Posté le 9 août 2018
Télécharger | Reposter | Largeur fixe

start::
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
EmptyTemp:
HKU\S-1-5-21-3186512384-3521834265-2984194369-1001\...\Run: [SharewareOnSale Notifier] => C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe
CHR HKLM-x32\...\Chrome\Extension: [eadnlkgpakfjkgpgndbpmenoacfjahgo] - hxxps://clients2.google.com/service/update2/crx
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
R3 EnigmaFileMonDriver; C:\WINDOWS\system32\Drivers\EnigmaFileMonDriver.sys
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
2018-08-09 08:31 - 2018-08-09 13:13 - 000061624 _____ (EnigmaSoft Limited) C:\WINDOWS\system32\Drivers\EnigmaFileMonDriver.sys
2018-08-09 08:30 - 2018-08-09 08:30 - 000001022 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2018-08-09 08:30 - 2018-08-09 08:30 - 000000000 ____D C:\sh5ldr
2018-08-09 08:30 - 2018-08-09 08:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2018-08-09 08:30 - 2018-08-09 08:30 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2018-08-09 08:28 - 2018-08-09 08:28 - 000000000 ____D C:\Program Files\EnigmaSoft
2018-08-07 08:36 - 2018-08-09 15:05 - 000000000 ____D C:\AdwCleaner
2018-08-07 08:32 - 2018-08-07 08:32 - 008206624 _____ (Malwarebytes) C:\Users\Agnès\Desktop\adwcleaner-7-0-7-0.exe
2018-08-06 17:54 - 2018-08-06 17:54 - 000000000 ____D C:\WINDOWS\System32\Tasks\Pukal
2018-08-06 17:54 - 2018-08-06 17:54 - 000000000 ____D C:\Users\Agnès\AppData\Roaming\356687BD-2DDD-4C66-943C-2B47F32BD654
2018-08-06 17:53 - 2018-08-06 17:53 - 000000000 ____D C:\Users\Agn�s
2018-08-04 18:12 - 2018-08-04 18:12 - 000000000 ____D C:\Users\Agnès\AppData\Roaming\Mystart-One
2018-08-04 18:10 - 2018-08-07 08:41 - 000000000 ____D C:\ProgramData\BSD
2018-08-09 13:59 - 2016-09-24 07:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-08-09 13:39 - 2017-07-24 07:58 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-08-09 13:39 - 2017-07-24 07:58 - 000002482 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-08-09 13:39 - 2017-07-24 07:58 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-08-09 13:39 - 2016-09-24 07:30 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-08-09 13:39 - 2016-09-24 07:30 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-08-09 13:39 - 2016-09-24 07:30 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-08-07 08:44 - 2017-03-22 11:02 - 000000000 ____D C:\ProgramData\mcafee
Task: {1534A9FB-DC46-432B-8769-688764B12465} - System32\Tasks\Pukal\{356687BD-2DDD-4C66-943C-2B47F32BD654} => C:\Users\Agnès\AppData\Roaming\356687BD-2DDD-4C66-943C-2B47F32BD654\Pukal.exe
Task: {494A8F86-9539-4386-8063-0181CC9367E0} - \Microsoft\Windows\OrangeUpdate_Install -> Pas de fichier
Task: {A1A5E98F-1187-45BE-92BD-3B223DBBE7A0} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe
Task: {B50BC672-BA20-421E-A29C-3C5308403D6F} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
2018-05-20 18:17 - 2018-05-20 18:17 - 001008816 _____ () C:\ProgramData\SharewareOnSale Notifier\SharewareOnSale Notifier.exe
cmd: ipconfig /flushdns
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.