Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
[MD5.CCA616647DB9370C88998AE25DA6997F] [APT] [AutoKMS] (.CODYQX4.) -- C:\Windows\AutoKMS\AutoKMS.exe [729088] (.Activate.) =>HackTool.AutoKMS
[MD5.CCA616647DB9370C88998AE25DA6997F] [APT] [AutoKMSDaily] (.CODYQX4.) -- C:\Windows\AutoKMS\AutoKMS.exe [729088] (.Activate.) =>HackTool.AutoKMS
O39 - APT: AutoKMS - (.CODYQX4.) -- C:\Windows\Tasks\AutoKMS.job [222] =>HackTool.AutoKMS
O39 - APT: AutoKMSDaily - (.CODYQX4.) -- C:\Windows\Tasks\AutoKMSDaily.job [220] =>HackTool.AutoKMS
O39 - APT: AutoKMS - (.CODYQX4.) -- C:\Windows\System32\Tasks\AutoKMS [2454] =>HackTool.AutoKMS
O39 - APT: AutoKMSDaily - (.CODYQX4.) -- C:\Windows\System32\Tasks\AutoKMSDaily [2758] =>HackTool.AutoKMS
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.co.ma
G2 - GCE: Preference [User Data\Default] [adpkifcfcacgmnggcbpbjbkdijciiigm] Bejeweled
G2 - GCE: Preference [User Data\Default] [obnfifcganohemahpomajbhocfkdgmjb] AdF.ly Skipper ?WORKING?
G2 - GCE: Preference [User Data\Default] [pachckjkecffpdphbpmfolblodfkgbhl] vidIQ Vision for YouTube
G2 - GCE: Preference [User Data\Default] [pjejbgheonogbpfkkjigbmahaljipoej] Weather Underground
G2 - GCE: Preference [User Data\Default] [pmdhbojmigmmcbnbiidgcdaofpolkpfc] CantStopPlaying Start
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
O4 - HKLM\..\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe =>.www.IslamicFinder.org
C:\Windows\AutoKMS\AutoKMS.exe =>HackTool.AutoKMS
C:\Windows\Tasks\AutoKMS.job =>HackTool.AutoKMS
C:\Windows\Tasks\AutoKMSDaily.job =>HackTool.AutoKMS
C:\Windows\System32\Tasks\AutoKMS =>HackTool.AutoKMS
C:\Windows\System32\Tasks\AutoKMSDaily =>HackTool.AutoKMS
O42 - Logiciel: Package de pilotes Windows - MediaTek, Inc. (netr28u) Net (10/28/2015 5.01 - (.MediaTek, Inc..) [HKLM] -- B8553418A7006DAB5A8656DBFC9EA3CDE025F5D0 =>.Superfluous.KuzyakovArtur
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage =>.Superfluous.AkamaiHD
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage-journal =>.Superfluous.AkamaiHD
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage =>.Superfluous.AudienceInsights
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal =>.Superfluous.AudienceInsights
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage =>PUP.Optional.Generic
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal =>PUP.Optional.Generic
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.uptodown.com_0.localstorage =>PUP.Optional.UpToDown
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.uptodown.com_0.localstorage-journal =>PUP.Optional.UpToDown
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage =>PUP.Optional.Chatango
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal =>PUP.Optional.Chatango
O87 - FAEL: "{3A6BF1D3-4054-44A3-8B53-677EF5BC55E1}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Common Files\nokia\service layer\a\nsl_host_process.exe (.not file.)
O87 - FAEL: "{3C2F0FC9-82E1-4782-AEC9-DE0CED7FD378}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe (.not file.)
O87 - FAEL: "{588E3830-1F6E-4F22-B8A1-1D239F597AD9}" [Out-None-P17-TRUE] .(...) -- C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe (.not file.)
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
[MD5.CCA616647DB9370C88998AE25DA6997F] [APT] [AutoKMS] (.CODYQX4.) -- C:\Windows\AutoKMS\AutoKMS.exe [729088] (.Activate.) =>HackTool.AutoKMS
[MD5.CCA616647DB9370C88998AE25DA6997F] [APT] [AutoKMSDaily] (.CODYQX4.) -- C:\Windows\AutoKMS\AutoKMS.exe [729088] (.Activate.) =>HackTool.AutoKMS
O39 - APT: AutoKMS - (.CODYQX4.) -- C:\Windows\Tasks\AutoKMS.job [222] =>HackTool.AutoKMS
O39 - APT: AutoKMSDaily - (.CODYQX4.) -- C:\Windows\Tasks\AutoKMSDaily.job [220] =>HackTool.AutoKMS
O39 - APT: AutoKMS - (.CODYQX4.) -- C:\Windows\System32\Tasks\AutoKMS [2454] =>HackTool.AutoKMS
O39 - APT: AutoKMSDaily - (.CODYQX4.) -- C:\Windows\System32\Tasks\AutoKMSDaily [2758] =>HackTool.AutoKMS
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.co.ma
G2 - GCE: Preference [User Data\Default] [adpkifcfcacgmnggcbpbjbkdijciiigm] Bejeweled
G2 - GCE: Preference [User Data\Default] [obnfifcganohemahpomajbhocfkdgmjb] AdF.ly Skipper ?WORKING?
G2 - GCE: Preference [User Data\Default] [pachckjkecffpdphbpmfolblodfkgbhl] vidIQ Vision for YouTube
G2 - GCE: Preference [User Data\Default] [pjejbgheonogbpfkkjigbmahaljipoej] Weather Underground
G2 - GCE: Preference [User Data\Default] [pmdhbojmigmmcbnbiidgcdaofpolkpfc] CantStopPlaying Start
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
O4 - HKLM\..\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe =>.www.IslamicFinder.org
C:\Windows\AutoKMS\AutoKMS.exe =>HackTool.AutoKMS
C:\Windows\Tasks\AutoKMS.job =>HackTool.AutoKMS
C:\Windows\Tasks\AutoKMSDaily.job =>HackTool.AutoKMS
C:\Windows\System32\Tasks\AutoKMS =>HackTool.AutoKMS
C:\Windows\System32\Tasks\AutoKMSDaily =>HackTool.AutoKMS
O42 - Logiciel: Package de pilotes Windows - MediaTek, Inc. (netr28u) Net (10/28/2015 5.01 - (.MediaTek, Inc..) [HKLM] -- B8553418A7006DAB5A8656DBFC9EA3CDE025F5D0 =>.Superfluous.KuzyakovArtur
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage =>.Superfluous.AkamaiHD
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage-journal =>.Superfluous.AkamaiHD
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage =>.Superfluous.AudienceInsights
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal =>.Superfluous.AudienceInsights
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage =>PUP.Optional.Generic
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal =>PUP.Optional.Generic
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.uptodown.com_0.localstorage =>PUP.Optional.UpToDown
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.uptodown.com_0.localstorage-journal =>PUP.Optional.UpToDown
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage =>PUP.Optional.Chatango
C:\Users\Lmaystro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal =>PUP.Optional.Chatango
O87 - FAEL: "{3A6BF1D3-4054-44A3-8B53-677EF5BC55E1}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Common Files\nokia\service layer\a\nsl_host_process.exe (.not file.)
O87 - FAEL: "{3C2F0FC9-82E1-4782-AEC9-DE0CED7FD378}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe (.not file.)
O87 - FAEL: "{588E3830-1F6E-4F22-B8A1-1D239F597AD9}" [Out-None-P17-TRUE] .(...) -- C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe (.not file.)