cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Script ZHPFix
[HKCU\Software\PopCap] =>Adware.PopCap
[HKCU\Software\PopCap] =>Adware.PopCap^
C:\Windows\system32\wuaueng.dll
SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd
HKLM\SYSTEM\CurrentControlSet\Services\SBSDWSCService
O4 - GS\Desktop [Public]: Choix de navigateur .lnk . (.Microsoft Corporation - Choix de navigateur .) -- C:\Windows\System32\browserchoice.exe
O4 - GS\Accessories [BOUHAFA DILEK]: Run.lnk - Cl� orpheline
O23 - Service: SBSD Security Center Service (SBSDWSCService) . (...) - J:\Spybot - Search & Destroy\SDWinSec.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4A0962F6-C192-44D4-AFDC-AD377F7D8A94}] (...) -- C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{5318A447-5DFD-466F-BDD9-74C629E636E6}] (...) -- C:\Program Files (x86)\InstallShield Installation Information\{05F350C6-FA6A-40D0-A130-FB941B39152C}\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{72E5A9C8-CDD0-47DA-914A-40080BA9C19C}] (...) -- C:\Program Files (x86)\InstallShield Installation Information\{05F350C6-FA6A-40D0-A130-FB941B39152C}\Setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{8512B6B7-8296-4066-AA15-B3EC5C2668B4}] (...) -- J:\office 2003\CD2 - Frontpage\SETUP.exe (.not file.) [0]
O43 - CFD: 04/10/2011 - 19:58:20 - [0,001] ----D C:\Users\BOUHAFA DILEK\AppData\Local\PokerStars.FR
O45 - LFCP:[MD5.89A5BF75670E71DBCDF6B112EBF98009] - 23/01/2014 - 16:04:03 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.A46FC5E470B3963E968064BF0CB80D41] - 23/01/2014 - 16:38:25 ---A- - C:\Windows\Prefetch\UNDELETE.EXE-262D0F99.pf
O45 - LFCP:[MD5.6047E478557E470842FA7705B519D866] - 23/01/2014 - 16:40:03 ---A- - C:\Windows\Prefetch\MSTSC.EXE-76A46E8A.pf
O45 - LFCP:[MD5.982E5C7C4F5DFA9EB0A96F15F6E1323F] - 23/01/2014 - 16:40:34 ---A- - C:\Windows\Prefetch\MSINFO32.EXE-95097B65.pf
O45 - LFCP:[MD5.38616C4FACE28317DBDD1CB045B36939] - 24/01/2014 - 11:26:28 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.165.2309.0.EXE-C5821927.pf
O45 - LFCP:[MD5.ACD1E3A74CF2EACDE9FC10C0DA416CE2] - 24/01/2014 - 18:33:45 ---A- - C:\Windows\Prefetch\HPDVDSMART.EXE-DE5F7358.pf
O45 - LFCP:[MD5.8393CECD09C22612F2AA6635DF20FA71] - 24/01/2014 - 19:02:12 ---A- - C:\Windows\Prefetch\ONPLAY.EXE-8B2DD11C.pf
O45 - LFCP:[MD5.2D55B87561AA6796C6992CB1F6FFBB5C] - 24/01/2014 - 19:03:59 ---A- - C:\Windows\Prefetch\EZACTIVEPARENT.EXE-E45DB9E0.pf
O45 - LFCP:[MD5.FF8485EB53D50E4C5F31912E991F43AC] - 24/01/2014 - 19:04:09 ---A- - C:\Windows\Prefetch\EZMDLAUNCHER.EXE-3069C819.pf
O45 - LFCP:[MD5.1222DE69F253E6EE2451916A9282C5F9] - 24/01/2014 - 19:04:10 ---A- - C:\Windows\Prefetch\EZSECSHIELD.EXE-2A3D1A66.pf
O45 - LFCP:[MD5.64B90DE56603C8E28E5321EA5F20C213] - 24/01/2014 - 19:04:13 ---A- - C:\Windows\Prefetch\EZDESKTOP.EXE-F6A97024.pf
O45 - LFCP:[MD5.265779FE40788D9C1F203C960B2C436F] - 24/01/2014 - 19:04:24 ---A- - C:\Windows\Prefetch\EZSOUNDSVR.EXE-E1CAB0CE.pf
O45 - LFCP:[MD5.E44AD51ADAB9B5EC7CF2566DE1202FB6] - 24/01/2014 - 19:04:25 ---A- - C:\Windows\Prefetch\EZTTSSVR.EXE-82D0F820.pf
O45 - LFCP:[MD5.B2D291B3F895529CC5032CF827AEF9A7] - 24/01/2014 - 19:04:27 ---A- - C:\Windows\Prefetch\EZSYSMAN.EXE-202104A9.pf
O45 - LFCP:[MD5.193B257F95460E14C6A4FBB388AEF06F] - 24/01/2014 - 19:04:27 ---A- - C:\Windows\Prefetch\EZTASKMGR64STARTER.EXE-0A64381A.pf
O45 - LFCP:[MD5.D7EE0088132AA00C670CA210A6E6D185] - 24/01/2014 - 19:04:32 ---A- - C:\Windows\Prefetch\GAMEPAD.EXE-6D60820C.pf
O45 - LFCP:[MD5.A8C4FF37AE1E14A7BB81339292D695DC] - 24/01/2014 - 19:04:34 ---A- - C:\Windows\Prefetch\EZMDPP.EXE-E88B0CF7.pf
O45 - LFCP:[MD5.B08A19A149522270A08483AE3D8D9F3D] - 24/01/2014 - 19:05:10 ---A- - C:\Windows\Prefetch\MAGICMAIL.EXE-CC2B5396.pf
O45 - LFCP:[MD5.A70ECEDDA35ACE1B465C181AB9AAB92B] - 24/01/2014 - 19:11:01 ---A- - C:\Windows\Prefetch\EZMDHELPVIEWER.EXE-E2A6C93E.pf
O45 - LFCP:[MD5.9F5957D427D05E184B8C2DFE5A8BA1AE] - 26/01/2014 - 13:31:10 ---A- - C:\Windows\Prefetch\BCKGZM.EXE-C158EE6B.pf
O45 - LFCP:[MD5.8060476DE0F95399E8757759620BEA1F] - 26/01/2014 - 15:58:19 ---A- - C:\Windows\Prefetch\INSTUP.EXE-7E543EAF.pf
O45 - LFCP:[MD5.9F1EAE24190702FAC629B6FB633EA2AE] - 26/01/2014 - 16:41:32 ---A- - C:\Windows\Prefetch\FLASHUTIL64_11_9_900_170_ACTI-196232DB.pf
O45 - LFCP:[MD5.3DDDA13CAA3BBB6B5AFAB2DB1F442A07] - 26/01/2014 - 17:06:19 ---A- - C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-17410B90.pf
O45 - LFCP:[MD5.838650554A50999B9201761EFC61873C] - 27/01/2014 - 11:42:35 ---A- - C:\Windows\Prefetch\CHKRZM.EXE-1AA1BBB8.pf
O45 - LFCP:[MD5.CB65CCB1E9E139521FF36EA31DB07C1C] - 27/01/2014 - 11:47:15 ---A- - C:\Windows\Prefetch\SHVLZM.EXE-4BBB1FE1.pf
O45 - LFCP:[MD5.6D72A9F29133C7C4FF0727065DD14F6E] - 27/01/2014 - 13:23:22 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-4201405348-4116125513-1292601558-1000.db
O45 - LFCP:[MD5.5CC6DF6E7D0E9DD5E34119AEEF94C303] - 27/01/2014 - 13:23:23 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-4201405348-4116125513-1292601558-1000.db
O45 - LFCP:[MD5.06BF39DD3D2923E3185F3CE5BD471C99] - 27/01/2014 - 13:31:29 ---A- - C:\Windows\Prefetch\ASWOFFERTOOL.EXE-D136F81F.pf
O46 - SEH:ShellExecuteHooks - EasyBits Security Shield Hook - prevents launching insecure programs by kids [64Bits] - {E54729E8-643D-4270-9D49-7389EA579090} - Cl� orpheline
O53 - SMSR:HKLM\...\startupreg\BrowserChoice [Key] . (.Microsoft Corporation - Choix de navigateur .) -- C:\Windows\System32\browserchoice.exe
O53 - SMSR:HKLM\...\startupreg\Magic Desktop for HP notification [Key] . (...) -- C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe (.not file.)
O61 - LFC: 24/01/2014 - 13:48:58 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Temp\wmplog00.sqm [1484]
O61 - LFC: 24/01/2014 - 13:48:58 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Temp\wmplog01.sqm [1404]
O61 - LFC: 24/01/2014 - 13:48:58 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Temp\wmplog02.sqm [1404]
O87 - FAEL: "{20801998-5196-4CD7-B6B3-83D872B49D18}" |In - None - P17 - TRUE | .(...) -- E:\setup\hpznui40.exe (.not file.)
SS - | Auto 10/07/1658 0 | (SBSDWSCService) . (...) - J:\Spybot - Search & Destroy\SDWinSec.exe
G1 - GCS: Preference [User Data\Default] None
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O61 - LFC: 25/01/2014 - 13:48:54 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000943.ldb [227]
O61 - LFC: 26/01/2014 - 13:48:54 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old [148]
O61 - LFC: 26/01/2014 - 13:48:56 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000017 [121]
O61 - LFC: 26/01/2014 - 13:49:09 ---A- . (...) -- C:\Users\BOUHAFA DILEK\Downloads\downloaded.pdf [206610]
O61 - LFC: 27/01/2014 - 13:48:54 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16]
O61 - LFC: 27/01/2014 - 13:48:54 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG [148]
O61 - LFC: 27/01/2014 - 13:48:54 ---A- . (...) -- C:\Users\BOUHAFA DILEK\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000962 [617]
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O43 - CFD: 23/10/2013 - 15:15:13 - [2,753] ----D C:\Users\BOUHAFA DILEK\AppData\Local\CRE
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
FirewallRaz
PROXYFix
EmptyTemp
EmptyFlash
EmptyClsid

Publicité


Signaler le contenu de ce document

Publicité