cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix



R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.VideoLAN - VLC media player Web Plugin 2.1.3.) (No version) -- (.not file.) =>.VideoLAN
O3 - Toolbar: Snagit - [HKLM]{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} . (.TechSmith Corporation - Snagit Add-in for Internet Explorer.) -- C:\Program Files\TechSmith\Snagit 10\SnagitIEAddin.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} Orphan key
O4 - HKCU\..\Run: [Platinum Hide IP] C:\Program Files\PlatinumHideIP\PlatinumHideIP.exe (.not file.)
O4 - HKLM\..\Run: [TeViiRC] . (.TeVii Technology Ltd. - TeVii Remote Control.) -- C:\Windows\TeViiRC.exe
O4 - HKCU\..\Run: [Messenger (Yahoo!)] . (.Yahoo! Inc. - Yahoo! Messenger.) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O4 - HKCU\..\Run: [Platinum Hide IP] C:\Program Files\PlatinumHideIP\PlatinumHideIP.exe (.not file.)
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Users\Win7\Desktop\IDMan\IDMan.exe
O4 - HKCU\..\Run: [Viber] C:\Users\Win7\AppData\Local\Viber\Viber.exe (.not file.)
O4 - HKCU\..\Run: [Tango] . (.Tango Inc. - Tango.) -- C:\Program Files\Tango\Tango.exe
O4 - HKUS\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run: [Platinum Hide IP] C:\Program Files\PlatinumHideIP\PlatinumHideIP.exe (.not file.)
O4 - HKUS\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Users\Win7\Desktop\IDMan\IDMan.exe
O4 - HKUS\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run: [Viber] C:\Users\Win7\AppData\Local\Viber\Viber.exe (.not file.)
O4 - HKUS\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run: [Tango] . (.Tango Inc. - Tango.) -- C:\Program Files\Tango\Tango.exe O4 - HKUS\S-1-5-21-1163517497-134154996-3967426762-1000\..\Run: [Messenger (Yahoo!)] . (.Yahoo! Inc. - Yahoo! Messenger.) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{9FBF811D-B3F7-48ED-924E-49E4C6300D3D}: NameServer = 8.8.8.8,208.67.222.222 =>.Google DNS Redirections
O17 - HKLM\System\CCS\Services\Tcpip\..\{9FBF811D-B3F7-48ED-924E-49E4C6300D3D}: DhcpNameServer = 31.3.252.89 37.220.8.190
O17 - HKLM\System\CS1\Services\Tcpip\..\{9FBF811D-B3F7-48ED-924E-49E4C6300D3D}: NameServer = 8.8.8.8,208.67.222.222 =>.Google DNS Redirections
O17 - HKLM\System\CS1\Services\Tcpip\..\{9FBF811D-B3F7-48ED-924E-49E4C6300D3D}: DhcpNameServer = 31.3.252.89 37.220.8.190
O17 - HKLM\System\CS2\Services\Tcpip\..\{9FBF811D-B3F7-48ED-924E-49E4C6300D3D}: NameServer = 8.8.8.8,208.67.222.222 =>.Google DNS Redirections
O17 - HKLM\System\CS2\Services\Tcpip\..\{9FBF811D-B3F7-48ED-924E-49E4C6300D3D}: DhcpNameServer = 31.3.252.89 37.220.8.190
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 31.3.252.89 37.220.8.190
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
[MD5.00000000000000000000000000000000] [APT] [{12AB4E4B-453E-4B24-9B05-6E49D81400C3}] (...) -- E:\ �?�� ?��?� ??�?���?\Ps Cs3 By Fouadove\Photoshop-fouadove.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{4C1230C1-9113-4275-8C25-A640D61558A4}] (...) -- C:\Users\Win7\Desktop\�?��\ST6UNST.exe (.not file.) [0]
[MD5.0004C876E05272B6B1B3839C15AF77E7] [APT] [{5A6D609E-3EA3-4E9B-BD18-5D3886A4F19C}] (.Tencent.) -- C:\Users\Win7\Downloads\Programs\QQPlayer_Setup_Arabic.exe [30540562] =>Adware.TencentAddressBar
[MD5.00000000000000000000000000000000] [APT] [{C05835A6-EA44-43A4-84B2-C3A78190982B}] (...) -- C:\Users\Win7\Downloads\Folder_Lock_7.2.2_Final\FolderLock_Setup_7.2.2_Final.exe (.not file.) [0]
O41 - Driver: (nwslhebc) . (. - .) - C:\Windows\system32\drivers\nwslhebc.sys (.not file.)
[HKCU\Software\?�??�?????��??�?�?���??�??�???]
[HKCU\Software\Baidu Security]
[HKLM\Software\Tencent] =>Adware.TencentAddressBar
O43 - CFD: 18/09/2014 - 09:28:11 ? - [] ----D C:\Program Files\Baidu Security
O43 - CFD: 22/09/2014 - 11:44:55 ? - [] ----D C:\Program Files\Tencent =>Adware.TencentAddressBar
O43 - CFD: 10/02/2015 - 10:58:39 ? - [] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:53:55 ? - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 22/09/2014 - 11:46:28 ? - [] ----D C:\ProgramData\Tencent =>Adware.TencentAddressBar
O43 - CFD: 18/09/2014 - 09:28:11 ? - [] ----D C:\Users\Win7\AppData\Roaming\Baidu Security
O43 - CFD: 22/09/2014 - 11:46:28 ? - [] ----D C:\Users\Win7\AppData\Roaming\Tencent =>Adware.TencentAddressBar
O43 - CFD: 29/03/2015 - 12:38:10 ? - [] ----D C:\Users\Win7\AppData\Local\Temp
O43 - CFD: 22/09/2014 - 11:45:03 ? - [] ----D C:\Users\Win7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O51 - MPSK:{cd629cee-a3d9-11e4-ac26-50e549f2978c}\AutoRun\command. (.No owner - AutoRun Microsoft.) -- I:\Windows\AutoRun.exe
C:\Users\Win7\AppData\Local\TechSmith\Snagit\DataStore\AppIcons\dvbdream.exe.dvbdream cracked.www.stardvb.com.2.6.0.0.ico =>.Crack,Keygen
C:\Users\Win7\AppData\Local\TechSmith\Snagit\DataStore\AppIcons\dvbdream.exe.dvbdream cracked.www.stardvb.com.2.6.0.0.ico =>.Crack,Keygen
E:\????? ????\UltraISO PE 9.5.2.2836 Keygen\UltraISO PE 9.5.2.2836.exe =>.Crack,Keygen
C:\Program Files\Tencent =>Adware.TencentAddressBar^
C:\ProgramData\Tencent =>Adware.TencentAddressBar^
C:\Users\Win7\AppData\Roaming\Tencent =>Adware.TencentAddressBar^
C:\Users\Win7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>Adware.TencentAddressBar^
C:\Users\Win7\Downloads\Programs\QQPlayer_Setup_Arabic.exe =>Adware.TencentAddressBar^
[HKCU\Software\Tencent] =>Adware.TencentAddressBar^
[HKLM\Software\Tencent] =>Adware.TencentAddressBar^



FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité