cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
SysRestore
O2 - BHO: MSS+ Identifier [64Bits] - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} . (.McAfee, Inc. - Quick Browser Identifier for MSS+ Tool.) -- C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
[MD5.00000000000000000000000000000000] [APT] [{01E0A0BD-AC19-4188-B13E-E3FCF4804A31}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{3A60F5AC-B79F-44A3-B063-8031FF05422E}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{467FB8C2-4801-4B4A-9986-878B6876CBDE}] (...) -- E:\splash.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{4A7A1673-B539-4624-9E18-A5FAC820104F}] (...) -- C:\Users\Flavien\Downloads\Smart+Moving+Mod+Installer.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{5115ECB7-6394-4AFC-A91F-8CA6D0800BB1}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{71FFCACC-3A0B-4881-BF1F-FFB150499AD6}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{7A9B3708-2EF7-4981-A12F-DE30F572151E}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{9A2C1F49-A5AA-427F-9B1A-F97EF9DB8EE4}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{9AD960BD-2E17-45B8-9F2A-4408E26000BC}] (...) -- C:\Users\Flavien\Desktop\bureau\jeux\Age Of Empires 2\age2upa.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{9EC17901-B7E0-412B-BA53-4A51760E90E0}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A904D7F9-8596-46E1-BEC2-D8E8094206E6}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{BBDF2A38-BFA6-49FA-82D0-4974F3346D78}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{CA4E4C4D-928A-4234-B5D3-44845D8A9546}] (...) -- E:\splash.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{D754DD9F-6565-4412-AFAB-92338C1144B6}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{DFBC3FF8-11D4-45BA-B8D6-19E8132B942A}] (...) -- C:\Users\Flavien\Desktop\open office\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{E8576BC2-8FD5-405B-90CD-4A23ACDE8B04}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EE61A1BD-A9C6-4654-8F19-207F9324F22F}] (...) -- C:\Users\Flavien\Desktop\bureau\fatelow-drm3.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EF22D2C5-CCA2-4640-A90B-5339AEB4F41C}] (...) -- C:\Users\Flavien\Desktop\bureau\jeux\Yu-Gi-Oh Joey The Passion\All Cards - UNLOCKER\AllCards.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F4B74416-B226-4D96-B0DF-0115F1B62837}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{FC1A65D0-1416-43B0-8B25-E9893BEB839E}] (...) -- C:\Users\Flavien\Desktop\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool\Eternity Warriors 3 Hack Tool.exe (.not file.) [0]
O41 - Driver: (ayxxemcc) . (. - .) - C:\Windows\system32\drivers\ayxxemcc.sys (.not file.)
O41 - Driver: (bgsfietg) . (. - .) - C:\Windows\system32\drivers\bgsfietg.sys (.not file.)
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
[HKCU\Software\IncrediMail]
[HKLM\Software\Wow6432Node\IncrediMail]
O43 - CFD: 12/12/2011 - 19:39:26 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 10/06/2014 - 17:10:36 - [] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 26/04/2013 - 14:16:34 - [] ----D C:\Users\Flavien\AppData\Local\messengerdusexe
O43 - CFD: 24/10/2013 - 18:49:21 - [] ----D C:\Users\Flavien\AppData\Local\rencontreshard
O51 - MPSK:{e2c9ef56-d51e-11e2-b60d-e0699586e8bd}\AutoRun\command. (...) -- F:\HPLauncher.exe (.not file.)
O61 - LFC: 13/09/2014 - 20:56:57 ---A- . (...) -- C:\Users\Flavien\AppData\Local\Temp\nsr51F8.tmp\aminsis.dll [581120]
SS - | Demand 09/04/2014 289256 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
G1 - GCS: Preference [User Data\Default] http://dts.search.ask.com
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
[HKCU\Software\Rencontres Hard]
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\Flavien\AppData\Local\Torch\Application\torch.exe" http://www.delta-homes.com
O2 - BHO: MediaWatchV1home432 [64Bits] - {1637dee4-f76a-4856-aa81-75b451423e6c} . (...) -- C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home432\ie\MediaWatchV1home432.dll (.not file.)
O2 - BHO: RichMediaViewV1release27 [64Bits] - {91e167b0-dbf4-4e55-b09a-d06a631ea00a} . (...) -- C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release27\ie\RichMediaViewV1release27.dll (.not file.)
O2 - BHO: MediaBuzzV1mode462 [64Bits] - {959bae1a-bb08-4bd3-b4cb-e10f8864db38} . (...) -- C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode462\ie\MediaBuzzV1mode462.dll (.not file.)
O2 - BHO: Movies Toolbar (Dist. by Koyote-Lab, Inc.) [64Bits] - {e5d4f4fd-a039-4670-8354-633c30a5f54e} Cl� orpheline
O4 - HKCU\..\Run: [Software updater] C:\Users\Flavien\AppData\Roaming\FreeSoftwareUpdater\updater.exe (.not file.)
O4 - HKCU\..\Run: [5cd8f17f4086744065eb0992a09e05a2] C:\Users\Flavien\AppData\Local\Temp\Trojan.exe (.not file.)
O4 - HKCU\..\Run: [LPT System Updater] C:\Users\Flavien\AppData\Local\LPT\srptm.exe (.not file.)
O4 - HKUS\.DEFAULT\..\Run: [SearchProtect] \SearchProtect\bin\cltmng.exe
O4 - HKUS\.DEFAULT\..\Run: [Updater] C:\ProgramData\Updater\Updater.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [SearchProtect] \SearchProtect\bin\cltmng.exe
O4 - HKUS\S-1-5-18\..\Run: [Updater] C:\ProgramData\Updater\Updater.exe (.not file.)
O4 - HKUS\S-1-5-21-1674910282-574591474-925338245-1000\..\Run: [Software updater] C:\Users\Flavien\AppData\Roaming\FreeSoftwareUpdater\updater.exe (.not file.)
O4 - HKUS\S-1-5-21-1674910282-574591474-925338245-1000\..\Run: [5cd8f17f4086744065eb0992a09e05a2] C:\Users\Flavien\AppData\Local\Temp\Trojan.exe (.not file.)
O4 - HKUS\S-1-5-21-1674910282-574591474-925338245-1000\..\Run: [LPT System Updater] C:\Users\Flavien\AppData\Local\LPT\srptm.exe (.not file.)
O36 - AppCertDlls: (x64) . (...) -- c:\program files (x86)\movies toolbar\datamngr\x64\apcrtldr.dll
O36 - AppCertDlls: (x86) . (...) -- c:\program files (x86)\movies toolbar\datamngr\apcrtldr.dll
[MD5.00000000000000000000000000000000] [APT] [Plus-HD-5.0-chromeinstaller] (...) -- C:\Program Files (x86)\Plus-HD-5.0\Plus-HD-5.0-chromeinstaller.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Plus-HD-5.0-codedownloader] (...) -- C:\Program Files (x86)\Plus-HD-5.0\Plus-HD-5.0-codedownloader.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Plus-HD-5.0-enabler] (...) -- C:\Program Files (x86)\Plus-HD-5.0\Plus-HD-5.0-enabler.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Plus-HD-5.0-firefoxinstaller] (...) -- C:\Program Files (x86)\Plus-HD-5.0\Plus-HD-5.0-firefoxinstaller.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Plus-HD-5.0-updater] (...) -- C:\Program Files (x86)\Plus-HD-5.0\Plus-HD-5.0-updater.exe (.not file.) [0]
O39 - APT: Plus-HD-5.0-chromeinstaller - (...) -- C:\Windows\Tasks\Plus-HD-5.0-chromeinstaller.job [1976]
O39 - APT: Plus-HD-5.0-chromeinstaller - (...) -- C:\Windows\System32\Tasks\Plus-HD-5.0-chromeinstaller [1976]
O39 - APT: Plus-HD-5.0-codedownloader - (...) -- C:\Windows\Tasks\Plus-HD-5.0-codedownloader.job [1234]
O39 - APT: Plus-HD-5.0-codedownloader - (...) -- C:\Windows\System32\Tasks\Plus-HD-5.0-codedownloader [1234]
O39 - APT: Plus-HD-5.0-enabler - (...) -- C:\Windows\Tasks\Plus-HD-5.0-enabler.job [1134]
O39 - APT: Plus-HD-5.0-enabler - (...) -- C:\Windows\System32\Tasks\Plus-HD-5.0-enabler [1134]
O39 - APT: Plus-HD-5.0-firefoxinstaller - (...) -- C:\Windows\Tasks\Plus-HD-5.0-firefoxinstaller.job [2108]
O39 - APT: Plus-HD-5.0-firefoxinstaller - (...) -- C:\Windows\System32\Tasks\Plus-HD-5.0-firefoxinstaller [2108]
O39 - APT: Plus-HD-5.0-updater - (...) -- C:\Windows\Tasks\Plus-HD-5.0-updater.job [1332]
O39 - APT: Plus-HD-5.0-updater - (...) -- C:\Windows\System32\Tasks\Plus-HD-5.0-updater [1332]
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {A071D640-978E-4731-9B65-71ADA7566EA2}
O42 - Logiciel: Iminent - (.Iminent.) [HKLM][64Bits] -- {2E895269-25DA-4ECB-AE7B-D701BFCD643B}
O42 - Logiciel: QuickShare - (.Linkury Inc..) [HKLM][64Bits] -- {F0A7F267-45BF-45E8-910A-87A48D4D6B11}
O42 - Logiciel: i-beta.com extension - (.i-beta.com.) [HKLM][64Bits] -- {37BE563C-6020-43A7-BB6C-3BEDE8BFA1BD}
[HKCU\Software\AppDataLow\Software\LyricStar]
[HKCU\Software\AppDataLow\Software\freeven]
[HKCU\Software\AppDataLow\Software\i-beta]
[HKCU\Software\AppDataLow\Software\koyotesoftmoviestoolbarha]
[HKCU\Software\Smartbar]
[HKCU\Software\WNLT]
[HKCU\Software\koyotesoftmoviestoolbarha]
[HKLM\Software\DataMngr]
[HKLM\Software\WNLT]
[HKLM\Software\Wow6432Node\DataMngr]
[HKLM\Software\Wow6432Node\InstUf]
[HKLM\Software\Wow6432Node\Jbz25]
[HKLM\Software\Wow6432Node\MediaBuzzV1mode462]
[HKLM\Software\Wow6432Node\MediaViewV1alpha3389]
[HKLM\Software\Wow6432Node\MediaViewV1alpha6622]
[HKLM\Software\Wow6432Node\MediaViewerV1alpha1018]
[HKLM\Software\Wow6432Node\MediaWatchV1home432]
[HKLM\Software\Wow6432Node\RichMediaViewV1]
[HKLM\Software\Wow6432Node\RichMediaViewV1release27]
[HKLM\Software\Wow6432Node\Totem]
[HKLM\Software\Wow6432Node\freeven]
[HKLM\Software\Wow6432Node\i-beta]
O43 - CFD: 05/10/2013 - 19:08:40 - [] ----D C:\Program Files (x86)\i-beta
O43 - CFD: 03/12/2013 - 17:56:03 - [] ----D C:\Program Files (x86)\SearchProtect345200759
O43 - CFD: 19/04/2012 - 16:33:36 - [] ----D C:\Program Files (x86)\Common Files\Totem Shared
O43 - CFD: 27/10/2011 - 17:08:12 - [] --H-D C:\ProgramData\{1B0B54CA-AA7D-41D3-A84A-29E7C9CB13A2}
O43 - CFD: 23/06/2013 - 16:24:50 - [] --H-D C:\ProgramData\{B49A644A-1076-4A3D-B124-DAA7862F2318}
O45 - LFCP:[MD5.4A7E046CC485FBD2B06E5E16A32DD454] - 13/09/2014 - 14:58:58 ---A- - C:\Windows\Prefetch\DATAMNGRUI.EXE-D2B3D245.pf
O45 - LFCP:[MD5.C2D3D64DE9519F49E6391D4B855EB482] - 13/09/2014 - 14:06:00 ---A- - C:\Windows\Prefetch\DUUQUCRASHHANDLER.EXE-CA3B5323.pf
O45 - LFCP:[MD5.911B8634C9AFD63A66D956FA9E4E0828] - 13/09/2014 - 18:06:00 ---A- - C:\Windows\Prefetch\DUUQUUPDATE.EXE-AAA01EF3.pf
O45 - LFCP:[MD5.23951D222C1F0D2AF858DFDAB29A8149] - 13/09/2014 - 18:34:33 ---A- - C:\Windows\Prefetch\MOVIEMODE.EXE-AD8171C3.pf
O45 - LFCP:[MD5.CA24EDB5E9810833157C49847F4277FD] - 13/09/2014 - 18:34:42 ---A- - C:\Windows\Prefetch\MOVIEMODE64.EXE-32E39175.pf
O45 - LFCP:[MD5.550F74631C9261F05C44F4741C1BC17F] - 13/09/2014 - 18:32:01 ---A- - C:\Windows\Prefetch\PLUS-HD-5.0-CHROMEINSTALLER.E-4DA96648.pf
O45 - LFCP:[MD5.36F16D69511DDD0862CB2EE41E648995] - 13/09/2014 - 18:33:00 ---A- - C:\Windows\Prefetch\PLUS-HD-5.0-CODEDOWNLOADER.EX-AEC7ED06.pf
O45 - LFCP:[MD5.2F608B3EDA95B5CB25B4CED7482C0CCF] - 13/09/2014 - 18:33:00 ---A- - C:\Windows\Prefetch\PLUS-HD-5.0-ENABLER.EXE-C77AEA09.pf
O45 - LFCP:[MD5.491E309AB4B8B4CBCF0E3990A7FF8316] - 13/09/2014 - 18:33:01 ---A- - C:\Windows\Prefetch\PLUS-HD-5.0-FIREFOXINSTALLER.-99DA6111.pf
O45 - LFCP:[MD5.2FCA769191AE2BC4D19FCE87C0B54585] - 13/09/2014 - 18:33:00 ---A- - C:\Windows\Prefetch\PLUS-HD-5.0-UPDATER.EXE-CA35867D.pf
O45 - LFCP:[MD5.FFB931878A5FB1A6579573F3B3095EB7] - 11/09/2014 - 20:24:28 ---A- - C:\Windows\Prefetch\QUICKSHARE.EXE-AB19EBB0.pf
O45 - LFCP:[MD5.A65D879BFED5DF20A3B911E1AE62B4FC] - 13/09/2014 - 14:51:53 ---A- - C:\Windows\Prefetch\WAJAMINTERNETENHANCER.EXE-C89E29FF.pf
O61 - LFC: 13/09/2014 - 20:56:57 ---A- . (...) -- C:\Users\Flavien\AppData\LocalLow\SkwConfig.bin [18688]
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Browser\Application\chrome.exe" http://www.delta-homes.com
O90 - PUC: "046D170AE8791374B95617DA7A65E62A" . (.Boxore Client.) -- C:\Windows\Installer\{A071D640-978E-4731-9B65-71ADA7566EA2}\boxore.ico
O90 - PUC: "098CCE33084C42149BB5AB630E521B02" . (.FrameFox Extensions 1.0.7.0.) -- C:\Windows\Installer\{33ECC890-C480-4124-B95B-BA36E025B120}\FrameFox.ico
[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][20/09/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\18039c.msi [45056]
[MD5.54D2F6EC72B0A9F8F85E07137F6D098A] [WIS][11/10/2011] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.6.) -- C:\Windows\Installer\28039e.msi [3552768]
[MD5.0FD2EF6954C43CE4D2C1E93825355AFB] [WIS][11/10/2011] (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\2803a4.msi [3027968]
[MD5.5FF2B0F7835519063800D9F2DB535131] [WIS][22/08/2013] (.QwertyBox Team - FrameFox Extensions 1.0.7.0 Setup.) -- C:\Windows\Installer\385f1.msi [417792]
[MD5.9846A68EDEA66EEA77114641473E7F34] [WIS][12/12/2012] (.Iminent - Iminent.) -- C:\Windows\Installer\474515a.msi [10547200]
[MD5.E6A476329CDC652B02404453D1A4314D] [WIS][18/02/2013] (.QwertyBox Team - FrameFox Extensions 1.0.100.0 Setup.) -- C:\Windows\Installer\560de06.msi [688128]
[MD5.6820CCBE4FA3B90C13D02D8A172B4B91] [WIS][13/12/2012] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\5b581.msi [1912832]
[MD5.596BF95BC90C6120F925FF2BA0ECA204] [WIS][24/06/2014] (.Linkury Inc. - QuickShare Widget.) -- C:\Windows\Installer\90d5a58.msi [10141696]
[MD5.368378DB09895B7A5B9189B68AA99974] [WIS][13/02/2013] (.Aedge Performance BCN - Fissa.) -- C:\Windows\Installer\c1b1fd.msi [1290240]
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS
HKLM\SOFTWARE\Microsoft\Tracing\InstTracker_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\InstTracker_RASMANCS
HKLM\SOFTWARE\Microsoft\Tracing\MovieMode64_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\MovieMode64_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\eorezo_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\eorezo_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExtensionUpdaterService_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExtensionUpdaterService_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FaceTheme FR_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FaceTheme FR_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_0711-8bae1e11_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_0711-8bae1e11_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup{1_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup{1_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MovieModeService_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MovieModeService_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MovieMode_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MovieMode_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PricePeepInstaller-Adknowledge_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PricePeepInstaller-Adknowledge_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SweetIM Francia_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SweetIM Francia_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VAFPlayer_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VAFPlayer_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VirtuaGirl2_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VirtuaGirl2_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VirtuaGirl_Downloader_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\VirtuaGirl_Downloader_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-0A30_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-0A30_RASMANCS
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1637DEE4-F76A-4856-AA81-75B451423E6C}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{91E167B0-DBF4-4E55-B09A-D06A631EA00A}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{959BAE1A-BB08-4BD3-B4CB-E10F8864DB38}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E5D4F4FD-A039-4670-8354-633C30A5F54E}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A071D640-978E-4731-9B65-71ADA7566EA2}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2E895269-25DA-4ECB-AE7B-D701BFCD643B}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F0A7F267-45BF-45E8-910A-87A48D4D6B11}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{37BE563C-6020-43A7-BB6C-3BEDE8BFA1BD}]
[HKLM\Software\Classes\.bk1]
[HKLM\Software\Classes\.bk2]
[HKLM\Software\Classes\.bk3]
[HKLM\Software\Classes\.vgirl]
[HKLM\Software\Classes\vg.document]
[HKLM\Software\DataMngr]
[HKLM\Software\Wow6432Node\DataMngr]
[HKLM\Software\Wow6432Node\InstUf]
[HKLM\Software\Wow6432Node\Jbz25]
[HKLM\Software\Wow6432Node\Totem]
[HKCU\Software\WNLT]
[HKLM\Software\WNLT]
[HKLM\Software\Classes\Installer\Features\046D170AE8791374B95617DA7A65E62A]
[HKLM\Software\Classes\Installer\Products\046D170AE8791374B95617DA7A65E62A]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\046D170AE8791374B95617DA7A65E62A]
[HKLM\Software\Wow6432Node\Classes\Installer\Features\046D170AE8791374B95617DA7A65E62A]
[HKLM\Software\Wow6432Node\Classes\Installer\Products\046D170AE8791374B95617DA7A65E62A]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A071D640-978E-4731-9B65-71ADA7566EA2}]
[HKCU\Software\AppDataLow\Software\LyricStar]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\MixiDJ chrome Toolbar]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011431152}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536]
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Software updater
C:\Program Files (x86)\i-beta
C:\Program Files (x86)\SearchProtect345200759
C:\Program Files (x86)\Common Files\Totem Shared
C:\ProgramData\{B49A644A-1076-4A3D-B124-DAA7862F2318}
O4 - HKUS\.DEFAULT\..\Run: [SearchProtect] \SearchProtect\bin\cltmng.exe
O4 - HKUS\S-1-5-18\..\Run: [SearchProtect] \SearchProtect\bin\cltmng.exe
C:\Windows\Tasks\Plus-HD-5.0-chromeinstaller.job
C:\Windows\System32\Tasks\Plus-HD-5.0-chromeinstaller
C:\Windows\Tasks\Plus-HD-5.0-codedownloader.job
C:\Windows\System32\Tasks\Plus-HD-5.0-codedownloader
C:\Windows\Tasks\Plus-HD-5.0-enabler.job
C:\Windows\System32\Tasks\Plus-HD-5.0-enabler
C:\Windows\Tasks\Plus-HD-5.0-firefoxinstaller.job
C:\Windows\System32\Tasks\Plus-HD-5.0-firefoxinstaller
C:\Windows\Tasks\Plus-HD-5.0-updater.job
C:\Windows\System32\Tasks\Plus-HD-5.0-updater
[HKCU\Software\AppDataLow\Software\freeven]
[HKCU\Software\AppDataLow\Software\i-beta]
[HKCU\Software\AppDataLow\Software\koyotesoftmoviestoolbarha]
[HKCU\Software\Smartbar]
[HKCU\Software\koyotesoftmoviestoolbarha]
[HKLM\Software\Wow6432Node\MediaBuzzV1mode462]
[HKLM\Software\Wow6432Node\MediaViewV1alpha3389]
[HKLM\Software\Wow6432Node\MediaViewV1alpha6622]
[HKLM\Software\Wow6432Node\MediaWatchV1home432]
[HKLM\Software\Wow6432Node\RichMediaViewV1]
[HKLM\Software\Wow6432Node\RichMediaViewV1release27]
[HKLM\Software\Wow6432Node\freeven]
[HKLM\Software\Wow6432Node\i-beta]
C:\Windows\Installer\18039c.msi
C:\Windows\Installer\28039e.msi
C:\Windows\Installer\2803a4.msi
C:\Windows\Installer\385f1.msi
C:\Windows\Installer\474515a.msi
C:\Windows\Installer\560de06.msi
C:\Windows\Installer\5b581.msi
C:\Windows\Installer\90d5a58.msi
C:\Windows\Installer\c1b1fd.msi
EmptyCLSID
EmptyFlash
FirewallRAZ
EmptyTemp

Publicité


Signaler le contenu de ce document

Publicité