Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [0] [PID.780] =>.AMD
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [0] [PID.1068] =>.AMD
[MD5.0B52C2913E69DB56CA9B0B415B296E04] - (.Advanced Micro Devices, Inc. - AMD Fuel Service.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064] [PID.1748] =>.Advanced Micro Devices, Inc.
[MD5.E14C3987163EF4CA102B952624695C84] - (.AMD - HydraDM.) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120] [PID.1816] =>.AMD
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.staticimgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://akz.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://anx.tb.ask.com =>Toolbar.Ask
G0 - GCSP: Preferences [User Data\Default][HomePage] http://hp.myway.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://live.tb.ask.com =>Toolbar.Ask
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ttdetect.staticimgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.ssl.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fb-s-a-a.akamaihd.net =>.Superfluous.AkamaiHD
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.facebook.com =>.Facebook
G2 - GCE: Preference [User Data\Default] [ibopmonjjnejkdbimjbgdbekmfpogken] EasyPDFCombine =>.Superfluous.MindSpark
G2 - GCE: Preference [User Data\Default] [kohoehgoafblafjinhplmhcbphgaaobc] InternetSpeedTracker =>.Superfluous.MindSpark
G2 - GCE: Preference [User Data\Default] [maoffpmgdffbgbncadalkhfhmlfihkgk] DownSpeedTest =>.Superfluous.MindSpark
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
HKCU\SOFTWARE\7866aac5b5fbfab6 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\DLL-Files.com =>PUP.Optional.DllFilesFixer
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL-Files.com Client =>PUP.Optional.DllFilesFixer
https://nicolascoolman.eu/2017/02/28/toolbar-ask/ =>Toolbar.Ask
https://www.nicolascoolman.com/fr/pup-optional-dllfilesfixer/ =>PUP.Optional.DllFilesFixer
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Heuristic
FirewallRaz
EmptyPrefetch
EmptyTemp
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [0] [PID.780] =>.AMD
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [0] [PID.1068] =>.AMD
[MD5.0B52C2913E69DB56CA9B0B415B296E04] - (.Advanced Micro Devices, Inc. - AMD Fuel Service.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064] [PID.1748] =>.Advanced Micro Devices, Inc.
[MD5.E14C3987163EF4CA102B952624695C84] - (.AMD - HydraDM.) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120] [PID.1816] =>.AMD
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.staticimgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://akz.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://anx.tb.ask.com =>Toolbar.Ask
G0 - GCSP: Preferences [User Data\Default][HomePage] http://hp.myway.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://live.tb.ask.com =>Toolbar.Ask
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ttdetect.staticimgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.ssl.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fb-s-a-a.akamaihd.net =>.Superfluous.AkamaiHD
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.facebook.com =>.Facebook
G2 - GCE: Preference [User Data\Default] [ibopmonjjnejkdbimjbgdbekmfpogken] EasyPDFCombine =>.Superfluous.MindSpark
G2 - GCE: Preference [User Data\Default] [kohoehgoafblafjinhplmhcbphgaaobc] InternetSpeedTracker =>.Superfluous.MindSpark
G2 - GCE: Preference [User Data\Default] [maoffpmgdffbgbncadalkhfhmlfihkgk] DownSpeedTest =>.Superfluous.MindSpark
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
HKCU\SOFTWARE\7866aac5b5fbfab6 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\DLL-Files.com =>PUP.Optional.DllFilesFixer
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL-Files.com Client =>PUP.Optional.DllFilesFixer
https://nicolascoolman.eu/2017/02/28/toolbar-ask/ =>Toolbar.Ask
https://www.nicolascoolman.com/fr/pup-optional-dllfilesfixer/ =>PUP.Optional.DllFilesFixer
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Heuristic