cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation


Script ZHPFix

[MD5.E2CFFD1EF28C9A4B772B9C2FE257C288] - (...) -- C:\Program Files (x86)\SoftwareUpdater\AppsUpd4ter.exe [150016] [PID.292] =>PUP.Eorezo
[MD5.ED5FB97E998819E99C90EB1254544CF5] - (...) -- C:\Program Files (x86)\SoftwareUpdater\Upd4terSrv.exe [107008] [PID.1220] =>PUP.Eorezo
O4 - HKLM\..\Run: [Connectify Hotspot] . (.Connectify - Connectify Hotspot.) -- C:\Program Files (x86)\Connectify\Connectify.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [jswtrayutil] . (.Atheros Communications, Inc. - Tray Utility for JumpStart for Wireless.) -- C:\Program Files (x86)\Jumpstart\jswtrayutil.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets de escritorio de Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets de escritorio de Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Proveedor de espacio de nombres PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Proveedor de espacio de nombres PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O15 - Trusted Zone: [HKCU\...\EscDomains] http.connectify.me
O15 - Trusted Zone: [HKCU\...\EscDomains] http.fastspring.com
O15 - Trusted Zone: [HKLM\...\EscDomains] http.connectify.me
O15 - Trusted Zone: [HKLM\...\EscDomains] http.fastspring.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{A82BB919-8CCE-4A8D-852F-3AFA76BEC8BE}: DhcpNameServer = 80.58.61.250 80.58.61.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{A82BB919-8CCE-4A8D-852F-3AFA76BEC8BE}: DhcpNameServer = 80.58.61.250 80.58.61.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{A82BB919-8CCE-4A8D-852F-3AFA76BEC8BE}: DhcpNameServer = 80.58.61.250 80.58.61.254
O23 - Service: (SrvUpdater) . (...) - C:\Program Files (x86)\SoftwareUpdater\Upd4terSrv.exe =>PUP.Eorezo
[HKCU\Software\Linkey] =>PUP.LinkeySearch
[HKLM\Software\LINKEY] =>PUP.LinkeySearch
[HKLM\Software\Wow6432Node\Driver-Soft] =>PUP.DriverSoft
[HKLM\Software\Wow6432Node\SOFTWAREUPDATER] =>PUP.Eorezo
O43 - CFD: 14/06/2015 - 18:30:19 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-1 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:03 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-10 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:13 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-11 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:03 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-12 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:12 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-13 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:03 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-14 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:48 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-15 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:20 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-16 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:12 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-17 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:50 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-18 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:07 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-19 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:50 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-2 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:07 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-20 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:19 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-22 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:14 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-23 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:16 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-24 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:58 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-25 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:16 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-26 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:19 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-27 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:59 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-28 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:16 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-29 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:53 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-3 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:13 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-30 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:56 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-31 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:51 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-4 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:04 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-5 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:03 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-6 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:09 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-7 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:30:13 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-8 =>Worm.Brontok
O43 - CFD: 14/06/2015 - 18:29:59 - [0] ----D C:\Users\toshiba\AppData\Local\Bron.tok-12-9 =>Worm.Brontok
O43 - CFD: 08/02/2015 - 19:31:36 - [] ----D C:\Users\toshiba\AppData\Local\Loc.Mail.Bron.Tok =>Worm.Brontok
O43 - CFD: 17/01/2015 - 23:16:50 - [0] ----D C:\Users\toshiba\AppData\Local\Ok-SendMail-Bron-tok =>Worm.Brontok
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O51 - MPSK:{7865a449-6aa6-11e4-8124-806e6f6e6963}\AutoRun\command. (...) -- E:\autorun.exe (.not file.)
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (...) -- C:\Users\toshiba\AppData\Local\Temp\3C2108452dC2d\temp\embededstub.exe [661416]
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (...) -- C:\Users\toshiba\AppData\Local\Temp\3C2108452dC2d\temp\usetup.exe [773632]
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (...) -- C:\Users\toshiba\AppData\Local\Temp\3C2108452dC2d\temp\windows loader v2 2 2.exe [939008]
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (...) -- C:\Users\toshiba\AppData\Local\Temp\app0203\Of_ES-I3-Wajam_chk_0_230.exe [2406368] =>PUP.Wajam
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (...) -- C:\Users\toshiba\AppData\Local\Temp\dltr.exe [67872]
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (.Conduit.) -- C:\Users\toshiba\AppData\Local\Temp\dlLogic.exe [203704] =>Toolbar.Conduit
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (.EZDownloader.) -- C:\Users\toshiba\AppData\Local\Temp\3C2108452dC2d\temp\EzDownloader_setup.exe [1722581]
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (.Generic Installer.) -- C:\Users\toshiba\AppData\Local\Temp\7f0541283e9e0b72e18b0eea1ae69db5.exe [756147]
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (.Google.) -- C:\Users\toshiba\AppData\Local\Temp\22FC.exe [4715848]
O61 - LFC: 14/06/2015 - 1:21:49 ---A- . (.TabMain.) -- C:\Users\toshiba\AppData\Local\Temp\app0203\Of_ES-I3-Omiga_chk_0_272.exe [319944]
O61 - LFC: 14/06/2015 - 1:21:50 ---A- . (...) -- C:\Users\toshiba\AppData\Local\Temp\E0E38d07E2109.exe [939008]
O61 - LFC: 14/06/2015 - 1:21:50 ---A- . (.Conduit Ltd..) -- C:\Users\toshiba\AppData\Local\Temp\GCVerifier.dll [287520] =>Toolbar.Conduit
C:\Users\toshiba\AppData\Local\Temp\3C2108452dC2d\temp\windows loader v2 2 2.exe =>.Crack,Keygen
C:\Users\toshiba\Downloads\windows loader v2 2 2.exe =>.Crack,Keygen
C:\Users\toshiba\AppData\Local\Temp\3C2108452dC2d\temp\windows loader v2 2 2.exe =>.Crack,Keygen
C:\Users\toshiba\Downloads\windows loader v2 2 2.exe =>.Crack,Keygen
[HKLM\SYSTEM\CurrentControlSet\Services\SrvUpdater] =>PUP.Eorezo^
[HKLM\Software\Wow6432Node\SoftwareUpdater] =>Hijacker.Eazel
C:\Program Files (x86)\SoftwareUpdater =>PUP.Eorezo^
C:\ProgramData\DriverGenius =>PUP.DriverGenius^
C:\Users\toshiba\AppData\Local\Bron.tok-12-1 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-10 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-11 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-12 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-13 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-14 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-15 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-16 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-17 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-18 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-19 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-2 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-20 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-22 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-23 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-24 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-25 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-26 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-27 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-28 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-29 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-3 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-30 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-31 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-4 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-5 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-6 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-7 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-8 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Bron.tok-12-9 =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Loc.Mail.Bron.Tok =>Worm.Brontok^
C:\Users\toshiba\AppData\Local\Ok-SendMail-Bron-tok =>Worm.Brontok^
C:\Program Files (x86)\SoftwareUpdater\AppsUpd4ter.exe =>PUP.Eorezo^
C:\Program Files (x86)\SoftwareUpdater\Upd4terSrv.exe =>PUP.Eorezo^
[HKCU\Software\Linkey] =>PUP.LinkeySearch^
[HKLM\Software\LINKEY] =>PUP.LinkeySearch^
[HKLM\Software\Wow6432Node\969d7417-5b51-13e4-85ba-09e889cd5b73] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\Driver-Soft] =>PUP.DriverSoft^
[HKLM\Software\Wow6432Node\SOFTWAREUPDATER] =>PUP.Eorezo^
Bad: (%1) Good: ("%1" /S) =>Broken.OpenCommand^
C:\Users\toshiba\AppData\Local\Temp\dlLogic.exe =>Toolbar.Conduit
C:\Users\toshiba\AppData\Local\Temp\GCVerifier.dll =>Toolbar.Conduit



FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix
Sysrestore

Publicité


Signaler le contenu de ce document

Publicité