cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKLM\SOFTWARE\Tencent =>.Superfluous.Tencent
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
C:\Program Files\KMSpico =>HackTool.KMSpico
C:\Users\Ibty\AppData\Local\CrashRpt =>.Superfluous.CrashReports
C:\Windows\System32\Config\systemprofile\AppData\Local\LavasoftTcpService =>PUP.Optional.LavasoftWebCompanion
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (...) -- C:\Program Files\Internet Download Manager\IDMIECC.dll (.not file.)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (...) -- C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\Ibty\AppData\Local\Temp\Rar$EXa0.169\palemoon\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\Ibty\AppData\Local\Temp\Rar$EXa0.169\palemoon\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\Ibty\AppData\Local\Temp\Rar$EXa0.169\palemoon\uninstall\helper.exe (.not file.)
O87 - FAEL: "TCP Query User{9C46F035-DF19-440E-9CFF-7AF3DE767171}C:\program files\sage\direct\sagedirect.exe" [In-None-P6-TRUE] .(...) -- C:\program files\sage\direct\sagedirect.exe (.not file.)
O87 - FAEL: "UDP Query User{12D160C9-7527-477C-A2FA-254DD6689CAE}C:\program files\sage\direct\sagedirect.exe" [In-None-P17-TRUE] .(...) -- C:\program files\sage\direct\sagedirect.exe (.not file.)
O87 - FAEL: "TCP Query User{17A74DE7-1F60-42EF-993D-391C531ED516}C:\users\ibty\appdata\local\coccoc\browser\application\browser.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\coccoc\browser\application\browser.exe (.not file.)
O87 - FAEL: "UDP Query User{396BFA2E-B996-443A-9833-D0F3434F37F1}C:\users\ibty\appdata\local\coccoc\browser\application\browser.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\coccoc\browser\application\browser.exe (.not file.)
O87 - FAEL: "TCP Query User{8E074E43-A764-4F12-B5B0-89B5CC90FFE7}C:\users\ibty\appdata\local\temp\rar$exa0.565\embratoriag2_beta\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.565\embratoriag2_beta\es.exe (.not file.)
O87 - FAEL: "UDP Query User{BA4F5DCC-07C9-485A-833E-E7B293BC0B80}C:\users\ibty\appdata\local\temp\rar$exa0.565\embratoriag2_beta\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.565\embratoriag2_beta\es.exe (.not file.)
O87 - FAEL: "TCP Query User{7D0F8292-414D-4B04-A75B-F81EDAFD2A6B}C:\users\ibty\appdata\local\temp\rar$exa0.638\embratoriag2_beta\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.638\embratoriag2_beta\es.exe (.not file.)
O87 - FAEL: "UDP Query User{4F243DDF-DF23-4655-BD81-42F0C5176F3F}C:\users\ibty\appdata\local\temp\rar$exa0.638\embratoriag2_beta\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.638\embratoriag2_beta\es.exe (.not file.)
O87 - FAEL: "TCP Query User{F4F06B09-5F8C-41A2-BA48-C00EAB0A476B}C:\users\ibty\appdata\local\temp\rar$exa0.831\embratoriag2_beta\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.831\embratoriag2_beta\es.exe (.not file.)
O87 - FAEL: "UDP Query User{BF48D542-05B7-4277-9E9A-E8EF72B0D1C3}C:\users\ibty\appdata\local\temp\rar$exa0.831\embratoriag2_beta\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.831\embratoriag2_beta\es.exe (.not file.)
O87 - FAEL: "TCP Query User{A937EC93-2AFD-4923-B96B-F89A22412092}C:\users\ibty\appdata\local\temp\rar$exa0.788\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.788\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{36EFF075-8467-4544-A6AE-313F9CB4CBD8}C:\users\ibty\appdata\local\temp\rar$exa0.788\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.788\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{5767F77A-0EDA-49C4-9CD9-199C0DB36990}C:\users\ibty\appdata\local\temp\rar$exa0.145\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.145\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{95A1F16B-E6FC-4DB1-BE1E-7D675E082A1A}C:\users\ibty\appdata\local\temp\rar$exa0.145\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.145\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{13F8583C-46B7-4704-9B26-FA7F14925B25}C:\users\ibty\appdata\local\temp\rar$exa0.208\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.208\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{B7E5B9B1-8F17-4FC8-88A6-6110E3220C22}C:\users\ibty\appdata\local\temp\rar$exa0.208\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.208\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{3B470755-07DC-4FF8-B242-24AFFC0EE39C}C:\users\ibty\appdata\local\temp\rar$exa0.019\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.019\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{9431266B-012E-4D81-BF81-AEE45A7B1152}C:\users\ibty\appdata\local\temp\rar$exa0.019\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.019\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{DFD67D52-314C-4E07-9A75-E4648F12FBB4}C:\users\ibty\appdata\local\temp\rar$exa0.497\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.497\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{948AB002-E699-4965-8631-82AF1D76924B}C:\users\ibty\appdata\local\temp\rar$exa0.497\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.497\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{7B3382AD-2CE7-4989-ACFF-6B4249BEF0DC}C:\users\ibty\appdata\local\temp\rar$exa0.463\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.463\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{B93B9C82-5FB7-4802-ACA4-E425BCB05504}C:\users\ibty\appdata\local\temp\rar$exa0.463\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.463\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{04570E9F-EBAE-4B22-A80C-76ABF1BD01A3}C:\users\ibty\appdata\local\temp\rar$exa0.624\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.624\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{7F7A770A-BB70-4514-BE8C-0427F39FC79C}C:\users\ibty\appdata\local\temp\rar$exa0.624\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.624\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{139D1705-587A-4BA3-8F3C-10B3201CF213}C:\users\ibty\appdata\local\temp\rar$exa0.879\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.879\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "UDP Query User{2CB24729-20F3-47CE-9697-13FB8DD8C3D3}C:\users\ibty\appdata\local\temp\rar$exa0.879\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.879\embratoria_g3\es.exe (.not file.)
O87 - FAEL: "TCP Query User{EB87CBDB-4640-4048-9991-A034D29D8591}C:\users\ibty\appdata\local\temp\rar$exa0.805\embratoria_g4\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.805\embratoria_g4\es.exe (.not file.)
O87 - FAEL: "UDP Query User{7578D450-D0FE-4453-9188-9AD02B167123}C:\users\ibty\appdata\local\temp\rar$exa0.805\embratoria_g4\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\rar$exa0.805\embratoria_g4\es.exe (.not file.)
O87 - FAEL: "TCP Query User{CFAD6086-F954-43B4-80B6-906B078D05ED}C:\users\ibty\appdata\local\temp\24597\download\minithunderplatform.exe" [In-None-P6-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\24597\download\minithunderplatform.exe (.not file.)
O87 - FAEL: "UDP Query User{453FB6B2-4450-4827-BBEC-08EB7A7B8AC1}C:\users\ibty\appdata\local\temp\24597\download\minithunderplatform.exe" [In-None-P17-TRUE] .(...) -- C:\users\ibty\appdata\local\temp\24597\download\minithunderplatform.exe (.not file.)
O87 - FAEL: "{C1E9ECE1-7AA5-488E-9732-3D0DF9F035EE}" [In-None-P6-TRUE] .(...) -- C:\Users\Ibty\AppData\Local\Temp\24597\download\MiniThunderPlatform.exe (.not file.)
O87 - FAEL: "{3826866F-E18A-410C-B5EB-66723731A648}" [In-None-P17-TRUE] .(...) -- C:\Users\Ibty\AppData\Local\Temp\24597\download\MiniThunderPlatform.exe (.not file.)
O87 - FAEL: "{1074EC07-C647-4BCF-AFB9-E17E995730D4}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe (.not file.) =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{46C7C6A2-9A5A-4E6D-830D-385181A4A68F}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe (.not file.) =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{3ED82B7D-E5C2-4077-A4E7-EB85BAA5E154}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe (.not file.) =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{414049A2-E11A-4A14-BE98-695EFD9852E9}" [Out-None-P17-TRUE] .(...) -- C:\Users\Ibty\AppData\Local\Temp\andy-x86\Setup.exe (.not file.)
O87 - FAEL: "{A970CD73-5EDE-4EA6-81D0-88C7A41D3F88}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Andy\andy.exe (.not file.)
O87 - FAEL: "{09FF0D08-A4F0-4A94-9A4A-25E25BE3DDB9}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Andy\andy.exe (.not file.)
O87 - FAEL: "{C0599DA2-7003-4D51-93AE-6FE63FF40176}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Andy\AndyConsole.exe (.not file.)
O87 - FAEL: "{1058CF41-F749-4C5A-9ECB-D794D560EF39}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Andy\AndyConsole.exe (.not file.)
O87 - FAEL: "{271EC714-7B2B-451B-B02C-DF257EAA6DD6}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{7310558E-4569-4ECD-955C-85E0222B2033}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{05CE8245-313E-4B58-AA9E-FA160B910F6A}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\Uninstall.exe (.not file.)
O87 - FAEL: "{D3D005CC-D900-4CDF-8081-F40698A251E3}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\Uninstall.exe (.not file.)
O87 - FAEL: "{DE9EE85A-D7CF-4F5D-B4C2-F211BF4FB914}" [Out-None-P17-TRUE] .(...) -- C:\Users\Ibty\AppData\Local\Temp\andy-x86\Setup.exe (.not file.)
HKLM\SOFTWARE\Tencent =>.Superfluous.Tencent
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
O43 - CFD: 04/01/2015 - [] D -- C:\Users\Ibty\AppData\Local\CrashRpt =>.Superfluous.CrashReports
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
O43 - CFD: 08/06/2016 - [] D -- C:\Program Files\KMSpico =>HackTool.KMSpico
O43 - CFD: 06/05/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\LavasoftTcpService =>PUP.Optional.LavasoftWebCompanion
HKLM\SOFTWARE\Baidu Security
HKLM\SOFTWARE\Baidu_Drp_pos
HKCU\SOFTWARE\Baidu Security
O43 - CFD: 04/05/2016 - [] D -- C:\Users\Ibty\AppData\Roaming\Baidu
O58 - SDL:2015/03/31 06:22:52 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\Windows\System32\drivers\Bhbase.sys [46440] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.43.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{968F57AC-E195-4188-BC7A-CAD6FFD1ED9D}: DhcpNameServer = 192.168.43.1
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0


Publicité


Signaler le contenu de ce document

Publicité