Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.9600.17496 (winblue_r5.141121-1500)) -- C:\Windows\SysWOW64\ieframe.dll
O2 - BHO: VonteeraSafeAds.WordHighlighterBHO [64Bits] - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} . (...) -- mscoree.dll (.not file.) =>Trojan.Vonteera
O4 - GS\QuickLaunch [sameh]: Registry Reviver.lnk . (.ReviverSoft LLC - Registry Reviver.) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe =>PUP.RegistryReviver
O4 - GS\QuickLaunch [sameh]: �Torrent.lnk . (.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [sameh]: �Torrent.lnk . (.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKCU\..\Run: [Messenger (Yahoo!)] . (.Yahoo! Inc. - Yahoo! Messenger.) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-714430725-4008368064-3161557589-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-714430725-4008368064-3161557589-1002\..\Run: [Viber] . (.No owner - Viber.) -- C:\Users\sameh\AppData\Local\Viber\Viber.exe
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{40C14E19-2EBD-41A8-BB8C-C8EB7F93BDA7}: DhcpNameServer = 108.62.115.162 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{40C14E19-2EBD-41A8-BB8C-C8EB7F93BDA7}: DhcpNameServer = 108.62.115.162 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 108.62.115.162 8.8.8.8
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SEARCH~1\SEARCH~1\bin\SPVC64~1.dll (.not file.)
O23 - Service: KMSServerService (KMSServerService) . (.My Digital Life Forums - KMS Server Emulator Service.) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\KMSServerService.exe =>Trojan.AutoKMS
O23 - Service: Service KMSELDI (Service KMSELDI) . (.No owner - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>PUA.KMSpico
O23 - Service: TunMirror (TunMirror) . (.No owner - TunMirror.) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\TunMirror.exe =>Trojan.AutoKMS
[MD5.E3FEA8060978EAB6FA5D40E74DE6308B] [APT] [AutoPico Daily Restart] (...) -- C:\Program Files\KMSpico\AutoPico.exe [1051416] =>PUA.KMSpico
O42 - Logiciel: 4 Elements II - (.WildTangent.) [HKLM][64Bits] -- WTA-c0ea2d41-3639-4e4c-a3fe-a591df428398 =>.WildTangent
O42 - Logiciel: Airport Mania - (.WildTangent.) [HKLM][64Bits] -- WTA-b1a1d1ba-52b0-4901-a0e0-e3fcefceb7ef =>.WildTangent
O42 - Logiciel: Azkend 2: The World Beneath - (.WildTangent.) [HKLM][64Bits] -- WTA-17adf114-628e-4dc9-9d82-6b1e352608e2 =>.WildTangent
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-60027b91-dbcc-45f4-b956-7d3110733f16 =>.WildTangent
O42 - Logiciel: Bounce Symphony - (.WildTangent.) [HKLM][64Bits] -- WTA-a03a3577-4a30-4964-9c1c-328e1f787960 =>.WildTangent
O42 - Logiciel: Build-a-lot - (.WildTangent.) [HKLM][64Bits] -- WTA-7af9f463-4c7f-438e-86a8-ac8d4d043711 =>.WildTangent
O42 - Logiciel: Cradle Of Egypt Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-e0000174-41da-4573-bccf-ff059be2f3e9 =>.WildTangent
O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-0f4b42f9-adab-4579-918d-6c66377b9ef0 =>.WildTangent
O42 - Logiciel: Curse at Twilight - (.WildTangent.) [HKLM][64Bits] -- WTA-5995aea7-6979-4461-9680-ff41b281cfe0 =>.WildTangent
O42 - Logiciel: Delicious: Emily's Childhood Memories Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-39f093a5-04a4-4468-85cb-0826cb9ab4d5 =>.WildTangent
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-a955645d-cf04-4681-aebf-bd21f798e9c2 =>.WildTangent
O42 - Logiciel: Fishdom 3: Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-d187cf03-af7d-4b19-baa8-4dcee0c8531f =>.WildTangent
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-08b67f8d-11f0-40a9-81e9-329f55a7dc00 =>.WildTangent
O42 - Logiciel: House of 1000 Doors: Family Secrets - (.WildTangent.) [HKLM][64Bits] -- WTA-a9b47761-0fa7-4db8-819c-40ff67552383 =>.WildTangent
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-dbe53615-f06a-4ae1-937a-63506a5d688f =>.WildTangent
O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WTA-a3a1394d-7b51-497c-b0c7-a71f9806d1b7 =>.WildTangent
O42 - Logiciel: KMSpico v9.1.3 - (...) [HKLM][64Bits] -- KMSpico_is1 =>PUA.KMSpico
O42 - Logiciel: Luxor Evolved - (.WildTangent.) [HKLM][64Bits] -- WTA-8a82e57a-fafd-42cd-8d5e-ad1186fdd429 =>.WildTangent
O42 - Logiciel: King Oddball - (.WildTangent.) [HKLM][64Bits] -- WTA-48f686b1-5aaa-492b-81cc-7761992ae207 =>.WildTangent
O42 - Logiciel: Mahjongg Dimensions Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-98253a00-6ce5-4a70-972a-7a6a36b593cc =>.WildTangent
O42 - Logiciel: Mystery P.I. - Curious Case of Counterfeit Cove - (.WildTangent.) [HKLM][64Bits] -- WTA-a889adad-f932-423c-8ff0-4adc36d350a4 =>.WildTangent
O42 - Logiciel: Peggle Nights - (.WildTangent.) [HKLM][64Bits] -- WTA-e2aeb7c3-7260-4cd7-9ab9-0478f31d075d =>.WildTangent
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WTA-477763b5-0a4d-4f83-a1f0-920368083a18 =>.WildTangent
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-41a2f65e-24ef-4ad5-8973-606e3ec49dc5 =>.WildTangent
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-ea4fbdea-53f8-4560-bfe0-aa2b4934905a =>.WildTangent
O42 - Logiciel: Tales of Lagoona - (.WildTangent.) [HKLM][64Bits] -- WTA-43c3cccb-c254-497e-861b-1ca322d4fd95 =>.WildTangent
O42 - Logiciel: Registry Reviver - (.ReviverSoft LLC.) [HKLM][64Bits] -- Registry Reviver =>PUP.RegistryReviver
O42 - Logiciel: Roads of Rome 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-3baa75bd-908f-4b02-8cc7-2426123685d4 =>.WildTangent
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: Update Service YourFileDownloader - (.http://www.yourfile-downloader.com.) [HKCU][64Bits] -- Update Service YourFileDownloader =>PUP.YourFileDownloader
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall =>.WildTangent
O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp =>.WildTangent
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKLM\Software\RegistryReviver] =>PUP.RegistryReviver
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
O43 - CFD: 19/10/2014 - 09:45:09 ? - [] ----D C:\ProgramData\RegistryReviver.exe =>PUP.RegistryReviver
O43 - CFD: 20/12/2014 - 10:44:25 ? - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUA.KMSpico
O43 - CFD: 28/01/2015 - 11:31:17 ? - [] ----D C:\Users\sameh\AppData\Roaming\uTorrent =>P2P.�Torrent
O44 - LFC:[MD5.B0E3C38A83916E42ED3040181A7D1E1B] - 09/03/2015 - 04:53:24 ? -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.23DB99CAF58C7696C944BA28E99C45D5] - 09/03/2015 - 05:13:29 ? ---A- . (...) -- C:\Windows\WindowsUpdate.log [258591]
O44 - LFC:[MD5.C7F309968DF23E1F2FA7E3C9E6F39F39] - 09/03/2015 - 04:51:16 ? ---A- . (...) -- C:\Windows\PFRO.log [2256]
O44 - LFC:[MD5.0FAD33DF1AE6203835AF740E104F25F1] - 09/03/2015 - 04:51:59 ? ---A- . (...) -- C:\Windows\setupact.log [978]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/03/2015 - 04:22:15 ? ---A- . (...) -- C:\Windows\setuperr.log [0]
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen-vovan666.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.by.mr.!.hero.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen-vovan666.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.by.mr.!.hero.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.rar.VIR =>.Crack,Keygen
O87 - FAEL: "{BDB8CBF7-0DA1-407D-B4CA-6177AFB4B8C4}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{E74E12EF-1E63-40DE-A8B7-EA92149A7A34}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
SS - | Auto 11/12/2013 1050904 | (Service KMSELDI) . (...) - C:\Program Files\KMSpico\Service_KMS.exe =>PUA.KMSpico
SS - | Auto 20/12/2014 260608 | (KMSServerService) . (.My Digital Life Forums.) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\KMSServerService.exe =>Trojan.AutoKMS
SR - | Auto 20/12/2014 10752 | (TunMirror) . (...) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\TunMirror.exe =>Trojan.AutoKMS
SR - | Auto 20/12/2014 10752 | (TunMirror) . (...) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\TunMirror.exe =>Trojan.AutoKMS
FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.9600.17496 (winblue_r5.141121-1500)) -- C:\Windows\SysWOW64\ieframe.dll
O2 - BHO: VonteeraSafeAds.WordHighlighterBHO [64Bits] - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} . (...) -- mscoree.dll (.not file.) =>Trojan.Vonteera
O4 - GS\QuickLaunch [sameh]: Registry Reviver.lnk . (.ReviverSoft LLC - Registry Reviver.) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe =>PUP.RegistryReviver
O4 - GS\QuickLaunch [sameh]: �Torrent.lnk . (.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [sameh]: �Torrent.lnk . (.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKCU\..\Run: [Messenger (Yahoo!)] . (.Yahoo! Inc. - Yahoo! Messenger.) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-714430725-4008368064-3161557589-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-714430725-4008368064-3161557589-1002\..\Run: [Viber] . (.No owner - Viber.) -- C:\Users\sameh\AppData\Local\Viber\Viber.exe
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{40C14E19-2EBD-41A8-BB8C-C8EB7F93BDA7}: DhcpNameServer = 108.62.115.162 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{40C14E19-2EBD-41A8-BB8C-C8EB7F93BDA7}: DhcpNameServer = 108.62.115.162 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 108.62.115.162 8.8.8.8
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SEARCH~1\SEARCH~1\bin\SPVC64~1.dll (.not file.)
O23 - Service: KMSServerService (KMSServerService) . (.My Digital Life Forums - KMS Server Emulator Service.) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\KMSServerService.exe =>Trojan.AutoKMS
O23 - Service: Service KMSELDI (Service KMSELDI) . (.No owner - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>PUA.KMSpico
O23 - Service: TunMirror (TunMirror) . (.No owner - TunMirror.) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\TunMirror.exe =>Trojan.AutoKMS
[MD5.E3FEA8060978EAB6FA5D40E74DE6308B] [APT] [AutoPico Daily Restart] (...) -- C:\Program Files\KMSpico\AutoPico.exe [1051416] =>PUA.KMSpico
O42 - Logiciel: 4 Elements II - (.WildTangent.) [HKLM][64Bits] -- WTA-c0ea2d41-3639-4e4c-a3fe-a591df428398 =>.WildTangent
O42 - Logiciel: Airport Mania - (.WildTangent.) [HKLM][64Bits] -- WTA-b1a1d1ba-52b0-4901-a0e0-e3fcefceb7ef =>.WildTangent
O42 - Logiciel: Azkend 2: The World Beneath - (.WildTangent.) [HKLM][64Bits] -- WTA-17adf114-628e-4dc9-9d82-6b1e352608e2 =>.WildTangent
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-60027b91-dbcc-45f4-b956-7d3110733f16 =>.WildTangent
O42 - Logiciel: Bounce Symphony - (.WildTangent.) [HKLM][64Bits] -- WTA-a03a3577-4a30-4964-9c1c-328e1f787960 =>.WildTangent
O42 - Logiciel: Build-a-lot - (.WildTangent.) [HKLM][64Bits] -- WTA-7af9f463-4c7f-438e-86a8-ac8d4d043711 =>.WildTangent
O42 - Logiciel: Cradle Of Egypt Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-e0000174-41da-4573-bccf-ff059be2f3e9 =>.WildTangent
O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-0f4b42f9-adab-4579-918d-6c66377b9ef0 =>.WildTangent
O42 - Logiciel: Curse at Twilight - (.WildTangent.) [HKLM][64Bits] -- WTA-5995aea7-6979-4461-9680-ff41b281cfe0 =>.WildTangent
O42 - Logiciel: Delicious: Emily's Childhood Memories Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-39f093a5-04a4-4468-85cb-0826cb9ab4d5 =>.WildTangent
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-a955645d-cf04-4681-aebf-bd21f798e9c2 =>.WildTangent
O42 - Logiciel: Fishdom 3: Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-d187cf03-af7d-4b19-baa8-4dcee0c8531f =>.WildTangent
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-08b67f8d-11f0-40a9-81e9-329f55a7dc00 =>.WildTangent
O42 - Logiciel: House of 1000 Doors: Family Secrets - (.WildTangent.) [HKLM][64Bits] -- WTA-a9b47761-0fa7-4db8-819c-40ff67552383 =>.WildTangent
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-dbe53615-f06a-4ae1-937a-63506a5d688f =>.WildTangent
O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WTA-a3a1394d-7b51-497c-b0c7-a71f9806d1b7 =>.WildTangent
O42 - Logiciel: KMSpico v9.1.3 - (...) [HKLM][64Bits] -- KMSpico_is1 =>PUA.KMSpico
O42 - Logiciel: Luxor Evolved - (.WildTangent.) [HKLM][64Bits] -- WTA-8a82e57a-fafd-42cd-8d5e-ad1186fdd429 =>.WildTangent
O42 - Logiciel: King Oddball - (.WildTangent.) [HKLM][64Bits] -- WTA-48f686b1-5aaa-492b-81cc-7761992ae207 =>.WildTangent
O42 - Logiciel: Mahjongg Dimensions Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-98253a00-6ce5-4a70-972a-7a6a36b593cc =>.WildTangent
O42 - Logiciel: Mystery P.I. - Curious Case of Counterfeit Cove - (.WildTangent.) [HKLM][64Bits] -- WTA-a889adad-f932-423c-8ff0-4adc36d350a4 =>.WildTangent
O42 - Logiciel: Peggle Nights - (.WildTangent.) [HKLM][64Bits] -- WTA-e2aeb7c3-7260-4cd7-9ab9-0478f31d075d =>.WildTangent
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WTA-477763b5-0a4d-4f83-a1f0-920368083a18 =>.WildTangent
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-41a2f65e-24ef-4ad5-8973-606e3ec49dc5 =>.WildTangent
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-ea4fbdea-53f8-4560-bfe0-aa2b4934905a =>.WildTangent
O42 - Logiciel: Tales of Lagoona - (.WildTangent.) [HKLM][64Bits] -- WTA-43c3cccb-c254-497e-861b-1ca322d4fd95 =>.WildTangent
O42 - Logiciel: Registry Reviver - (.ReviverSoft LLC.) [HKLM][64Bits] -- Registry Reviver =>PUP.RegistryReviver
O42 - Logiciel: Roads of Rome 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-3baa75bd-908f-4b02-8cc7-2426123685d4 =>.WildTangent
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: Update Service YourFileDownloader - (.http://www.yourfile-downloader.com.) [HKCU][64Bits] -- Update Service YourFileDownloader =>PUP.YourFileDownloader
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall =>.WildTangent
O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp =>.WildTangent
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKLM\Software\RegistryReviver] =>PUP.RegistryReviver
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
O43 - CFD: 19/10/2014 - 09:45:09 ? - [] ----D C:\ProgramData\RegistryReviver.exe =>PUP.RegistryReviver
O43 - CFD: 20/12/2014 - 10:44:25 ? - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUA.KMSpico
O43 - CFD: 28/01/2015 - 11:31:17 ? - [] ----D C:\Users\sameh\AppData\Roaming\uTorrent =>P2P.�Torrent
O44 - LFC:[MD5.B0E3C38A83916E42ED3040181A7D1E1B] - 09/03/2015 - 04:53:24 ? -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.23DB99CAF58C7696C944BA28E99C45D5] - 09/03/2015 - 05:13:29 ? ---A- . (...) -- C:\Windows\WindowsUpdate.log [258591]
O44 - LFC:[MD5.C7F309968DF23E1F2FA7E3C9E6F39F39] - 09/03/2015 - 04:51:16 ? ---A- . (...) -- C:\Windows\PFRO.log [2256]
O44 - LFC:[MD5.0FAD33DF1AE6203835AF740E104F25F1] - 09/03/2015 - 04:51:59 ? ---A- . (...) -- C:\Windows\setupact.log [978]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/03/2015 - 04:22:15 ? ---A- . (...) -- C:\Windows\setuperr.log [0]
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen-vovan666.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.by.mr.!.hero.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen-vovan666.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.by.mr.!.hero.rar.VIR =>.Crack,Keygen
C:\Users\sameh\AppData\Roaming\ZHP\Quarantine\keygen.rar.VIR =>.Crack,Keygen
O87 - FAEL: "{BDB8CBF7-0DA1-407D-B4CA-6177AFB4B8C4}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{E74E12EF-1E63-40DE-A8B7-EA92149A7A34}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - �Torrent.) -- C:\Users\sameh\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
SS - | Auto 11/12/2013 1050904 | (Service KMSELDI) . (...) - C:\Program Files\KMSpico\Service_KMS.exe =>PUA.KMSpico
SS - | Auto 20/12/2014 260608 | (KMSServerService) . (.My Digital Life Forums.) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\KMSServerService.exe =>Trojan.AutoKMS
SR - | Auto 20/12/2014 10752 | (TunMirror) . (...) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\TunMirror.exe =>Trojan.AutoKMS
SR - | Auto 20/12/2014 10752 | (TunMirror) . (...) - C:\Users\sameh\Downloads\Compressed\KMSAuto Easy 1.06.V6 (Downloadsyard.blogspot.com)\TunMirror.exe =>Trojan.AutoKMS
FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore