cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [Qsocial] C:\Program Files (x86)\QSocial\" /auto
O4 - HKCU\..\Run: [Qsocial] C:\Program Files (x86)\QSocial\QSocial.exe (.not file.)
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe (.not file.)
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [Qsocial] C:\Program Files (x86)\QSocial\QSocial.exe (.not file.)
O4 - HKCU\..\Run: [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe (.not file.)
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O23 - Service: Service KMSELDI (Service KMSELDI) . (.Pas de propriétaire - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>PUA.KMSpico
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
[MD5.955BFF0EDE2A2F631CB76FF190CB7157] [APT] [AutoPico Daily Restart] (...) -- C:\Program Files\KMSpico\AutoPico.exe [974016] =>PUA.KMSpico
[HKCU\Software\HighDefAction] =>PUP.CrossRider
[HKCU\Software\YorkNewCin] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\YorkNewCin] =>PUP.CrossRider
O45 - LFCP:[MD5.610AFD4A228165FA2D308FF0C5A91E47] - 16/05/2015 - 14:50:48 ---A- - C:\Windows\Prefetch\SECOH-QAD.EXE-1841CCFD.pf =>PUA.KMSpico
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O51 - MPSK:{8081d6fd-f840-11e4-827b-c01885c8407c}\AutoRun\command. (...) -- D:\AutoRun.exe (.not file.)
O51 - MPSK:{8dc6fdb6-c678-11e4-8250-7845c4b388dc}\AutoRun\command. (...) -- D:\AutoRun.exe (.not file.)
O51 - MPSK:{92710727-eb6c-11e4-8272-c01885c8407c}\AutoRun\command. (...) -- D:\AutoRun.exe (.not file.)
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\Quarantine.exe [606208]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\TDL4.bat [1192]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\ask.bat [21096]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\chrome.bat [13832]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\delfolders.bat [1771]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\ev_clear.bat [252]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\firefox.bat [153581]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\get.bat [17723]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\iexplore.bat [30974]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\medfos.bat [198]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\misc.bat [85320]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\mws.bat [9937]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\prelim.bat [34603]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\runvalues.bat [7796]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\searchlnk.bat [9459]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (...) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\surfvox.bat [1162]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (.Microsoft Corporation.) -- C:\Users\ali-bassi\AppData\Local\Temp\is-BDJH3.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (.Microsoft Corporation.) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\files\dosdev.exe [6656]
O61 - LFC: 16/05/2015 - 23:19:12 ---A- . (.Tweaking.com.) -- C:\Users\ali-bassi\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\TweakingRegistryBackup.exe [1406208]
C:\Users\ali-bassi\Downloads\Compressed\Automation_keygen.zip =>.Crack,Keygen
C:\Users\ali-bassi\Downloads\Compressed\Automation_keygen.zip =>.Crack,Keygen
[MD5.2202799FB109A7BA0879E3BF09070A55] [SPRF][21/01/2015] (...) -- C:\Users\ali-bassi\Desktop\MegaDownloader.by abo hanen.exe [2111543]
[HKCR\CLSID\{039603a7-32bf-4f39-b024-bec67a4751c3}] (bestadblocker) =>PUP.Adblocker
[HKCR\CLSID\{89b80e73-91b3-4b42-b0cb-64677cb540a2}] (SalePlus) =>PUP.SalePlus
[HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI] =>PUA.KMSpico^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1] =>PUA.KMSpico^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2578}] =>Adware.Bandoo^
C:\Program Files\KMSpico\AutoPico.exe =>PUA.KMSpico^
[HKCU\Software\HighDefAction] =>PUP.CrossRider^
[HKCU\Software\YorkNewCin] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\YorkNewCin] =>PUP.CrossRider^
[HKLM\Software\YorkNewCin] =>PUP.CrossRider^
[HKCR\CLSID\{039603a7-32bf-4f39-b024-bec67a4751c3}] (bestadblocker) =>PUP.Adblocker^
[HKCR\CLSID\{89b80e73-91b3-4b42-b0cb-64677cb540a2}] (SalePlus) =>PUP.SalePlus^


FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité