cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash


C:\Program Files (x86)\5cdd5a72-5d10-472c-b0ec-2972dd4e6127 =>PUP.Optional.CrossRider
C:\ProgramData\Labcenter Electronics =>PUP.Optional.BundleInstaller
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
[MD5.E90DA42B87D684DEBFB73B38A718A006] - (.Copyright (C) 2008 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService64.exe [346976] [PID.1700] {78EA456DD0A9C3B3A0DD7BD860DE0B55}
[MD5.A7AD97A29D9742DA0C9894427ED13D80] - (...) -- C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe [655712] [PID.3328] {78EA456DD0A9C3B3A0DD7BD860DE0B55}
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.4560] {78EA456DD0A9C3B3A0DD7BD860DE0B55} ©
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://googleads.g.doubleclick.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh5.googleusercontent.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://play.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://plus.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com?fr=fp-comodo
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ali-bassi\AppData\Roaming\uTorrent\updates\3.4.5_41372.exe =>.BitTorrent Inc®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\ali-bassi\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\ali-bassi\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe ©
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\ali-bassi\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SESoftwareUpdateScheduler] . (.Schneider Electric GmbH - SoftwareUpdateScheduler.) -- C:\Program Files (x86)\Schneider Electric\Schneider Electric Software Update\SUSchedl.exe =>.Schneider Electric®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [autodetect] . (. - AutoDect.) -- C:\Program Files (x86)\Internet Haut Débit Mobile\AutoDect.exe =>.ZTE CORPORATION ®
O4 - HKLM\..\Wow6432Node\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [Akamai NetSession Interface] C:\Users\ali-bassi\AppData\Local\Akamai\netsession_win.exe (.not file.)
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\ali-bassi\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ali-bassi\AppData\Roaming\uTorrent\updates\3.4.5_41372.exe =>.BitTorrent Inc®
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\Run: [IDM trial reset] . (...) -- E:\IDMan Trial Reset\IDMan Trial Reset by Chamsoo.exe
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\RunOnce: [Uninstall C:\Users\ali-bassi\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe ©
O4 - HKUS\S-1-5-21-3863940738-2704722988-2864807381-1001\..\RunOnce: [Uninstall C:\Users\ali-bassi\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe ©
O43 - CFD: 26/09/2015 - [0] D -- C:\Program Files (x86)\5cdd5a72-5d10-472c-b0ec-2972dd4e6127 =>PUP.Optional.CrossRider
O43 - CFD: 23/03/2015 - [] D -- C:\ProgramData\Labcenter Electronics =>PUP.Optional.BundleInstaller
O43 - CFD: 09/03/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 20/12/2015 - [] D -- C:\Users\ali-bassi\AppData\Local\Temp
O43 - CFD: 16/09/2015 - [0] SHD -- C:\Users\ali-bassi\AppData\Local\Temporary Internet Files
O87 - FAEL: "UDP Query User{80728B8F-6AE3-4F92-94A4-8E123C8DC959}C:\program files (x86)\connectify\connectify.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\connectify\connectify.exe (.not file.)
O87 - FAEL: "TCP Query User{5D5904DD-97D7-4829-BEE0-928F51BA78C0}C:\program files (x86)\connectify\connectify.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\connectify\connectify.exe (.not file.)
O87 - FAEL: "UDP Query User{8E9803DE-2A7C-4CBB-8B23-6B2D1A2CBFA7}C:\users\ali-bassi\appdata\local\akamai\netsession_win.exe" [In-None-P17-TRUE] .(...) -- C:\users\ali-bassi\appdata\local\akamai\netsession_win.exe (.not file.)
O87 - FAEL: "TCP Query User{990B6DEE-BC85-466D-BFD9-890A7BB1BF33}C:\users\ali-bassi\appdata\local\akamai\netsession_win.exe" [In-None-P6-TRUE] .(...) -- C:\users\ali-bassi\appdata\local\akamai\netsession_win.exe (.not file.)
O87 - FAEL: "{C244E9E5-C328-440D-94C2-D833DC752964}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\FrostWire 6\FrostWire.exe (.not file.)
O87 - FAEL: "{1F4BB7F4-5F0A-4541-A5C8-87853CC0D57E}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\FrostWire 6\FrostWire.exe (.not file.)

Publicité


Signaler le contenu de ce document

Publicité