cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation


Script ZHPFix

[HKLM\SYSTEM\CurrentControlSet\Services\mglupdate) (mglupdate] =>PUP.Maxiget^
C:\Program Files (x86)\MaxiGet Software Manager =>PUP.Maxiget^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxiGet Software Manager =>PUP.Maxiget^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application^
C:\Windows\Tasks\MaxigetUpdaterTaskMachineCore.job =>PUP.Maxiget^
C:\Windows\System32\Tasks\MaxigetUpdaterTaskMachineCore =>PUP.Maxiget^
C:\Windows\Tasks\MaxigetUpdaterTaskMachineUA.job =>PUP.Maxiget^
C:\Windows\System32\Tasks\MaxigetUpdaterTaskMachineUA =>PUP.Maxiget^
O4 - HKUS\.DEFAULT\..\Run: [MaxigetMasterUpdate] . (...) -- C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Maxiget\Master\Updater\MasterUpdater.exe =>PUP.Maxiget
SS - | Auto 22/07/1658 0 | (mglupdate) . (...) - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe =>PUP.Maxiget
SS - | Demand 22/07/1658 0 | (mglupdatem) . (...) - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe =>PUP.Maxiget
O45 - LFCP:[MD5.35B7C8465DCEE70A23676A173305F91C] - 06/06/2015 - 21:40:44 ---A- - C:\Windows\Prefetch\AMT_OURSURFING.EXE-1F4AD0EE.pf =>Hijacker.OurSurfing
O45 - LFCP:[MD5.24D2C1D38CDD2D8E3C823F4E7115C204] - 28/05/2015 - 09:12:35 ---A- - C:\Windows\Prefetch\DESKTOPICONTOY.EXE-0C950DAB.pf =>Adware.ADON
O45 - LFCP:[MD5.12DE5A2F4E8531257116E961255953DE] - 26/05/2015 - 11:54:10 ---A- - C:\Windows\Prefetch\DESKTOPICONTOYX64.EXE-7BF317BE.pf =>Adware.ADON
O45 - LFCP:[MD5.609E42E2594FC746864ED5946B7D337A] - 26/05/2015 - 11:54:07 ---A- - C:\Windows\Prefetch\DESKTOPICONTOYX64.TMP-9C04C715.pf =>Adware.ADON
O45 - LFCP:[MD5.0A0875A5FD8C36F2773175AB0915289A] - 26/05/2015 - 11:54:10 ---A- - C:\Windows\Prefetch\DESKTOPICONTOYX64.TMP-9C16878A.pf =>Adware.ADON
O45 - LFCP:[MD5.49125885A1C96C15D9E10D6326102FFE] - 10/06/2015 - 14:06:10 ---A- - C:\Windows\Prefetch\GLOBALUPDATE.EXE-A3071C5B.pf =>PUP.GlobalUpdate
O45 - LFCP:[MD5.8956FF875C90D72F39F6E3C996E15E8B] - 10/06/2015 - 14:06:00 ---A- - C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-DFFDC96B.pf =>PUP.GlobalUpdate
O45 - LFCP:[MD5.2937286BE44F90388DE1B4EC45C84E48] - 07/06/2015 - 14:00:25 ---A- - C:\Windows\Prefetch\INS_SHOPPERPRO.EXE-85F1DD4E.pf =>PUP.ShopperPro
O45 - LFCP:[MD5.06E46DA8F35865A91DC7892928221AAA] - 12/06/2015 - 17:09:01 ---A- - C:\Windows\Prefetch\MAXIGETCRASHHANDLER.EXE-3624A6D7.pf =>PUP.Maxiget
O45 - LFCP:[MD5.8617C935236D9E3BB1A509AFFC4D0796] - 12/06/2015 - 17:09:02 ---A- - C:\Windows\Prefetch\MAXIGETUPDATER.EXE-2D5BFF64.pf =>PUP.Maxiget
O45 - LFCP:[MD5.8D953F31C28840FBFF58F08835733D4A] - 27/05/2015 - 20:14:17 ---A- - C:\Windows\Prefetch\OLBPRE.EXE-2CA25D00.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.DA57E5326DBBCCEDA879A48BD79987AA] - 27/01/2015 - 16:12:20 ---A- - C:\Windows\Prefetch\REIMAGE.EXE-7B15761E.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.1BE9B60E3DCF246A0E8B385D9486B52E] - 29/01/2015 - 21:52:02 ---A- - C:\Windows\Prefetch\REIMAGEEXPRESSSETUP.EXE-C314C9EE.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.91A8793D15717666395F347368B76423] - 27/01/2015 - 16:08:33 ---A- - C:\Windows\Prefetch\REIMAGEPACKAGE.EXE-9486A61B.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.A19D2559B301732ADB4FA550B6DEDA7D] - 27/01/2015 - 16:06:02 ---A- - C:\Windows\Prefetch\REIMAGEREPAIR.EXE-2883561A.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.5535313C78A369CFBC38E903230600EC] - 08/06/2015 - 00:07:05 ---A- - C:\Windows\Prefetch\SHOPPERPRO.EXE-123D782C.pf =>PUP.ShopperPro
O45 - LFCP:[MD5.AAB1744E76ED0A5542BBE3C606EAD725] - 19/12/2014 - 19:28:54 ---A- - C:\Windows\Prefetch\UTORRENT.EXE-0A08C655.pf =>P2P.µTorrent
O45 - LFCP:[MD5.D541D36EAC52F4CD0436FC2AF4BC0BF0] - 23/04/2015 - 12:57:42 ---A- - C:\Windows\Prefetch\WEBPLAYER.EXE-9F7E9FE8.pf =>Adware.SocialSkinz
O45 - LFCP:[MD5.B8303FB270F00AD76BF740C6A5BABCEC] - 06/06/2015 - 21:42:21 ---A- - C:\Windows\Prefetch\WPM_V20.0.0.2289.EXE-6385FE2F.pf =>PUP.WpManager
O45 - LFCP:[MD5.50F115B5BAACF3CABEFE8CC85736F663] - 08/06/2015 - 00:01:14 ---A- - C:\Windows\Prefetch\YTDOWNLOADER.EXE-3FAC45E0.pf =>PUP.YTDownloader
O43 - CFD: 11/12/2014 - 17:41:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxiGet Software Manager =>PUP.Maxiget
O43 - CFD: 07/12/2014 - 23:05:46 - [] ----D C:\Program Files (x86)\MaxiGet Software Manager =>PUP.Maxiget
O39 - APT: MaxigetUpdaterTaskMachineCore - (...) -- C:\Windows\Tasks\MaxigetUpdaterTaskMachineCore.job [1094] =>PUP.Maxiget
O39 - APT: MaxigetUpdaterTaskMachineCore - (...) -- C:\Windows\System32\Tasks\MaxigetUpdaterTaskMachineCore [1094] =>PUP.Maxiget
O39 - APT: MaxigetUpdaterTaskMachineUA - (...) -- C:\Windows\Tasks\MaxigetUpdaterTaskMachineUA.job [1098] =>PUP.Maxiget
O39 - APT: MaxigetUpdaterTaskMachineUA - (...) -- C:\Windows\System32\Tasks\MaxigetUpdaterTaskMachineUA [1098] =>PUP.Maxiget
[MD5.00000000000000000000000000000000] [APT] [IYZWF] (...) -- C:\Users\bouhassoun\AppData\Roaming\IYZWF.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [MaxigetUpdaterTaskMachineCore] (...) -- C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (.not file.) [0] =>PUP.Maxiget
[MD5.00000000000000000000000000000000] [APT] [MaxigetUpdaterTaskMachineUA] (...) -- C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (.not file.) [0] =>PUP.Maxiget
O23 - Service: Service Maxiget Update (mglupdate) (mglupdate) . (...) - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (.not file.) =>PUP.Maxiget
O4 - HKUS\S-1-5-18\..\Run: [MaxigetMasterUpdate] . (...) -- C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Maxiget\Master\Updater\MasterUpdater.exe =>PUP.Maxiget
O4 - HKUS\.DEFAULT\..\Run: [MaxigetMasterUpdate] . (...) -- C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Maxiget\Master\Updater\MasterUpdater.exe =>PUP.Maxiget
O4 - HKUS\S-1-5-21-2173134999-1121657616-2993340248-1001\..\Run: [Viber] C:\Users\bouhassoun\AppData\Local\Viber\Viber.exe (.not file.)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [gpuminer] C:\Users\bouhassoun\AppData\Roaming\cpuminer\sgminer\sgminer.cmd (.not file.)
O4 - HKLM\..\Run: [cpuminer] C:\WINDOWS\system32\cpuminer-gw64.exe (.not file.)
O4 - HKCU\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\Eagleget.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\bouhassoun\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Viber] C:\Users\bouhassoun\AppData\Local\Viber\Viber.exe (.not file.)
O4 - HKUS\S-1-5-21-2173134999-1121657616-2993340248-1001\..\Run: [جدول الاختبارات] \B C:\Users\BOUHAS~1\AppData\Local\Temp\جدول الاختبارات.vbs (.not file.)
O4 - HKCU\..\Run: [جدول الاختبارات] \B C:\Users\BOUHAS~1\AppData\Local\Temp\جدول الاختبارات.vbs (.not file.)
O4 - GS\Desktop [Public]: Google.lnk . (...) -- C:\Program Files (x86)\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\baidu\Baidu Browser\Spark.exe (.not file.)
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (...) -- C:\Program Files (x86)\baidu\Baidu Browser\Spark.exe
O43 - CFD: 28/05/2015 - 13:24:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Browser
[HKLM\Software\Wow6432Node\Baidu]
[HKCU\Software\Baidu]
O42 - Logiciel: Baidu Browser - (.Baidu Inc..) [HKLM][64Bits] -- Spark
O4 - GS\Desktop [Public]: Google.lnk . (...) -- C:\Program Files (x86)\baidu\Baidu Browser\Spark.exe (.not file.)





FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité