Script ZHPFix G0 - GCSP: Preference [User Data\Default][StartupURLs] http://www.istartsurf.com/?type=hp&ts=1412641241&from=smt&uid=WDCXWD5000LPVX-22V0TT0_WD-WX21A14T2631T2631 =>PUP.IsStart G2 - GCE: Preference [User Data\Default] [pelmeidfhdlhlbjimpabfcbnnojbboma] Quick start v.4.5.8, (Activé) =>PUP.QuickStart O43 - CFD: 02/09/2014 - 20:42:30 - [] ----D C:\Users\med\AppData\Local\TB [HKLM\Software\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma] =>PUP.QuickStart^ C:\Users\med\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma =>PUP.QuickStart^ MD5.A933BCFB8E08084E56AA2CB25E852EDF] - (.Megaify Software Co., Ltd. - DriverToolkit.) -- C:\Program Files\DriverToolkit\DriverToolkit.exe [1285632] [PID.2212] M3 - MFPP: Plugins - [med] -- C:\Users\med\AppData\Roaming\Mozilla\Firefox\Profiles\g2c1b9z9.default\searchplugins\yqs-barff-yandex.xml M2 - MFEP: prefs.js [med - g2c1b9z9.default\vb@yandex.ru] [] ?’?¸?·?ƒ?°?»?Œ?½?‹?µ ?·?°???»?°?´???¸ v2.14.2 (..) M2 - MFEP: prefs.js [med - g2c1b9z9.default\yasearch@yandex.ru] [] Yandex Elements v8.4.0 (..) [MD5.A933BCFB8E08084E56AA2CB25E852EDF] [APT] [DriverToolkit Autorun] (.Megaify Software Co., Ltd..) -- C:\Program Files\DriverToolkit\DriverToolkit.exe [1285632] O42 - Logiciel: PotPlayer v1.6.48576 Stable x86 - (.Daum Corp..) [HKLM] -- PotPlayer [HKCU\Software\qNewsPaper] O43 - CFD: 08/10/2014 - 12:36:22 - [] ----D C:\Program Files\COED11 O43 - CFD: 02/09/2014 - 20:24:57 - [] ----D C:\Program Files\qNewsPaper O43 - CFD: 08/10/2014 - 12:36:22 - [0] ----D C:\Users\med\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\COED11 O58 - SDL:13/07/2009 - 01:07:46 ---A- . (...) -- C:\Windows\System32\Drivers\uxpatch.sys [25448] O64 - Services: CurCS - 07/05/2013 - C:\Windows\system32\ammntdrv.sys (ammntdrv) .(...) - LEGACY_AMMNTDRV O64 - Services: CurCS - 06/02/2013 - C:\Windows\system32\amwrtdrv.sys (amwrtdrv) .(...) - LEGACY_AMWRTDRV [MD5.83099E39A12528AE9F75ECF36C3542CD] [SPRF][19/10/2014] (...) -- C:\Users\med\Desktop\emnru2h1.exe [155944640] [MD5.9A7664EB8639F7D0D8741BB67FF5B292] [SPRF][20/10/2014] (...) -- C:\Users\med\Desktop\setup_11.0.0.1245.x01_2011_08_03_13_11.exe [100693256] [MD5.28FBD6D56407A17BB6D9645AD6908CFF] [SPRF][02/09/2014] (...) -- C:\Users\med\Desktop\     .exe [2728960] [MD5.BA338FB1E4FCCB8789B5967FB82DDF80] [SPRF][01/04/2014] (.No owner - Installs and updates drivers.) -- C:\Users\med\Desktop\             .exe [239832] [MD5.FB9DA1DD951232244203558A96E8FF66] [SPRF][07/02/2013] (.No owner - AntiDust Tool.) -- C:\Program Files\AntiDust.exe [50330] SS - | Demand 19/06/2014 29912 | (Backupper Service) . (.AOMEI Tech Co., Ltd..) - C:\Program Files\AOMEI Backupper Standard Edition 2.0.1\ABService.exe [HKCU\Software\Reg] [HKLM\Software\Reg] O41 - Driver: (BAPIDRV) . (. - .) - C:\Windows\System32\DRIVERS\BAPIDRV.sys (.not file.) O41 - Driver: (BdfNdisf) . (. - .) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys (.not file.) O41 - Driver: (Bfilter) . (. - .) - C:\Windows\system32\drivers\Bfilter.sys (.not file.) O41 - Driver: (Bfmon) . (. - .) - C:\Windows\system32\drivers\Bfmon.sys (.not file.) O41 - Driver: (Bnbase) . (. - .) - C:\Windows\System32\drivers\bnbasex.sys (.not file.) O41 - Driver: (Bndef) . (. - .) - C:\Windows\system32\drivers\bndef.sys (.not file.) O41 - Driver: (Bprotect) . (. - .) - C:\Windows\system32\drivers\Bprotect.sys (.not file.) O43 - CFD: 07/10/2014 - 01:58:26 - [] ----D C:\Program Files\crack idm O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 19/10/2014 - 00:28:40 ---A- . (...) -- C:\Windows\MBR.exe [208896] O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 19/10/2014 - 00:28:40 ---A- . (...) -- C:\Windows\PEV.exe [256000] [MD5.6691F88CBD9122D990FE9E17197E2771] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe [1387864] [PID.3280] =>P2P.BitTorrent O4 - GS\QuickLaunch [med]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O4 - GS\Desktop [med]:      .lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O4 - HKCU\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O4 - HKUS\S-1-5-21-2319943842-2659605506-2133035331-1000\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{B74C3500-2F93-4A0C-B036-0F6F51561CF7}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{67E32A9A-D686-4D33-87E6-F756AE1A56E5}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent HKLM\SOFTWARE\Microsoft\Tracing\bittorrent_7-9-2-build-33876_fr_11039_RASAPI32 =>P2P.BitTorrent HKLM\SOFTWARE\Microsoft\Tracing\bittorrent_7-9-2-build-33876_fr_11039_RASMANCS =>P2P.BitTorrent HKLM\SOFTWARE\Microsoft\Tracing\BitTorrent_RASAPI32 =>P2P.BitTorrent HKLM\SOFTWARE\Microsoft\Tracing\BitTorrent_RASMANCS =>P2P.BitTorrent [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:BitTorrent =>P2P.BitTorrent^ C:\Users\med\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent^ R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) O39 - APT: DriverToolkit Autorun - (.Megaify Software Co., Ltd..) -- C:\Windows\Tasks\DriverToolkit Autorun.job [342] O39 - APT: DriverToolkit Autorun - (.Megaify Software Co., Ltd..) -- C:\Windows\System32\Tasks\DriverToolkit Autorun [342] O42 - Logiciel: Ditto - (.Scott Brogden.) [HKLM] -- Ditto_is1 [HKCU\Software\Baidu Security] [HKCU\Software\Ditto] [HKCU\Software\Yandex] [HKLM\Software\Baidu Security] O43 - CFD: 06/10/2014 - 12:51:52 - [0] ----D C:\Program Files\360 O43 - CFD: 05/10/2014 - 15:20:45 - [] -SH-D C:\ProgramData\360Quarant O43 - CFD: 27/08/2014 - 14:08:15 - [0] ----D C:\ProgramData\Baidu Security O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Goo) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {7B115C89-BC8E-4EAA-A891-92F811DE79F0} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {A314D8D8-02EF-4A4E-8655-A09962C2C7DE} - (Google) - http://www.google.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.com ShortcutFix FirewallRaz EmptyTemp EmptyFlash Proxyfix Sysrestore