cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
McAfee Security Scan Plus v3.8.150.1
[MD5.3D558E2572EDF52FAD098AF2534B4E20] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe [279456] [PID.1068]
M2 - MFEP: RegExtension {e4f94d1e-2f53-401e-8885-681602c0ddd8} . (...) -- C:\Documents and Settings\All Users\Application Data\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
O41 - Driver: ({8ca7f150-5454-4b4c-9537-1b831c71d329}Gt) . (. - .) - C:\WINDOWS\system32\drivers\{8ca7f150-5454-4b4c-9537-1b831c71d329}Gt.sys (.not file.)
O47 - AAKE:Key Export SP - "F:\dwcdx.exe" [Enabled] .(...) -- F:\dwcdx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Administrateur\Bureau\Gbox 2.1B mr imad dz by tatouf barca\gboxx86.exe" [Enabled] .(...) -- C:\Documents and Settings\Administrateur\Bureau\Gbox 2.1B mr imad dz by tatouf barca\gboxx86.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Administrateur\Bureau\HDVB\HDVB.exe" [Enabled] .(...) -- C:\Documents and Settings\Administrateur\Bureau\HDVB\HDVB.exe (.not file.)
O51 - MPSK:{13c3d998-86fe-11e4-a21f-000bcdc46a6c}\AutoRun\command. (...) -- H:\kfqle.exe (.not file.)
O51 - MPSK:{8d36283c-77f9-11e4-a1d3-000bcdc46a6c}\AutoRun\command. (...) -- H:\xnfj.exe (.not file.)
O51 - MPSK:{fddd84be-861f-11e4-a21a-001e101f1c31}\AutoRun\command. (...) -- J:\vmaapi.pif (.not file.)
SS - | Demand 09/04/2014 235696 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
G0 - GCSP: Preference [User Data\Default][HomePage] 457C6C66A9F6740795DF4E3EBC55DCA375C58A240BADA93163AF33721505D1CC
M2 - MFEP: prefs.js [Administrateur - njphpxuf.default\8Jg@Lz.edu] [] BuyNsavuEo v3.64 (..)
M2 - MFEP: prefs.js [Administrateur - njphpxuf.default\{a2bff6ba-8d18-488c-853c-ad9bc29f2482}] [] Vosteran Search v1.0.2 (..)
O42 - Logiciel: HDVB - (...) [HKLM] -- HDVB
O42 - Logiciel: OScam for Windows version 1.20-svn-5691 - (.OneStep.) [HKLM] -- {8242C274-A38F-4D50-A017-A7B30BE40EF0}_is1
O42 - Logiciel: TOP LIVE V3 - (...) [HKLM] -- {1D36379A-0A6A-4C5E-90BC-CE2631BB30A6}_is1
O42 - Logiciel: TV 3L PC version 1.3.1.0 - (.Smart PC Soft, Ltd..) [HKLM] -- {0BBD0F9C-12E5-456A-A6FC-372324F3D082}_is1
[HKCU\Software\OneStep]
O43 - CFD: 07/12/2014 - 02:21:33 - [] ----D C:\Program Files\25 To Life
O43 - CFD: 24/12/2014 - 20:21:16 - [] ----D C:\Program Files\BuyNsavuEo
O43 - CFD: 18/11/2014 - 22:09:20 - [] ----D C:\Program Files\ffplay-xproj
O43 - CFD: 02/12/2014 - 12:42:02 - [] ----D C:\Program Files\HDVB
O43 - CFD: 23/11/2014 - 23:17:31 - [] ----D C:\Program Files\Nilesat Ch For Yassine Start...Tv
O43 - CFD: 24/12/2014 - 20:36:37 - [] ----D C:\Program Files\OScam
O43 - CFD: 25/11/2014 - 01:16:06 - [] ----D C:\Program Files\TOP LIVE V3
O43 - CFD: 25/11/2014 - 01:25:04 - [] ----D C:\Program Files\TV 3L PC
O43 - CFD: 24/12/2014 - 20:21:16 - [] ----D C:\Documents and Settings\All Users\Application Data\2165094154309108476
O43 - CFD: 20/11/2014 - 23:28:19 - [0] ----D C:\Documents and Settings\All Users\Application Data\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 26/11/2014 - 00:24:03 - [] ----D C:\Documents and Settings\Administrateur\Application Data\IDM(2)
O43 - CFD: 02/12/2014 - 12:42:08 - [] ----D C:\Documents and Settings\Administrateur\Menu D�marrer\Programmes\HDVB
O44 - LFC:[MD5.68F0454007DF488EC7AF04060C6131C3] - 22/12/2014 - 01:08:53 ---A- . (.The OpenVPN Project - TAP-Win32 Virtual Network Driver (coLinux).) -- C:\WINDOWS\system32\Drivers\tap0801co.sys [25856]
O47 - AAKE:Key Export SP - "G:\bireau\KsNewcamd\1\Ayoub Marrakchi\KsNewcamd v 1.2.exe" [Enabled] .(..) -- G:\bireau\KsNewcamd\1\Ayoub Marrakchi\KsNewcamd v 1.2.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HDVB\HDVB.exe" [Enabled] .(.-.) -- C:\Program Files\HDVB\HDVB.exe
O51 - MPSK:{1a44f649-6f26-11e4-86b4-806d6172696f}\AutoRun\command. (...) -- C:\fmxtkk.pif
O51 - MPSK:{1a44f64a-6f26-11e4-86b4-806d6172696f}\AutoRun\command. (...) -- D:\tdjici.exe
O51 - MPSK:{7f9704ae-6f27-11e4-9aca-806d6172696f}\AutoRun\command. (...) -- F:\tgwkle.pif
O58 - SDL:31/08/2006 - 02:47:00 ---A- . (.The OpenVPN Project - TAP-Win32 Virtual Network Driver (coLinux).) -- C:\WINDOWS\system32\Drivers\tap0801co.sys [25856]
O64 - Services: CurCS - 20/09/1744 - C:\WINDOWS\system32\drivers\jqhqr.sys (amsint32) .(...) - LEGACY_AMSINT32
O64 - Services: CurCS - 02/10/2013 - C:\WINDOWS\system32\nalserv.exe (NalServ) .(.Nalpeiron Ltd. - LAN Service Build October 2nd, 2013.) - LEGACY_NALSERV
[HKCU\Software\Aasppapmmxkleh]
O43 - CFD: 19/12/2014 - 22:39:41 - [] ----D C:\Documents and Settings\All Users\Application Data\ProductData
O43 - CFD: 20/11/2014 - 23:26:18 - [] ----D C:\Documents and Settings\Administrateur\Application Data\ProductData
MD5.00000000000000000000000000000000] [APT] [At1] (...) -- C:\DOCUME~1\Administrateur\APPLIC~1\WSE_VO~1\UPDATE~1\UPDATE~1.exe (.not file.) [0]
[HKCU\Software\EnterDigital]
[HKCU\Software\Vosteran]
[HKLM\Software\EnterDigital]
[HKLM\Software\InstallCore] =>Adware.InstallCore
O69 - SBI: SearchScopes [HKCU] {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} [DefaultScope] - (Vosteran) - http://Vosteran.com=
[HKLM\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
O39 - APT: At1 - (...) -- C:\WINDOWS\Tasks\At1.job [416]
O51 - MPSK:{01f5ba66-85e5-11e4-a216-000bcdc46a6c}\AutoRun\command. (...) -- H:\AutoRun.exe (.not file.)
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
O3 - Toolbar: ExplorerWnd Helper - [HKLM]{10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Orphan key
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Orphan key
ShortcutFix
FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité