Posté le 26 janvier 2019
Télécharger | Reposter | Largeur fixe

start::
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
EmptyTemp:
HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [mbot_fr_237] => [X]
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKU\S-1-5-21-124100522-399022557-2976297761-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-124100522-399022557-2976297761-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?p=
HKU\S-1-5-21-124100522-399022557-2976297761-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?p=
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKU\S-1-5-21-124100522-399022557-2976297761-1001 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=
SearchScopes: HKU\S-1-5-21-124100522-399022557-2976297761-1002 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=
SearchScopes: HKU\S-1-5-21-124100522-399022557-2976297761-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.delta-homes.com/?type=
CHR HKU\S-1-5-21-124100522-399022557-2976297761-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
S2 McAfee SiteAdvisor Service; "c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe" [X]
2019-01-26 19:33 - 2019-01-26 19:33 - 007320272 _____ (Malwarebytes) C:\Users\Asus\Downloads\adwcleaner_7.2.6.0.exe
2019-01-26 19:12 - 2019-01-26 19:12 - 002753248 _____ (Solvusoft ) C:\Users\Asus\Downloads\Setup_WinThruster_2018.exe
2019-01-26 18:00 - 2019-01-26 19:11 - 000000000 ____D C:\ProgramData\TSR7Settings
2019-01-18 22:16 - 2015-10-28 07:13 - 000003080 _____ C:\WINDOWS\System32\Tasks\Cooking Browser
2019-01-18 22:16 - 2015-07-31 09:42 - 000003078 _____ C:\WINDOWS\System32\Tasks\Balance Download
Task: {06E2AB88-6F5C-438C-BAE1-B6CBD2BDCDDA} - System32\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-5_user => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-5.exe
Task: {09A36DD0-F5B9-4482-A579-BEAAF95F196A} - System32\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-4 => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-4.exe
Task: {238884D6-7BBF-4CEA-B763-A651A5F60E83} - System32\Tasks\Cooking Browser => C:\WINDOWS\system32\rundll32.exe "C:\Users\Asus\AppData\Local\Cooking Browser\xBin\CookingBrowser.dll",#3
Task: {483DFD98-45F9-460E-B739-72865F1E4E38} - \{D66A226A-2A50-4ED0-95FA-9CF6FE8C294A} -> Pas de fichier
Task: {80899305-E51F-4CAC-834E-B9310737C5E2} - System32\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-3 => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-3.exe
Task: {8519DADF-47C9-4614-B038-83ADEA3E5C11} - System32\Tasks\Balance Download => C:\WINDOWS\system32\rundll32.exe "C:\Users\Asus\AppData\Local\Balance Download\Bin\BalanceDownload.dll",#3
Task: {8595628D-CE48-478B-A59B-383513B4A42F} - System32\Tasks\Virtual Pool2 => C:\WINDOWS\system32\rundll32.exe "C:\Users\Asus\AppData\Local\Virtual Pool\{85E25064-9BE5-70DC-E19F-E352F3966275}\ams.dll",#1
Task: {92FA71E7-199B-44DA-9E2A-F83AF65CA7CD} - System32\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-1 => C:\Program Files (x86)\SmartSaver+ 3\SmartSaver+ 3-codedownloader.exe
Task: {A233F16A-E7F7-44D3-9F19-48B59B4DAC9D} - System32\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-11 => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-11.exe
Task: {A8F513FA-4764-4CB1-B010-1F711DC20B3D} - \{E841723D-8D39-16F0-5265-B7A2BC2BC3F5} -> Pas de fichier
Task: {B39EFEFE-47A6-4458-BB4E-94D8D9FA9781} - System32\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-5 => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-5.exe
Task: C:\WINDOWS\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-1.job => C:\Program Files (x86)\SmartSaver+ 3\SmartSaver+ 3-codedownloader.exe
Task: C:\WINDOWS\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-11.job => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-11.exe
Task: C:\WINDOWS\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-3.job => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-3.exe
Task: C:\WINDOWS\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-4.job => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-4.exe
Task: C:\WINDOWS\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-5.job => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-5.exe
Task: C:\WINDOWS\Tasks\dacec62c-8184-4ac9-8a89-29ee43c519d3-5_user.job => C:\Program Files (x86)\SmartSaver+ 3\dacec62c-8184-4ac9-8a89-29ee43c519d3-5.exe
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
cmd: ipconfig /flushdns
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.