Format du document : text/plain
Prévisualisation
Script zhpfix
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
G1 - GCS: Preference [User Data\Default] http://www.qone8.com =>Hijacker.Qone8
G0 - GCSP: Preference [User Data\Default][HomePage] http://start.qone8.com =>Hijacker.Qone8
G2 - GCE: Preference [User Data\Default] [pelmeidfhdlhlbjimpabfcbnnojbboma] Quick Start v.3.2.3, (Activé) =>PUP.QuickStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.qone8.com =>Hijacker.Qone8
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.qone8.com =>Hijacker.Qone8
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.qone8.com =>Hijacker.Qone8
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{6D6B212B-2245-4898-8B16-9A11B81FF9E1} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://start.qone8.com =>Hijacker.Qone8
O4 - GS\QuickLaunch [MaXiMe]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://start.qone8.com =>Hijacker.Qone8
O4 - GS\QuickLaunch [MaXiMe]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://start.qone8.com =>Hijacker.Qone8
O4 - GS\TaskBar [MaXiMe]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://start.qone8.com =>Hijacker.Qone8
O4 - GS\Program [MaXiMe]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://start.qone8.com =>Hijacker.Qone8
O4 - GS\SystemTools [MaXiMe]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://start.qone8.com =>Hijacker.Qone8
O4 - GS\Desktop [MaXiMe]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://start.qone8.com =>Hijacker.Qone8
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKLM\..\Run: [Eraser] C:\Program Files (x86)\Eraser\Eraser.exe (.not file.)
O9 - Extra button: &Envoyer � OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office14\ONBTTN~1.dll (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{065CE2D9-F6F8-4713-B17A-B2292A372E7C}] (...) -- C:\Program Files (x86)\Activision\Prototype 2\prototype2.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{258AE22B-EBCD-42E0-8FFE-13E3A2A66333}] (...) -- C:\Program Files (x86)\Dead Island Riptide\Redist\VCRedist\vcredist_x86.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{61BF2AC4-5FB8-4B53-AEEB-C2231C0D9E8B}] (...) -- C:\Users\MaXiMe\Desktop\JEUX\The.Elder.Scrolls.V.Skyrim.AricoVert\Setup The.Elder.Scrolls.V.Skyrim.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C348A28A-51B6-401B-A5A9-4142FDEDD2AD}] (...) -- C:\Program Files (x86)\Steam\bin\SteamService.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{D9EC4348-4BFB-4948-94E3-E64C730260C1}] (...) -- C:\Users\MaXiMe\Downloads\epson374993eu.exe (.not file.) [0]
[HKCU\Software\ChrmTB]
[HKLM\Software\Wow6432Node\Wpm] =>PUP.WpManager
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
O43 - CFD: 05/05/2014 - 20:47:47 - [] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 04/05/2014 - 21:55:36 - [0] ----D C:\Users\MaXiMe\AppData\Roaming\SupTab =>PUP.SupTab
O51 - MPSK:{0d1127b9-fd2b-11e0-9bbc-806e6f6e6963}\AutoRun\command - Clé orpheline
O51 - MPSK:{ef93318b-f2bc-11e1-86ef-14dae9e7bb37}\AutoRun\command. (...) -- F:\PC_Start.exe (.not file.)
[MD5.D24949E5C6EC59F7F8664A657066994D] [WIS][29/04/2014] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\b7fbb.msi [28160] =>Toolbar.Google
HKLM\SOFTWARE\Microsoft\Tracing\KeepVid_RASAPI32 =>PUP.KeepVid
HKLM\SOFTWARE\Microsoft\Tracing\KeepVid_RASMANCS =>PUP.KeepVid
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BetterInstaller_RASAPI32 =>Adware.MegaSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BetterInstaller_RASMANCS =>Adware.MegaSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32 =>Toolbar.Bing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BrightBreezeSA_RASAPI32 =>Adware.SPointer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BrightBreezeSA_RASMANCS =>Adware.SPointer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarInstaller_updater_signed_RASAPI32 =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarInstaller_updater_signed_RASMANCS =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarNotifier_RASAPI32 =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarNotifier_RASMANCS =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\softonic_france_ff_RASMANCS =>Toolbar.Conduit
[HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] (Google Toolbar) =>Toolbar.Google
[HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}] (Google Toolbar Helper) =>Toolbar.Google
[HKLM\Software\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma] =>PUP.QuickStart^
[HKLM\Software\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
C:\Users\MaXiMe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma =>PUP.QuickStart^
C:\ProgramData\WPM =>PUP.WpManager^
C:\Users\MaXiMe\AppData\Roaming\SupTab =>PUP.SupTab^
C:\ProgramData\Partner =>Spyware.Partner
[HKLM\Software\Wow6432Node\Wpm] =>PUP.WpManager^
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab^
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager^
C:\Windows\Installer\b7fbb.msi =>Toolbar.Google^
[HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] (Google Toolbar) =>Toolbar.Google^
[HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}] (Google Toolbar Helper) =>Toolbar.Google^
Emptytemp
Emptyflash
Scortcutfix