cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix


Lignes indésirables :
[MD5.00000000000000000000000000000000] [APT] [OptimizerPro1UpdaterTask{0C040BF7-5AAE-4565-B1F2-2BC226C1DD27}] (...) -- C:\ProgramData\Premium\OptimizerPro1\OptimizerPro1.exe (.not file.) [0] =>PUP.OptimizerPro
O39 - APT: OptimizerPro1UpdaterTask{0C040BF7-5AAE-4565-B1F2-2BC226C1DD27} - (...) -- C:\Windows\Tasks\OptimizerPro1UpdaterTask{0C040BF7-5AAE-4565-B1F2-2BC226C1DD27}.job [416] =>PUP.OptimizerPro
O39 - APT: OptimizerPro1UpdaterTask{0C040BF7-5AAE-4565-B1F2-2BC226C1DD27} - (...) -- C:\Windows\System32\Tasks\OptimizerPro1UpdaterTask{0C040BF7-5AAE-4565-B1F2-2BC226C1DD27} [416] =>PUP.OptimizerPro
[HKCU\Software\DM] => Infection PUP (PUP.BearShare)
O43 - CFD: 29/04/2015 - 12:11:48 - [0] ----D C:\ProgramData\rvlkl =>Keylogger.Logixoft
O44 - LFC:[MD5.8646446E62803D32897F9D39A17B916C] - 16/05/2015 - 21:13:07 ---A- . (...) -- C:\Windows\AutoKMS.log [344424] =>Hacktool.AutoKMS
[HKCU\Software\DM] =>PUP.BearShare
C:\ProgramData\rvlkl =>Keylogger.Logixoft^
C:\Windows\Tasks\OptimizerPro1UpdaterTask{0C040BF7-5AAE-4565-B1F2-2BC226C1DD27}.job =>PUP.OptimizerPro^
C:\Windows\System32\Tasks\OptimizerPro1UpdaterTask{0C040BF7-5AAE-4565-B1F2-2BC226C1DD27} =>PUP.OptimizerPro^
C:\Windows\AutoKMS.exe =>Trojan.Keygen
M2 - MFEP: Extension [HOAREAU - 0th4vx0y.default-1386525206938] {e411bb40-b04c-11d8-92e7-00d09e0179f2}.xpi
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files\Microsoft\BingBar\BingExt.dll" (.not file.)
O3 - Toolbar: Bing Bar - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation. - Extensions du client Bing.) -- C:\Program Files\Microsoft\BingBar\BingExt.dll
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {449CE12D-E2C7-4B97-B19E-55D163EA9435}
O42 - Logiciel: Search-Results Toolbar - (.APN LLC.) [HKLM] -- koyotesofttoolbarnew
[HKCU\Software\AppDataLow\Software\koyotesofttoolbarnew]
O43 - CFD: 26/08/2014 - 13:29:56 - [0] ----D C:\Users\HOAREAU\AppData\Local\CRE
O90 - PUC: "D21EC9447C2E79B41BE9551D36AE4953" . (.Bing Bar.) -- C:\Windows\Installer\{449CE12D-E2C7-4B97-B19E-55D163EA9435}\icon_installer_ico
[MD5.2A0E9057782FFA737336581A3F27FF89] [WIS][01/10/2013] (.Microsoft Corporation - Bing Bar.) -- C:\Windows\Installer\85abfe.msi [990208]
[HKCR\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}] (Bing Bar)
[HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] (Bing Bar Helper)
SS - | Demand 01/04/2011 183560 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files\Microsoft\BingBar\BBSvc.exe
SR - | Auto 28/03/2011 249648 | (SeaPort) . (.Microsoft Corporation.) - C:\Program Files\Microsoft\BingBar\SeaPort.exe
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{449CE12D-E2C7-4B97-B19E-55D163EA9435}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\koyotesofttoolbarnew]
[HKCU\Software\AppDataLow\Software\koyotesofttoolbarnew]
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{8dcb7100-df86-4384-8842-8fa844297b3f}
C:\Windows\Installer\85abfe.msi
[HKCR\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}] (Bing Bar)
[HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] (Bing Bar Helper)

Lignes superflues ou inutiles :
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000Core] (.Facebook Inc..) -- C:\Users\HOAREAU\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000UA] (.Facebook Inc..) -- C:\Users\HOAREAU\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000Core - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000Core.job [914] => Facebook Update Task User
O39 - APT: FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000Core - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000Core [914] => Facebook Update Task User
O39 - APT: FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000UA - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000UA.job [936] => Facebook Update Task User
O39 - APT: FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000UA - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-177455182-591907264-3425776259-1000UA [936] => Facebook Update Task User
[HKCU\Software\MLSync] => MLSync
O51 - MPSK:{63f2a4d4-36e0-11e2-beb4-c86000a3d2b7}\AutoRun\command. (...) -- I:\LGAutoRun.exe (.not file.) => Fichier absent

Lignes d'optimisation du démarrage :
OPT:O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
OPT:O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
OPT:O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
[HKLM\Software\BrowserChoice]
OPT:SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe

EmptyClsid
Proxyfix
FirewallRaz
ShortcutFix
emptytemp
emptyflash


Publicité


Signaler le contenu de ce document

Publicité