Posté le 4 janvier 2019
Télécharger | Reposter | Largeur fixe

start::
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
EmptyTemp:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2721924986-728009577-3007495128-1000\...\Run: [Chromium] => c:\users\papa\appdata\local\chromium\application\chrome.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Windows Mail\WinMail.exe
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files (x86)\Windows Mail\WinMail.exe
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=
SearchScopes: HKU\S-1-5-21-2721924986-728009577-3007495128-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=
SearchScopes: HKU\S-1-5-21-2721924986-728009577-3007495128-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=
Toolbar: HKU\S-1-5-21-2721924986-728009577-3007495128-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
FF SearchPlugin: C:\Users\Papa\AppData\Roaming\Mozilla\Firefox\Profiles\fbzygdjp.default-1546190535208\searchplugins\search powered by yahoo!.xml
CHR DefaultSearchURL: Default -> hxxp://srchbar.com/?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2721924986-728009577-3007495128-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2721924986-728009577-3007495128-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2721924986-728009577-3007495128-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lomojjnmhlhdepbfoknpkenickajcphi] - C:\Program Files (x86)\WinZip Courier\wzwmcgc.crx [2017-08-23]
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
R2 ByteFenceService; c:\program files\bytefence\ByteFenceService.exe
R2 rtop; c:\program files\bytefence\rtop\bin\rtop_svc.exe
S2 VideoPump; pas de ImagePath
S3 MSICDSetup; \??\F:\CDriver64.sys [X]
S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [X]
S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
S3 NTIOLib_1_0_T; \??\C:\Program Files (x86)\MSI\OTPService\NTIOLib_X64.sys [X]
2019-01-01 23:24 - 2019-01-01 23:24 - 000000000 ____D C:\Users\Papa\AppData\Local\{FCB1CAED-D819-A655-B581-83BD91E97F25}
2019-01-01 23:24 - 2019-01-01 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
2019-01-01 23:01 - 2019-01-01 23:01 - 000000000 ____D C:\ProgramData\ByteFence
2019-01-01 22:22 - 2019-01-01 23:22 - 000000000 ____D C:\ProgramData\{A0726511-2A30-EFD7-ACF6-719536B4FA5B}
2019-01-01 22:22 - 2019-01-01 22:49 - 000000000 ____D C:\Users\Papa\AppData\Local\chromium
2019-01-01 22:21 - 2019-01-04 16:22 - 000000000 ____D C:\Program Files\ByteFence
2019-01-01 22:21 - 2019-01-04 07:58 - 000003316 _____ C:\Windows\System32\Tasks\ByteFence
2019-01-01 21:16 - 2019-01-01 21:16 - 000000040 ____H C:\2864BC9806CB
ContextMenuHandlers1-x32: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Pas de fichier
ContextMenuHandlers4-x32: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Pas de fichier
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Pas de fichier
Task: {C37FBBA7-299E-45B3-9C5D-F21FE5744AB2} - System32\Tasks\ByteFence => c:\program files\bytefence\ByteFence.exe
Task: {C9BC90CB-FFF7-4CF1-996E-EF35A5676DC5} - System32\Tasks\Opera scheduled assistant Autoupdate 1544961318 => C:\Users\Papa\AppData\Local\Programs\Opera\launcher.exe
HKU\S-1-5-21-2721924986-728009577-3007495128-1000\Software\Classes\.exe: => <==== ATTENTION
HKU\S-1-5-21-2721924986-728009577-3007495128-1000\Software\Classes\.scr: => <==== ATTENTION
HKU\S-1-5-21-2721924986-728009577-3007495128-1000\Software\Classes\.bat: => <==== ATTENTION
HKU\S-1-5-21-2721924986-728009577-3007495128-1000\Software\Classes\.com: => <==== ATTENTION
HKU\S-1-5-21-2721924986-728009577-3007495128-1000\Software\Classes\.cmd: => <==== ATTENTION
HKU\S-1-5-21-2721924986-728009577-3007495128-1000\Software\Classes\.reg: => <==== ATTENTION
IE trusted site: HKU\S-1-5-21-2721924986-728009577-3007495128-1000\...\webcompanion.com -> hxxp://webcompanion.com
cmd: netsh winsock reset
cmd: ipconfig /flushdns
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.