cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash


[MD5.00000000000000000000000000000000] [APT] [CreateChoiceProcessTask] (...) -- C:\Windows\System32\browserchoice.exe (.not file.) [0] =>.Superfluous.Empty
O39 - APT: CreateChoiceProcessTask - (...) -- C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask [3646] (.Orphean.) =>.Superfluous.Orphean
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://anx.tb.ask.com =>Toolbar.Ask
G0 - GCSP: Preferences [User Data\Default][HomePage] http://live.tb.ask.com =>Toolbar.Ask
G0 - GCSP: Preferences [User Data\Default][HomePage] http://wdata.dev.televisionfanatic.com =>PUP.Optional.TelevisionFanatic
G0 - GCSP: Preferences [User Data\Default][HomePage] http://wdata.televisionfanatic.com =>PUP.Optional.TelevisionFanatic
G0 - GCSP: Preferences [User Data\Default][HomePage] http://weatherblink.wdgserv.com =>.Superfluous.MindSpark
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ak.ssl.imgfarm.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.be
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\mouad\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe =>.Dritek System Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Dolby Advanced Audio v2] . (.Dolby Laboratories Inc. - Dolby Profile Selector.) -- C:\Dolby PCEE4\pcee4.exe =>.Dolby Laboratories, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-675087279-930782470-2347629840-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\mouad\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-675087279-930782470-2347629840-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.130.131.4 195.130.130.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{7e5ccabd-7b13-4f4e-8789-841443ce1dd0}: DhcpNameServer = 192.168.1.250
O17 - HKLM\System\CCS\Services\Tcpip\..\{ab9148e1-dcbe-4341-8f7c-352b1a5aaf07}: DhcpNameServer = 195.130.131.4 195.130.130.4
O42 - Logiciel: Media Watch - (.Media Watch.) [HKLM][64Bits] -- MediaWatchV1home119 =>PUP.Optional.MediaWatch
HKCU\SOFTWARE\BearShare =>PUP.Optional.BearShare
O43 - CFD: 18/03/2016 - [] AD -- C:\Program Files (x86)\Security Reviver =>.Superfluous.ReviverSoft
O43 - CFD: 18/03/2016 - [] D -- C:\Users\mouad\AppData\Local\Temp
O43 - CFD: 15/03/2016 - [0] SHD -- C:\Users\mouad\AppData\Local\Temporary Internet Files
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\mouad\AppData\Local\Torch\Application\torch.exe (.not file.) =>.Superfluous.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\mouad\AppData\Local\Torch\Application\torch.exe (.not file.) =>.Superfluous.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\mouad\AppData\Local\Torch\Application\torch.exe (.not file.) =>.Superfluous.Torch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\mouad\AppData\Local\Torch\Application\torch.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\mouad\AppData\Local\Torch\Application\torch.exe (.not file.) =>.Superfluous.Torch
O87 - FAEL: "{4CEDBEDB-C351-4FE4-AB2F-E837EC5D4B0B}" [In-None-P6-TRUE] .(...) -- C:\Users\mouad\AppData\Local\Torch\Plugins\Torrent\TorchTorrent.exe (.not file.) =>.Superfluous.Torch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MediaWatchV1home119 =>PUP.Optional.MediaWatch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\MediaWatchV1home119 =>PUP.Optional.MediaWatch
HKCU\SOFTWARE\BearShare =>PUP.Optional.BearShare

Publicité


Signaler le contenu de ce document

Publicité