Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
G2 - GCE: Preference [User Data\Default] [dheijbecgbfgpbnmjaibpfpmipjjppml] AP Suggestor v.1.0.6 (D�sactiv�) =>PUP.APSuggestor
G2 - GCE: Preference [User Data\Default] [fgckhjinljelapgmlibndofgihnbpooa] SearchNewTab v.1.0 (Activ�) =>Adware.FastSaveApp
G2 - GCE: Preference [User Data\Default] [jmeigfhiamcngcdagbcibhjpjdilnhfc] SearchNewTab v.1.0 (Activ�) =>Adware.FastSaveApp
O2 - BHO: SearchNewTab [64Bits] - {B2369667-8D46-0CB5-7886-985087ED21FC} Cl� orpheline =>Adware.FastSaveApp
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.701.0\ClickPotatoLiteSA.exe (.not file.) [0] =>Adware.ClickPotato
O43 - CFD: 1/11/2012 - 22:04:34 - [0,007] ----D C:\ProgramData\65172551D54DE1B300306516F51CC366
O43 - CFD: 17/11/2011 - 17:15:41 - [0,046] ----D C:\ProgramData\APSuggestor =>PUP.APSuggestor
O43 - CFD: 15/10/2013 - 12:53:44 - [3,170] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 28/10/2011 - 14:19:05 - [0] ----D C:\Users\kris\AppData\Roaming\Youtube Downloader HD =>PUP.Dealio
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\Logo.png [2491]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\Logo16.png [861]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\Logo48.png [4715]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\SmartSuggestor.js [1059]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\babelfish.png [799]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\babelfishPopup.html [894]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\background.html [2815]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\jquery.min.js [78600]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\manifest.json [1239]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\menu.css [1321]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\menu.html [1372]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\options.html [726]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\optionsPopup.html [356]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\share.png [788]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\sharePopup.html [1453]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\similar.png [3294]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\similarPopup.html [1126]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (.Setup.) -- C:\Users\kris\AppData\Local\Temp\00294823\8hgWZu.exe [342016]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572111764.exe [175208]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572115570.exe [733224]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.LyricsMonkey.) -- C:\Users\kris\AppData\Local\Temp\toolbar572127847.exe [92628] =>Adware.AddLyrics
[MD5.232AD40DF4D2A129B88A2411907DAA4A] [SPRF][15/10/2013] (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572111764.exe [175208]
[MD5.A2CAB5F3F68492588484BB78C9B76C43] [SPRF][15/10/2013] (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572115570.exe [733224]
[MD5.8EC2DF2CF0EC1CD95751B27D36DC3094] [SPRF][15/10/2013] (.LyricsMonkey - LyricsMonkey.) -- C:\Users\kris\AppData\Local\Temp\toolbar572127847.exe [92628] =>Adware.AddLyrics
[MD5.3C74C26999F2060BC6302448F173A342] [SPRF][28/08/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\kris\AppData\Local\Temp\uninst1.exe [340464] =>Toolbar.Babylon
O43 - CFD: 1/11/2012 - 22:04:34 - [0,007] ----D C:\ProgramData\65172551D54DE1B300306516F51CC366
[HKLM\Software\Google\Chrome\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml] =>PUP.APSuggestor^
[HKLM\Software\Google\Chrome\Extensions\fgckhjinljelapgmlibndofgihnbpooa] =>Adware.FastSaveApp^
[HKLM\Software\Google\Chrome\Extensions\jmeigfhiamcngcdagbcibhjpjdilnhfc] =>Adware.FastSaveApp^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2369667-8D46-0CB5-7886-985087ED21FC}] =>Adware.FastSaveApp^
[HKCU\Software\PartyGaming] =>Casino.OnlineGames
C:\ProgramData\APSuggestor =>PUP.APSuggestor^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\Users\kris\AppData\Roaming\Youtube Downloader HD =>PUP.Dealio^
C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml =>PUP.APSuggestor^
C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgckhjinljelapgmlibndofgihnbpooa =>Adware.FastSaveApp^
C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmeigfhiamcngcdagbcibhjpjdilnhfc =>Adware.FastSaveApp^
C:\Users\kris\AppData\Local\Temp\toolbar572127847.exe =>Adware.AddLyrics^
C:\Users\kris\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon^
G1 - GCS: Preference [User Data\Default] http://www.delta-search.com =>Toolbar.DeltaSearch
O4 - GS\Desktop [kris]: Search.lnk . (...) -- C:\ProgramData\DSearchLink\DSearchLink.exe (.not file.) =>Toolbar.DeltaSearch
O43 - CFD: 14/06/2013 - 23:13:13 - [0] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab138.deltatb_dmn.zpb [253] =>Toolbar.DeltaSearch
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\DSearchLink_DT.zpb [54481] =>Toolbar.DeltaSearch
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\DeltaTB.zpb [1681832] =>Toolbar.DeltaSearch
O43 - CFD: 27/07/2013 - 13:55:47 - [12,547] ----D C:\Users\kris\AppData\Roaming\cef-cache
[HKCU\Software\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\Wow6432Node\GoforFiles] =>P2P.GoforFiles
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.http://goforfiles.com/.) -- C:\Users\kris\AppData\Local\Temp\uninstall574210305.exe [2269776] =>P2P.GoforFiles
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.http://www.goforfiles.com/.) -- C:\Users\kris\AppData\Local\Temp\uninstall574174581.exe [6638336] =>P2P.GoforFiles
O61 - LFC: 15/10/2013 - 20:40:35 ---A- . (.http://www.goforfiles.com/.) -- C:\Users\kris\Downloads\crack_publisher_2013_downloader_be_99685.exe [6638336] =>P2P.GoforFiles
[MD5.75828DD129670369578D6EEC9A2A718A] [SPRF][15/10/2013] (.http://www.goforfiles.com/ - GoforFiles.) -- C:\Users\kris\AppData\Local\Temp\uninstall574174581.exe [6638336] =>P2P.GoforFiles
[MD5.13D0EEB75077FF4B5F8B1FEAEA47D7A6] [SPRF][15/10/2013] (.http://goforfiles.com/ - GoforFiles Application.) -- C:\Users\kris\AppData\Local\Temp\uninstall574210305.exe [2269776] =>P2P.GoforFiles
O61 - LFC: 14/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\832_3004\crl-set [262585]
O61 - LFC: 14/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\832_3004\manifest.fingerprint [12]
O61 - LFC: 14/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\832_3004\manifest.json [34]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\8hgWZu.dat [3670]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\Jca6hg.js [5633]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\background.html [143]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\content.js [197]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\lsdb.js [559]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\manifest.json [510]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\sqlite.js [1199]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\s0iUH.dll [264192]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\s0iUH.tlb [2300]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\s0iUH.x64.dll [326656]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\bootstrap.js [2595]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\chrome.manifest [104]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\content\bg.js [9722]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\install.rdf [615]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab098.claroico.zpb [953]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab149.spreg.zpb [299]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab457.TB_NewWay.dat [173]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\BUsolution_vt.zpb [199019]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\DeltaChromeTB.zpb [80361]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\GUninstaller_cat.zpb [139448]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\ccp.zpb [229298]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\latest.zpb [361398]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\niche.zpb [307752]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\RK_Mtx [0]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\nsqEBF7.tmp\System.dll [11264]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\nsqEBF7.tmp\UserInfo.dll [4096]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\nsqEBF7.tmp\nsisos.dll [5632]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\preferences [0]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\sSetup-se.exe [648472]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.TODO:.) -- C:\Users\kris\AppData\Local\Temp\nsqEBF7.tmp\chrmPref.dll [212992]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.Terra Informatica Software, Inc., British C.) -- C:\Users\kris\AppData\Local\Temp\htmlayout.dll [947200]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.Terra Informatica Software, Inc., British C.) -- C:\Users\kris\AppData\Local\Temp\uninstall574210320.exe [947200]
O61 - LFC: 15/10/2013 - 20:40:26 --HA- . (...) -- C:\Users\kris\AppData\Local\Temp\etilqs_AGhJrQ660LSWsPh [0]
[MD5.16E53BFC96CE14021C0E07EB1C198478] [SPRF][1/11/2012] (...) -- C:\Users\kris\AppData\Roaming\inst.exe [99384]
G2 - GCE: Preference [User Data\Default] [dheijbecgbfgpbnmjaibpfpmipjjppml] AP Suggestor v.1.0.6 (D�sactiv�) =>PUP.APSuggestor
G2 - GCE: Preference [User Data\Default] [fgckhjinljelapgmlibndofgihnbpooa] SearchNewTab v.1.0 (Activ�) =>Adware.FastSaveApp
G2 - GCE: Preference [User Data\Default] [jmeigfhiamcngcdagbcibhjpjdilnhfc] SearchNewTab v.1.0 (Activ�) =>Adware.FastSaveApp
O2 - BHO: SearchNewTab [64Bits] - {B2369667-8D46-0CB5-7886-985087ED21FC} Cl� orpheline =>Adware.FastSaveApp
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.701.0\ClickPotatoLiteSA.exe (.not file.) [0] =>Adware.ClickPotato
O43 - CFD: 1/11/2012 - 22:04:34 - [0,007] ----D C:\ProgramData\65172551D54DE1B300306516F51CC366
O43 - CFD: 17/11/2011 - 17:15:41 - [0,046] ----D C:\ProgramData\APSuggestor =>PUP.APSuggestor
O43 - CFD: 15/10/2013 - 12:53:44 - [3,170] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 28/10/2011 - 14:19:05 - [0] ----D C:\Users\kris\AppData\Roaming\Youtube Downloader HD =>PUP.Dealio
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\Logo.png [2491]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\Logo16.png [861]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\Logo48.png [4715]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\SmartSuggestor.js [1059]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\babelfish.png [799]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\babelfishPopup.html [894]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\background.html [2815]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\jquery.min.js [78600]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\manifest.json [1239]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\menu.css [1321]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\menu.html [1372]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\options.html [726]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\optionsPopup.html [356]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\share.png [788]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\sharePopup.html [1453]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\similar.png [3294]
O61 - LFC: 15/10/2013 - 20:40:15 ---A- . (...) -- C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml\1.0.6_1\similarPopup.html [1126]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (.Setup.) -- C:\Users\kris\AppData\Local\Temp\00294823\8hgWZu.exe [342016]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572111764.exe [175208]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572115570.exe [733224]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.LyricsMonkey.) -- C:\Users\kris\AppData\Local\Temp\toolbar572127847.exe [92628] =>Adware.AddLyrics
[MD5.232AD40DF4D2A129B88A2411907DAA4A] [SPRF][15/10/2013] (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572111764.exe [175208]
[MD5.A2CAB5F3F68492588484BB78C9B76C43] [SPRF][15/10/2013] (...) -- C:\Users\kris\AppData\Local\Temp\toolbar572115570.exe [733224]
[MD5.8EC2DF2CF0EC1CD95751B27D36DC3094] [SPRF][15/10/2013] (.LyricsMonkey - LyricsMonkey.) -- C:\Users\kris\AppData\Local\Temp\toolbar572127847.exe [92628] =>Adware.AddLyrics
[MD5.3C74C26999F2060BC6302448F173A342] [SPRF][28/08/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\kris\AppData\Local\Temp\uninst1.exe [340464] =>Toolbar.Babylon
O43 - CFD: 1/11/2012 - 22:04:34 - [0,007] ----D C:\ProgramData\65172551D54DE1B300306516F51CC366
[HKLM\Software\Google\Chrome\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml] =>PUP.APSuggestor^
[HKLM\Software\Google\Chrome\Extensions\fgckhjinljelapgmlibndofgihnbpooa] =>Adware.FastSaveApp^
[HKLM\Software\Google\Chrome\Extensions\jmeigfhiamcngcdagbcibhjpjdilnhfc] =>Adware.FastSaveApp^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2369667-8D46-0CB5-7886-985087ED21FC}] =>Adware.FastSaveApp^
[HKCU\Software\PartyGaming] =>Casino.OnlineGames
C:\ProgramData\APSuggestor =>PUP.APSuggestor^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\Users\kris\AppData\Roaming\Youtube Downloader HD =>PUP.Dealio^
C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheijbecgbfgpbnmjaibpfpmipjjppml =>PUP.APSuggestor^
C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgckhjinljelapgmlibndofgihnbpooa =>Adware.FastSaveApp^
C:\Users\kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmeigfhiamcngcdagbcibhjpjdilnhfc =>Adware.FastSaveApp^
C:\Users\kris\AppData\Local\Temp\toolbar572127847.exe =>Adware.AddLyrics^
C:\Users\kris\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon^
G1 - GCS: Preference [User Data\Default] http://www.delta-search.com =>Toolbar.DeltaSearch
O4 - GS\Desktop [kris]: Search.lnk . (...) -- C:\ProgramData\DSearchLink\DSearchLink.exe (.not file.) =>Toolbar.DeltaSearch
O43 - CFD: 14/06/2013 - 23:13:13 - [0] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab138.deltatb_dmn.zpb [253] =>Toolbar.DeltaSearch
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\DSearchLink_DT.zpb [54481] =>Toolbar.DeltaSearch
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\DeltaTB.zpb [1681832] =>Toolbar.DeltaSearch
O43 - CFD: 27/07/2013 - 13:55:47 - [12,547] ----D C:\Users\kris\AppData\Roaming\cef-cache
[HKCU\Software\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\Wow6432Node\GoforFiles] =>P2P.GoforFiles
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.http://goforfiles.com/.) -- C:\Users\kris\AppData\Local\Temp\uninstall574210305.exe [2269776] =>P2P.GoforFiles
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.http://www.goforfiles.com/.) -- C:\Users\kris\AppData\Local\Temp\uninstall574174581.exe [6638336] =>P2P.GoforFiles
O61 - LFC: 15/10/2013 - 20:40:35 ---A- . (.http://www.goforfiles.com/.) -- C:\Users\kris\Downloads\crack_publisher_2013_downloader_be_99685.exe [6638336] =>P2P.GoforFiles
[MD5.75828DD129670369578D6EEC9A2A718A] [SPRF][15/10/2013] (.http://www.goforfiles.com/ - GoforFiles.) -- C:\Users\kris\AppData\Local\Temp\uninstall574174581.exe [6638336] =>P2P.GoforFiles
[MD5.13D0EEB75077FF4B5F8B1FEAEA47D7A6] [SPRF][15/10/2013] (.http://goforfiles.com/ - GoforFiles Application.) -- C:\Users\kris\AppData\Local\Temp\uninstall574210305.exe [2269776] =>P2P.GoforFiles
O61 - LFC: 14/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\832_3004\crl-set [262585]
O61 - LFC: 14/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\832_3004\manifest.fingerprint [12]
O61 - LFC: 14/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\832_3004\manifest.json [34]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\8hgWZu.dat [3670]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\Jca6hg.js [5633]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\background.html [143]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\content.js [197]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\lsdb.js [559]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\manifest.json [510]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\hlpblchlabgilfkchficfcbgmkeffbeg\sqlite.js [1199]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\s0iUH.dll [264192]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\s0iUH.tlb [2300]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\s0iUH.x64.dll [326656]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\bootstrap.js [2595]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\chrome.manifest [104]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\content\bg.js [9722]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\00294823\vk3hadrexqp@yeaosr-.org\install.rdf [615]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab098.claroico.zpb [953]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab149.spreg.zpb [299]
O61 - LFC: 15/10/2013 - 20:40:25 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\bab457.TB_NewWay.dat [173]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\BUsolution_vt.zpb [199019]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\DeltaChromeTB.zpb [80361]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\GUninstaller_cat.zpb [139448]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\ccp.zpb [229298]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\latest.zpb [361398]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\0D4DE03D-BAB0-7891-9156-F1580A32EC70\Latest\niche.zpb [307752]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\RK_Mtx [0]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\nsqEBF7.tmp\System.dll [11264]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\nsqEBF7.tmp\UserInfo.dll [4096]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\nsqEBF7.tmp\nsisos.dll [5632]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\preferences [0]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (...) -- C:\Users\kris\AppData\Local\Temp\sSetup-se.exe [648472]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.TODO:
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.Terra Informatica Software, Inc., British C.) -- C:\Users\kris\AppData\Local\Temp\htmlayout.dll [947200]
O61 - LFC: 15/10/2013 - 20:40:26 ---A- . (.Terra Informatica Software, Inc., British C.) -- C:\Users\kris\AppData\Local\Temp\uninstall574210320.exe [947200]
O61 - LFC: 15/10/2013 - 20:40:26 --HA- . (...) -- C:\Users\kris\AppData\Local\Temp\etilqs_AGhJrQ660LSWsPh [0]
[MD5.16E53BFC96CE14021C0E07EB1C198478] [SPRF][1/11/2012] (...) -- C:\Users\kris\AppData\Roaming\inst.exe [99384]