Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\chakiche mohamed\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2196797711-3197828652-2754627983-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\chakiche mohamed\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
O2 - BHO: (no name) - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} (.Orphan.)
O39 - APT: {D199F0EA-C7BE-47D3-B5D8-0BF0F48EF724} - (...) -- C:\Windows\System32\Tasks\{D199F0EA-C7BE-47D3-B5D8-0BF0F48EF724} [6894] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {F399B2C0-79D5-4A2F-848C-8DD73EC953BF} - (...) -- C:\Windows\System32\Tasks\{F399B2C0-79D5-4A2F-848C-8DD73EC953BF} [6894] (.Orphan.) =>.Superfluous.Orphan
C:\Users\chakiche mohamed\AppData\Roaming\Mozilla\Firefox\Profiles\zw165ivc.default-1466456771736\extensions\{de71f09a-3342-48c5-95c1-4b0f17567554}.xpi =>PUP.Optional.SearchForFirefox
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5} =>.Superfluous.Orphan
P2 - EXT FILE: (.contactus@webinstall.com - Search for Firefox.) -- C:\Users\chakiche mohamed\AppData\Roaming\Mozilla\Firefox\Profiles\zw165ivc.default-1466456771736\extensions\{de71f09a-3342-48c5-95c1-4b0f17567554}.xpi =>PUP.Optional.SearchForFirefox
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Inc.
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Inc.
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-chakichemohamed-chakiche mohamed [3526] =>.Adobe Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3190] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3318] =>.Google Inc.
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} [3032]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3848]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3868]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3624]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3836]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3660]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3844]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{426E2FBB-D54D-449A-9082-025DEDEECA82} [3214]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D199F0EA-C7BE-47D3-B5D8-0BF0F48EF724} [3250]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F399B2C0-79D5-4A2F-848C-8DD73EC953BF} [3286]
O69 - SBI: prefs.js [chakiche mohamed - zw165ivc.default-1466456771736] user_pref("extensions.convertor.DownloadUrl", "http://dxdyitswch3z7.cloudfront.net/adobe_flashplayer_e2c7b.dmg"); =>.Superfluous.CloudfrontNet
FirewallRaz
EmptyPrefetch
EmptyTemp
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\chakiche mohamed\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2196797711-3197828652-2754627983-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\chakiche mohamed\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
O2 - BHO: (no name) - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} (.Orphan.)
O39 - APT: {D199F0EA-C7BE-47D3-B5D8-0BF0F48EF724} - (...) -- C:\Windows\System32\Tasks\{D199F0EA-C7BE-47D3-B5D8-0BF0F48EF724} [6894] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {F399B2C0-79D5-4A2F-848C-8DD73EC953BF} - (...) -- C:\Windows\System32\Tasks\{F399B2C0-79D5-4A2F-848C-8DD73EC953BF} [6894] (.Orphan.) =>.Superfluous.Orphan
C:\Users\chakiche mohamed\AppData\Roaming\Mozilla\Firefox\Profiles\zw165ivc.default-1466456771736\extensions\{de71f09a-3342-48c5-95c1-4b0f17567554}.xpi =>PUP.Optional.SearchForFirefox
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5} =>.Superfluous.Orphan
P2 - EXT FILE: (.contactus@webinstall.com - Search for Firefox.) -- C:\Users\chakiche mohamed\AppData\Roaming\Mozilla\Firefox\Profiles\zw165ivc.default-1466456771736\extensions\{de71f09a-3342-48c5-95c1-4b0f17567554}.xpi =>PUP.Optional.SearchForFirefox
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Inc.
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Inc.
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-chakichemohamed-chakiche mohamed [3526] =>.Adobe Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3190] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3318] =>.Google Inc.
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} [3032]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3848]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3868]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3624]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3836]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3660]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3844]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{426E2FBB-D54D-449A-9082-025DEDEECA82} [3214]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D199F0EA-C7BE-47D3-B5D8-0BF0F48EF724} [3250]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F399B2C0-79D5-4A2F-848C-8DD73EC953BF} [3286]
O69 - SBI: prefs.js [chakiche mohamed - zw165ivc.default-1466456771736] user_pref("extensions.convertor.DownloadUrl", "http://dxdyitswch3z7.cloudfront.net/adobe_flashplayer_e2c7b.dmg"); =>.Superfluous.CloudfrontNet