Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
O38 - TASK: {28E9EAE1-C2D4-45CD-9CFB-1180D5FA486F}[\Baidu LiveUpdate] - (.Baidu, Inc. - Baidu PC Faster LiveUpdate.) -- C:\Program Files\Baidu WiFiHotspot\liveupdate.exe [497632] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O38 - TASK: {BADD67F3-0CF0-4B7E-94C8-85776DC02456}[\{12D2E961-61E3-44C9-9F89-ACB4ECD23563}] - (.Baidu, Inc. - Baidu Wifi Sharing.) -- C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe [2033120] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O4 - GS\Desktop [Administrator]: Baidu WiFi Hotspot.lnk . (.Baidu, Inc. - Baidu Wifi Sharing.) C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe -shortcut =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O4 - GS\Desktop [Guest]: Baidu WiFi Hotspot.lnk . (.Baidu, Inc. - Baidu Wifi Sharing.) C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe -shortcut =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O4 - GS\Desktop [????]: Baidu WiFi Hotspot.lnk . (.Baidu, Inc. - Baidu Wifi Sharing.) C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe -shortcut =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O17 - HKLM\System\CCS\Services\Tcpip\..\{8D3F98BC-1054-4B49-BA25-724D13BF9B8F}: NameServer = 77.88.8.7,77.88.8.3 =>.Russian Federation Moscow Yandex Llc
O17 - HKLM\System\CCS\Services\Tcpip\..\{7E01097D-C29C-4596-B3F3-D58438E4A0B2}: DhcpNameServer = 192.168.0.1 192.168.0.1 =>.Local IP Adress
O42 - Logiciel: Baidu WiFi Hotspot - (.Baidu, Inc..) [HKLM] -- Baidu WiFi Hotspot =>.Baidu, Inc.
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\Baidu WiFiHotspot
O43 - CFD: 14/11/2017 - [] D -- C:\Program Files\Baidu WiFiHotspot =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu WiFi Hotspot
O43 - CFD: 06/04/2017 - [] D -- C:\Users\????\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 29/04/2016 - [] D -- C:\Users\????\AppData\Local\MiniService =>.Baidu Technology
O43 - CFD: 18/11/2017 - [0] D -- C:\Users\????\Desktop\BaiduWifi
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O38 - TASK: {2C123E9E-3E46-48C9-A6B5-053A685CC2E4}[\UninstMiniWifi] - (...) -- C:\Users\99DA~1\AppData\Local\Temp\MU8A25.bat (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {424EFAC2-E2A3-43E4-AAD6-5E84888D0D88}[\{ABE190F5-B82D-4E0A-86E4-C7C8F7E8719A}] - (...) -- C:\Program Files\Nox\bin\Nox.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {45892B24-0783-47FF-BE41-521099853EA8}[\Microsoft\Windows\Media Center\mcupdate] - (...) -- C:\Windows\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {50CAC92A-3AA9-459E-9201-3E9B64682094}[\{16F715E6-D8E5-42C9-9FF0-335C149C2F8C}] - (...) -- C:\Program Files\Nox\bin\Nox.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {5733AF9A-5B67-49BD-9E7E-EBABCF2F9E1A}[\{633971A3-B0AB-4A9E-87D7-8C41E7BA7B83}] - (...) -- C:\Users\????\Desktop\Tech 4 All Wi-Fi Hack\2jumpstart.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {597CFEF3-3957-437F-AD25-3580C6D77E02}[\Microsoft\Windows\Media Center\mcupdate_scheduled] - (...) -- C:\Windows\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {5B184694-64C3-4633-94C5-945B3FA561D6}[
O38 - TASK: {5B2BAA8B-F86E-4001-A605-6D866FC62EE4}[\{659D5E10-10E2-4462-B254-B258EB876CF5}] - (...) -- C:\Program Files\Nox\bin\Nox_unload.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {67094BA2-FECA-4F2B-A9C2-0EB45C849065}[\{6D782A5C-9D63-4AC6-BAC0-13D6D060679B}] - (...) -- C:\Users\????\Desktop\Waircut V1.4\wAirCut.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {80F5CC05-8105-4E78-813E-C6C67E4D1D8F}[\Microsoft\Windows\Media Center\StartRecording] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {81AF2E46-1AAF-4B4F-B693-4D950B505C86}[\{0C2C8CD4-12CA-45B5-AD17-5838C1E65043}] - (...) -- C:\Users\????\Desktop\VGA Customized for QT10\IEGD_10_3_Windows\Utilities\Setup.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {89C86EB4-E708-49ED-944F-A82221AEF84C}[\{AD245F7F-327B-4308-B637-3523FC182F92}] - (...) -- C:\Users\????\Desktop\airsnort-0.2.7e\bin\airsnort.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {A74C8925-0585-47EE-A3C6-1F33DEE428BC}[\{606AEC81-1C21-46F2-8E01-DDC3A6F8CDBB}] - (...) -- C:\Users\????\Desktop\airsnort-0.2.7e\bin\airsnort.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {BEE93C25-6F8D-4441-A021-2B3556BB1F37}[\{3395D4F3-55A2-4E54-B11D-AC96738BBF0E}] - (...) -- C:\Users\????\Downloads\Programs\DuOSInstaller.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {FA6E8C84-C0A6-441C-B4BD-B23AA8295DC9}[\Microsoft\Windows\Media Center\RecordingRestart] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
G0 - GCSP: Preferences [User Data\Default][HomePage] http://me-cdn.effectivemeasure.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://s.effectivemeasure.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://adservice.google.dz =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://stats.g.doubleclick.net
G2 - GCE: Preference [????][User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [????][User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
HKCU\SOFTWARE\Flux
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui =>.SUP.Orphan
O43 - CFD: 16/09/2012 - [] D -- C:\Users\????\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux =>.Stereopsis
HKLM\SOFTWARE\Software =>.Unknown
O43 - CFD: 16/04/2016 - [] D -- C:\ProgramData\AVG2015 =>.AVG Software
O43 - CFD: 16/04/2016 - [] D -- C:\ProgramData\MFAData =>.AVG Software
O43 - CFD: 10/11/2016 - [] D -- C:\Users\????\AppData\Local\Avg2015 =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\Users\????\AppData\Local\MFAData =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Avg2015 =>.AVG Software
O43 - CFD: 16/04/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\MFAData =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\AVG2015 =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 05/05/2017 - [] D -- C:\Program Files\Common Files\AV =>.Avast
FirewallRaz
EmptyPrefetch
EmptyTemp
O38 - TASK: {28E9EAE1-C2D4-45CD-9CFB-1180D5FA486F}[\Baidu LiveUpdate] - (.Baidu, Inc. - Baidu PC Faster LiveUpdate.) -- C:\Program Files\Baidu WiFiHotspot\liveupdate.exe [497632] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O38 - TASK: {BADD67F3-0CF0-4B7E-94C8-85776DC02456}[\{12D2E961-61E3-44C9-9F89-ACB4ECD23563}] - (.Baidu, Inc. - Baidu Wifi Sharing.) -- C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe [2033120] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O4 - GS\Desktop [Administrator]: Baidu WiFi Hotspot.lnk . (.Baidu, Inc. - Baidu Wifi Sharing.) C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe -shortcut =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O4 - GS\Desktop [Guest]: Baidu WiFi Hotspot.lnk . (.Baidu, Inc. - Baidu Wifi Sharing.) C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe -shortcut =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O4 - GS\Desktop [????]: Baidu WiFi Hotspot.lnk . (.Baidu, Inc. - Baidu Wifi Sharing.) C:\Program Files\Baidu WiFiHotspot\WifiHotspot.exe -shortcut =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O17 - HKLM\System\CCS\Services\Tcpip\..\{8D3F98BC-1054-4B49-BA25-724D13BF9B8F}: NameServer = 77.88.8.7,77.88.8.3 =>.Russian Federation Moscow Yandex Llc
O17 - HKLM\System\CCS\Services\Tcpip\..\{7E01097D-C29C-4596-B3F3-D58438E4A0B2}: DhcpNameServer = 192.168.0.1 192.168.0.1 =>.Local IP Adress
O42 - Logiciel: Baidu WiFi Hotspot - (.Baidu, Inc..) [HKLM] -- Baidu WiFi Hotspot =>.Baidu, Inc.
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\Baidu WiFiHotspot
O43 - CFD: 14/11/2017 - [] D -- C:\Program Files\Baidu WiFiHotspot =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu WiFi Hotspot
O43 - CFD: 06/04/2017 - [] D -- C:\Users\????\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 29/04/2016 - [] D -- C:\Users\????\AppData\Local\MiniService =>.Baidu Technology
O43 - CFD: 18/11/2017 - [0] D -- C:\Users\????\Desktop\BaiduWifi
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O38 - TASK: {2C123E9E-3E46-48C9-A6B5-053A685CC2E4}[\UninstMiniWifi] - (...) -- C:\Users\99DA~1\AppData\Local\Temp\MU8A25.bat (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {424EFAC2-E2A3-43E4-AAD6-5E84888D0D88}[\{ABE190F5-B82D-4E0A-86E4-C7C8F7E8719A}] - (...) -- C:\Program Files\Nox\bin\Nox.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {45892B24-0783-47FF-BE41-521099853EA8}[\Microsoft\Windows\Media Center\mcupdate] - (...) -- C:\Windows\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {50CAC92A-3AA9-459E-9201-3E9B64682094}[\{16F715E6-D8E5-42C9-9FF0-335C149C2F8C}] - (...) -- C:\Program Files\Nox\bin\Nox.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {5733AF9A-5B67-49BD-9E7E-EBABCF2F9E1A}[\{633971A3-B0AB-4A9E-87D7-8C41E7BA7B83}] - (...) -- C:\Users\????\Desktop\Tech 4 All Wi-Fi Hack\2jumpstart.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {597CFEF3-3957-437F-AD25-3580C6D77E02}[\Microsoft\Windows\Media Center\mcupdate_scheduled] - (...) -- C:\Windows\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {5B184694-64C3-4633-94C5-945B3FA561D6}[
O38 - TASK: {5B2BAA8B-F86E-4001-A605-6D866FC62EE4}[\{659D5E10-10E2-4462-B254-B258EB876CF5}] - (...) -- C:\Program Files\Nox\bin\Nox_unload.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {67094BA2-FECA-4F2B-A9C2-0EB45C849065}[\{6D782A5C-9D63-4AC6-BAC0-13D6D060679B}] - (...) -- C:\Users\????\Desktop\Waircut V1.4\wAirCut.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {80F5CC05-8105-4E78-813E-C6C67E4D1D8F}[\Microsoft\Windows\Media Center\StartRecording] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {81AF2E46-1AAF-4B4F-B693-4D950B505C86}[\{0C2C8CD4-12CA-45B5-AD17-5838C1E65043}] - (...) -- C:\Users\????\Desktop\VGA Customized for QT10\IEGD_10_3_Windows\Utilities\Setup.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {89C86EB4-E708-49ED-944F-A82221AEF84C}[\{AD245F7F-327B-4308-B637-3523FC182F92}] - (...) -- C:\Users\????\Desktop\airsnort-0.2.7e\bin\airsnort.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {A74C8925-0585-47EE-A3C6-1F33DEE428BC}[\{606AEC81-1C21-46F2-8E01-DDC3A6F8CDBB}] - (...) -- C:\Users\????\Desktop\airsnort-0.2.7e\bin\airsnort.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {BEE93C25-6F8D-4441-A021-2B3556BB1F37}[\{3395D4F3-55A2-4E54-B11D-AC96738BBF0E}] - (...) -- C:\Users\????\Downloads\Programs\DuOSInstaller.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {FA6E8C84-C0A6-441C-B4BD-B23AA8295DC9}[\Microsoft\Windows\Media Center\RecordingRestart] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
G0 - GCSP: Preferences [User Data\Default][HomePage] http://me-cdn.effectivemeasure.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://s.effectivemeasure.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://adservice.google.dz =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://stats.g.doubleclick.net
G2 - GCE: Preference [????][User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [????][User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
HKCU\SOFTWARE\Flux
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui =>.SUP.Orphan
O43 - CFD: 16/09/2012 - [] D -- C:\Users\????\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux =>.Stereopsis
HKLM\SOFTWARE\Software =>.Unknown
O43 - CFD: 16/04/2016 - [] D -- C:\ProgramData\AVG2015 =>.AVG Software
O43 - CFD: 16/04/2016 - [] D -- C:\ProgramData\MFAData =>.AVG Software
O43 - CFD: 10/11/2016 - [] D -- C:\Users\????\AppData\Local\Avg2015 =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\Users\????\AppData\Local\MFAData =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Avg2015 =>.AVG Software
O43 - CFD: 16/04/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\MFAData =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\AVG2015 =>.AVG Software
O43 - CFD: 09/02/2015 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 05/05/2017 - [] D -- C:\Program Files\Common Files\AV =>.Avast