Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore
[MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participa��es Ltda - iSafeSvc.) -- C:\Program Files\Elex-tech\YAC\iSafeSvc.exe [118048] [PID.1700] =>PUP.Elex
[MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participa��es Ltda - iSafeSvc2.) -- C:\Program Files\Elex-tech\YAC\iSafeSvc2.exe [118048] [PID.1840] =>PUP.Elex
[MD5.0A09297C37084FF74660F0390E1E4F9B] - (.Elex do Brasil Participa��es Ltda - YACTray.) -- C:\Program Files\Elex-tech\YAC\iSafeTray.exe [315520] [PID.1816] =>PUP.Elex
O23 - Service: YAC Service (iSafeService) . (.Elex do Brasil Participa��es Ltda - iSafeSvc.) - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Elex
O41 - Driver: (iSafeKrnl) . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Driver.) - C:\Program Files\Elex-tech\YAC\iSafeKrnl.sys =>PUP.Elex
O41 - Driver: (iSafeKrnlKit) . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Kit Driver.) - C:\Program Files\Elex-tech\YAC\iSafeKrnlKit.sys =>PUP.Elex
O41 - Driver: (iSafeKrnlR3) . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Ring3 Driver.) - C:\Program Files\Elex-tech\YAC\iSafeKrnlR3.sys =>PUP.Elex
O41 - Driver: (iSafeNetFilter) . (.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) - C:\WINDOWS\system32\DRIVERS\iSafeNetFilter.sys =>Trojan.Staser
O42 - Logiciel: YAC(Yet Another Cleaner!) - (.ELEX DO BRASIL PARTICIPA��ES LTDA.) [HKLM] -- iSafe =>PUP.YetAnotherCleaner
[HKCU\Software\StormWatch] =>PUP.StormWatch
[HKLM\Software\Elex-tech] =>PUP.Elex
[HKLM\Software\PCDRunner] =>PUP.WebProtect
[HKLM\Software\TermTutor] =>PUP.TermTutor
O43 - CFD: 04/11/2014 - 09:05:43 - [] ----D C:\Program Files\Elex-tech =>PUP.Elex
O43 - CFD: 26/09/2014 - 09:38:45 - [] ----D C:\Program Files\PCTRunner =>PUP.WebProtect
O43 - CFD: 04/11/2014 - 09:05:35 - [] ----D C:\Documents and Settings\ordi\Application Data\Elex-tech =>PUP.Elex
O44 - LFC:[MD5.39FBE4DB322A9DEC827EBDE35A28D627] - 04/11/2014 - 09:05:54 ---A- . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Boot Driver.) -- C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys [38016]
O44 - LFC:[MD5.BFFE848A132D42522F4D4DFCF2E178A5] - 04/11/2014 - 09:05:54 ---A- . (.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS\system32\Drivers\iSafeNetFilter.sys [55464] =>Trojan.Staser
O45 - LFCP:[MD5.A2F0C1EB3507457BD24B5320BFEFC43A] - 10/11/2014 - 01:40:06 ---A- - C:\WINDOWS\Prefetch\ISAFETHLP.EXE-016A5D20.pf =>Trojan.Staser
O45 - LFCP:[MD5.9BDC08131217960F701ADAED4DB8358D] - 10/11/2014 - 01:39:50 ---A- - C:\WINDOWS\Prefetch\ISAFETRAY.EXE-1526CF8E.pf =>Trojan.Staser
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\pcwatch.sys . (...) -- C:\WINDOWS\system32\Drivers\pcwatch.sys (.not file.) =>PUP.WebProtect
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\pcwatch.sys . (...) -- C:\WINDOWS\system32\Drivers\pcwatch.sys (.not file.) =>PUP.WebProtect
O58 - SDL:08/10/2014 - 11:15:50 ---A- . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Boot Driver.) -- C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys [38016]
O58 - SDL:22/09/2014 - 13:13:46 ---A- . (.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS\system32\Drivers\iSafeNetFilter.sys [55464] =>Trojan.Staser
O61 - LFC: 04/11/2014 - 02:34:45 ---A- . (.Elex do Brasil Participa��es Ltda.) -- C:\Documents and Settings\ordi\Mes documents\T�l�chargements\yet_another_cleaner_sk_1931520.exe [15578360] =>PUP.YetAnotherCleaner
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeKrnl.sys (iSafeKrnl) .(.Elex do Brasil Participa��es Ltda - iSafe Kernel Driver.) - LEGACY_ISAFEKRNL =>PUP.Elex
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeKrnlKit.sys (iSafeKrnlKit) .(.Elex do Brasil Participa��es Ltda - iSafe Kernel Kit Driver.) - LEGACY_ISAFEKRNLKIT =>PUP.Elex
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeKrnlR3.sys (iSafeKrnlR3) .(.Elex do Brasil Participa��es Ltda - iSafe Kernel Ring3 Driver.) - LEGACY_ISAFEKRNLR3 =>PUP.Elex
O64 - Services: CurCS - 22/09/2014 - C:\WINDOWS\system32\DRIVERS\iSafeNetFilter.sys (iSafeNetFilter) .(.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) - LEGACY_ISAFENETFILTER =>Trojan.Staser
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe (iSafeService) .(.Elex do Brasil Participa��es Ltda - iSafeSvc.) - LEGACY_ISAFESERVICE =>PUP.Elex
O69 - SBI: SearchScopes [HKCU] {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} [DefaultScope] - (Astromenda) - http://astromenda.com =>PUP.Astromenda
[HKCR\CLSID\{BCB7B0A0-94D3-11d4-9064-00C04F78ACF9}] (Notation Class) =>Hijacker.Proxy
SR - | Auto 08/10/2014 118048 | (iSafeService) . (.Elex do Brasil Participa��es Ltda.) - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Elex
[HKLM\SYSTEM\CurrentControlSet\Services\iSafeService] =>PUP.Elex^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iSafe] =>PUP.YetAnotherCleaner^
C:\Program Files\Elex-tech =>PUP.Elex^
C:\Program Files\PCTRunner =>PUP.WebProtect^
C:\Documents and Settings\ordi\Application Data\Elex-tech =>PUP.Elex^
C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Elex^
C:\Program Files\Elex-tech\YAC\iSafeSvc2.exe =>PUP.Elex^
C:\Program Files\Elex-tech\YAC\iSafeTray.exe =>PUP.Elex^
[HKCU\Software\StormWatch] =>PUP.StormWatch^
[HKLM\Software\Elex-tech] =>PUP.Elex^
[HKLM\Software\PCDRunner] =>PUP.WebProtect^
[HKLM\Software\TermTutor] =>PUP.TermTutor^
[HKCR\CLSID\{BCB7B0A0-94D3-11d4-9064-00C04F78ACF9}] (Notation Class) =>Hijacker.Proxy^
[HKCU\Software\Reg]
[HKLM\Software\Reg]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O24 - Desktop Component 0: (no name) - file:http://media-eu.viva-images.com/vivastreet_fr/clad/a8/e/102629713/large/1.jpg?dt=0f0e7fd504f329ed90c4949193dbb55c
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O61 - LFC: 08/11/2014 - 02:34:44 ---A- . (.infidus vilitas facio.) -- C:\Documents and Settings\ordi\Mes documents\T�l�chargements\Clash%20of%20Clans.exe [550592]
O39 - APT: - (..) -- C:\WINDOWS\Tasks\At1.job [408]
EmptyPrefetch
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid
SysRestore
[MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participa��es Ltda - iSafeSvc.) -- C:\Program Files\Elex-tech\YAC\iSafeSvc.exe [118048] [PID.1700] =>PUP.Elex
[MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participa��es Ltda - iSafeSvc2.) -- C:\Program Files\Elex-tech\YAC\iSafeSvc2.exe [118048] [PID.1840] =>PUP.Elex
[MD5.0A09297C37084FF74660F0390E1E4F9B] - (.Elex do Brasil Participa��es Ltda - YACTray.) -- C:\Program Files\Elex-tech\YAC\iSafeTray.exe [315520] [PID.1816] =>PUP.Elex
O23 - Service: YAC Service (iSafeService) . (.Elex do Brasil Participa��es Ltda - iSafeSvc.) - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Elex
O41 - Driver: (iSafeKrnl) . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Driver.) - C:\Program Files\Elex-tech\YAC\iSafeKrnl.sys =>PUP.Elex
O41 - Driver: (iSafeKrnlKit) . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Kit Driver.) - C:\Program Files\Elex-tech\YAC\iSafeKrnlKit.sys =>PUP.Elex
O41 - Driver: (iSafeKrnlR3) . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Ring3 Driver.) - C:\Program Files\Elex-tech\YAC\iSafeKrnlR3.sys =>PUP.Elex
O41 - Driver: (iSafeNetFilter) . (.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) - C:\WINDOWS\system32\DRIVERS\iSafeNetFilter.sys =>Trojan.Staser
O42 - Logiciel: YAC(Yet Another Cleaner!) - (.ELEX DO BRASIL PARTICIPA��ES LTDA.) [HKLM] -- iSafe =>PUP.YetAnotherCleaner
[HKCU\Software\StormWatch] =>PUP.StormWatch
[HKLM\Software\Elex-tech] =>PUP.Elex
[HKLM\Software\PCDRunner] =>PUP.WebProtect
[HKLM\Software\TermTutor] =>PUP.TermTutor
O43 - CFD: 04/11/2014 - 09:05:43 - [] ----D C:\Program Files\Elex-tech =>PUP.Elex
O43 - CFD: 26/09/2014 - 09:38:45 - [] ----D C:\Program Files\PCTRunner =>PUP.WebProtect
O43 - CFD: 04/11/2014 - 09:05:35 - [] ----D C:\Documents and Settings\ordi\Application Data\Elex-tech =>PUP.Elex
O44 - LFC:[MD5.39FBE4DB322A9DEC827EBDE35A28D627] - 04/11/2014 - 09:05:54 ---A- . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Boot Driver.) -- C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys [38016]
O44 - LFC:[MD5.BFFE848A132D42522F4D4DFCF2E178A5] - 04/11/2014 - 09:05:54 ---A- . (.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS\system32\Drivers\iSafeNetFilter.sys [55464] =>Trojan.Staser
O45 - LFCP:[MD5.A2F0C1EB3507457BD24B5320BFEFC43A] - 10/11/2014 - 01:40:06 ---A- - C:\WINDOWS\Prefetch\ISAFETHLP.EXE-016A5D20.pf =>Trojan.Staser
O45 - LFCP:[MD5.9BDC08131217960F701ADAED4DB8358D] - 10/11/2014 - 01:39:50 ---A- - C:\WINDOWS\Prefetch\ISAFETRAY.EXE-1526CF8E.pf =>Trojan.Staser
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\pcwatch.sys . (...) -- C:\WINDOWS\system32\Drivers\pcwatch.sys (.not file.) =>PUP.WebProtect
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\pcwatch.sys . (...) -- C:\WINDOWS\system32\Drivers\pcwatch.sys (.not file.) =>PUP.WebProtect
O58 - SDL:08/10/2014 - 11:15:50 ---A- . (.Elex do Brasil Participa��es Ltda - iSafe Kernel Boot Driver.) -- C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys [38016]
O58 - SDL:22/09/2014 - 13:13:46 ---A- . (.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS\system32\Drivers\iSafeNetFilter.sys [55464] =>Trojan.Staser
O61 - LFC: 04/11/2014 - 02:34:45 ---A- . (.Elex do Brasil Participa��es Ltda.) -- C:\Documents and Settings\ordi\Mes documents\T�l�chargements\yet_another_cleaner_sk_1931520.exe [15578360] =>PUP.YetAnotherCleaner
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeKrnl.sys (iSafeKrnl) .(.Elex do Brasil Participa��es Ltda - iSafe Kernel Driver.) - LEGACY_ISAFEKRNL =>PUP.Elex
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeKrnlKit.sys (iSafeKrnlKit) .(.Elex do Brasil Participa��es Ltda - iSafe Kernel Kit Driver.) - LEGACY_ISAFEKRNLKIT =>PUP.Elex
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeKrnlR3.sys (iSafeKrnlR3) .(.Elex do Brasil Participa��es Ltda - iSafe Kernel Ring3 Driver.) - LEGACY_ISAFEKRNLR3 =>PUP.Elex
O64 - Services: CurCS - 22/09/2014 - C:\WINDOWS\system32\DRIVERS\iSafeNetFilter.sys (iSafeNetFilter) .(.Elex do Brasil Participa��es Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) - LEGACY_ISAFENETFILTER =>Trojan.Staser
O64 - Services: CurCS - 08/10/2014 - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe (iSafeService) .(.Elex do Brasil Participa��es Ltda - iSafeSvc.) - LEGACY_ISAFESERVICE =>PUP.Elex
O69 - SBI: SearchScopes [HKCU] {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} [DefaultScope] - (Astromenda) - http://astromenda.com =>PUP.Astromenda
[HKCR\CLSID\{BCB7B0A0-94D3-11d4-9064-00C04F78ACF9}] (Notation Class) =>Hijacker.Proxy
SR - | Auto 08/10/2014 118048 | (iSafeService) . (.Elex do Brasil Participa��es Ltda.) - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Elex
[HKLM\SYSTEM\CurrentControlSet\Services\iSafeService] =>PUP.Elex^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iSafe] =>PUP.YetAnotherCleaner^
C:\Program Files\Elex-tech =>PUP.Elex^
C:\Program Files\PCTRunner =>PUP.WebProtect^
C:\Documents and Settings\ordi\Application Data\Elex-tech =>PUP.Elex^
C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Elex^
C:\Program Files\Elex-tech\YAC\iSafeSvc2.exe =>PUP.Elex^
C:\Program Files\Elex-tech\YAC\iSafeTray.exe =>PUP.Elex^
[HKCU\Software\StormWatch] =>PUP.StormWatch^
[HKLM\Software\Elex-tech] =>PUP.Elex^
[HKLM\Software\PCDRunner] =>PUP.WebProtect^
[HKLM\Software\TermTutor] =>PUP.TermTutor^
[HKCR\CLSID\{BCB7B0A0-94D3-11d4-9064-00C04F78ACF9}] (Notation Class) =>Hijacker.Proxy^
[HKCU\Software\Reg]
[HKLM\Software\Reg]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O24 - Desktop Component 0: (no name) - file:http://media-eu.viva-images.com/vivastreet_fr/clad/a8/e/102629713/large/1.jpg?dt=0f0e7fd504f329ed90c4949193dbb55c
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O61 - LFC: 08/11/2014 - 02:34:44 ---A- . (.infidus vilitas facio.) -- C:\Documents and Settings\ordi\Mes documents\T�l�chargements\Clash%20of%20Clans.exe [550592]
O39 - APT: - (..) -- C:\WINDOWS\Tasks\At1.job [408]