cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPDIAG

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O23 - Service: PebjDykpuk (PebjDykpuk) . (...) - C:\ProgramData\WhzeAfy\JaarQipne.exe (.not file.)
O23 - Service: tinpejuwu (tinpejuwu) . (...) - C:\ProgramData\WhzeAfy\usaage.exe (.not file.)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
[MD5.00000000000000000000000000000000] [APT] [Opera N Saturday] (...) -- C:\Program Files (x86)\Opera\launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Opera N Sunday] (...) -- C:\Program Files (x86)\Opera\launcher.exe (.not file.) [0]
O45 - LFCP:[MD5.E1C9A8E34637500C292AB5BA1637F594] - 15/06/2015 - 14:34:09 ---A- - C:\Windows\Prefetch\BACKUPSTACK.EXE-0A0E71E8.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.359108360A8EFB87C438ADA7891DE378] - 08/08/2014 - 22:15:24 ---A- - C:\Windows\Prefetch\DATAMNGRCOORDINATOR.EXE-40042183.pf =>PUP.Datamngr
O45 - LFCP:[MD5.3A49DE0A53D19FB7307231D0E2C9D47B] - 08/08/2014 - 22:15:24 ---A- - C:\Windows\Prefetch\DATAMNGRUI.EXE-D2B3D245.pf =>PUP.Datamngr
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Dukmomu120.sys . (...) -- C:\Windows\System32\Drivers\Dukmomu120.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Nhbukgu120.sys . (...) -- C:\Windows\System32\Drivers\Nhbukgu120.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Dukmomu120.sys . (...) -- C:\Windows\System32\Drivers\Dukmomu120.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Nhbukgu120.sys . (...) -- C:\Windows\System32\Drivers\Nhbukgu120.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O50 - IFEO:Image File Execution Options - volaro - tasklist.exe =>Trojan.Vonteera
O50 - IFEO:Image File Execution Options - vonteera - tasklist.exe =>Trojan.Vonteera
O51 - MPSK:{1dc49aa6-4726-11e3-bc96-2c27d7ce23a2}\AutoRun\command. (...) -- F:\LGCMInstaller.exe (.not file.)
O51 - MPSK:{2576e180-0e4f-11e3-bbc4-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{345ec842-05f5-11e3-a76c-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{6e3c46e8-cc20-11e2-9f16-cc52af9c7744}\AutoRun\command. (...) -- F:\autorun.exe (.not file.)
O51 - MPSK:{b2b06f73-05df-11e3-9a2d-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O51 - MPSK:{b2b06f82-05df-11e3-9a2d-cc52af9c7744}\AutoRun\command. (...) -- F:\AutoRun.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (...) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_ActiveX.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SPDriver [Key] . (...) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.1995\jsdrv.exe (.not file.) =>PUP.ShopperPro
O53 - SMSR:HKLM\...\startupreg\YTDownloader [Key] . (...) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe (.not file.) =>PUP.YTDownloader
O61 - LFC: 19/06/2015 - 13:45:59 ---A- . (...) -- C:\Users\hp\AppData\Local\Temp\Install_5853\ins_shopperpro.exe [2684376] =>PUP.ShopperPro
O61 - LFC: 19/06/2015 - 13:45:59 ---A- . (.Reimage®.) -- C:\Users\hp\AppData\Local\Temp\814347213950\Setup_product_26943.exe [768512] =>Rogue.ReimageRepair
O61 - LFC: 17/06/2015 - 13:46:04 ---A- . (.Reimage®.) -- C:\Users\hp\Downloads\ReimageRepair.exe [772016] =>Rogue.ReimageRepair
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (.Reimage®.) -- C:\Users\hp\AppData\Local\Temp\ReiSysUpdate.exe [295912] =>Rogue.ReimageRepair
O61 - LFC: 19/06/2015 - 13:46:00 ---A- . (.Reimage®.) -- C:\Users\hp\AppData\Local\Temp\ReimagePackage.exe [13370912] =>Rogue.ReimageRepair
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SPDriver] =>PUP.ShopperPro^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\YTDownloader] =>PUP.YTDownloader^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application^
C:\Users\hp\AppData\Local\Temp\uninst1.exe =>PUP.Babylon



FirewallRaz
EmptyTemp
EmptyFlash
Proxyfix

Publicité


Signaler le contenu de ce document

Publicité