEtN2Y1L1QzuyE0CzztDzytAyEyEyB0EyB0DzzyC0DyEtN0D0Tzu0StCtDzytDtN1L2XzutAtFyCtFtCyCtFyCtN[...]
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.cr", "915929254");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.dfltLng", "");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.dfltSrch", true);
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.dnsErr", true);
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.excTlbr", false);
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.hmpg", true);
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.id", "4C8093447E7D86D4");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.instlDay", "16430");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.instlRef", "142905_a");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.prdct", "srchvstrn");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.prtnrId", "WSE_Vosteran");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.srchPrvdr", "Vosteran");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.tlbrId", "");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.vrsn", "");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn.vrsni", "");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn_i.newTab", true);
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn_i.smplGrp", "none");
O69 - SBI: prefs.js [Ofelia - r30qyvpd.default] user_pref("extensions.srchvstrn_i.vrsnTs", "18:35:18");
ServiceDemand:MBAMService
[MD5.00000000000000000000000000000000] [APT] [File Helper] (...) -- C:\Program Files (x86)\File Helper\File Helper.lnk --scan --stack=from-scheduler (.not file.) [0]
OPT:O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
OPT:O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
OPT:O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
OPT:O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
OPT:O4 - HKUS\S-1-5-21-1946917381-3853142936-2261742833-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
OPT:O4 - HKUS\S-1-5-21-1946917381-3853142936-2261742833-1000\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
C:\ProgramData\1078601655
C:\ProgramData\McAfee
O43 - CFD: 27/03/2012 - [] D -- C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 24/08/2013 - [0] D -- C:\Users\Ofelia\AppData\Local\{422CB6C0-4693-48F0-99C6-491FFA3F8B79} =>.Empty
O53 - SMSR:HKLM\...\startupreg\cacaoweb [Key] . (...) -- C:\Users\Ofelia\AppData\Roaming\cacaoweb\cacaoweb.exe (.not file.) =>.Superfluous.CacaoWeb

Publicité


Signaler le contenu de ce document

Publicité