cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix


[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1] =>PUA.KMSpico^
[HKLM\Software\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}] =>Toolbar.Ask
C:\Program Files (x86)\GoForFilesUpdater =>P2P.GoforFiles^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUA.KMSpico^
C:\Users\aicha_med\Downloads\Programs\DriverNavigator\Driver Navigator PreCracked 3.4.5.4275 by sayid_eldalam_elghamed.rar =>.Crack,Keygen
C:\Users\aicha_med\Downloads\Programs\DriverNavigator\Driver Navigator PreCracked 3.4.5.4275 by sayid_eldalam_elghamed.rar =>.Crack,Keygen
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (...) -- C:\Windows\System32\Drivers\vga.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O43 - CFD: 07/12/2014 - 12:37:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUA.KMSpico
O43 - CFD: 17/12/2014 - 00:07:59 - [] ----D C:\Program Files (x86)\GoForFilesUpdater =>P2P.GoforFiles
[HKCU\Software\Ӧ�ó����������ɵı���Ӧ�ó���]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
O17 - HKLM\System\CCS\Services\Tcpip\..\{9CD6A17F-025D-4CAF-BB95-27349B243118}: NameServer = 8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{9CD6A17F-025D-4CAF-BB95-27349B243118}: DhcpNameServer = 91.194.254.105 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE7BDB3F-5CD8-4EA6-B0BF-4AA4EA06B3B6}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9CD6A17F-025D-4CAF-BB95-27349B243118}: NameServer = 8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{9CD6A17F-025D-4CAF-BB95-27349B243118}: DhcpNameServer = 91.194.254.105 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{DE7BDB3F-5CD8-4EA6-B0BF-4AA4EA06B3B6}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 91.194.254.105 8.8.8.8
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [CyberGhost] . (.CyberGhost S.R.L. - CyberGhost.) -- C:\Program Files\CyberGhost 5\CyberGhost.exe
O4 - HKCU\..\Run: [BeyluxeMessenger] . (...) -- C:\Program Files (x86)\Beyluxe Messenger\Beyluxe Messenger.exe
O4 - HKUS\S-1-5-21-220074229-665270551-1718882641-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-220074229-665270551-1718882641-1001\..\Run: [Hide ALL IP] C:\Program Files (x86)\Hide ALL IP\HideAllIP.exe (.not file.)
O4 - HKUS\S-1-5-21-220074229-665270551-1718882641-1001\..\Run: [BeyluxeMessenger] . (...) -- C:\Program Files (x86)\Beyluxe Messenger\Beyluxe Messenger.exe
O4 - HKUS\S-1-5-21-220074229-665270551-1718882641-1001\..\Run: [CyberGhost] . (.CyberGhost S.R.L. - CyberGhost.) -- C:\Program Files\CyberGhost 5\CyberGhost.exe
O4 - HKCU\..\Run: [Hide ALL IP] C:\Program Files (x86)\Hide ALL IP\HideAllIP.exe (.not file.)
O4 - GS\Desktop [aicha_med]: AdsFix_Donate.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.paypal.com =>Hijacker.Browsers
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Cl� orpheline
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Cl� orpheline
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17496 (winblue_r5.141121-1500)) -- C:\Windows\SysWOW64\ieframe.dll
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.beyluxe.com



FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité