Posté le 2 octobre 2020
Télécharger | Reposter | Largeur fixe

start::
closeprocesses:
createrestorepoint:
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Spybot - Search and Destroy (Disabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
BHO: Pas de nom -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> Pas de fichier
BHO-x32: Pas de nom -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> Pas de fichier
FirewallRules: [TCP Query User{E4AE20B8-ACF9-4512-B4C7-4CD174364EBA}C:\users\fabien\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Allow) C:\users\fabien\appdata\local\programs\opera\70.0.3728.154\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{E7BA9675-7A0C-4FA0-943F-C65F50B43B01}C:\users\fabien\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Allow) C:\users\fabien\appdata\local\programs\opera\70.0.3728.154\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{798A15B8-5D00-4090-A595-7BCE4DFD045E}C:\users\fabien\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\fabien\appdata\local\programs\opera\70.0.3728.178\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{504E22F6-0224-415E-8772-FF522FB99017}C:\users\fabien\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\fabien\appdata\local\programs\opera\70.0.3728.178\opera.exe => Pas de fichier
C:\Users\Fabien\AppData\Roaming\KMSPickerHost
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
InternetURL: C:\Users\Fabien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AssignedAccessManager.url -> URL: file:///C:\Users\Fabien\AppData\Roaming\KMSPickerHost\AssignedAccessManager.vbs
GroupPolicy: Restriction ? <==== ATTENTION
Task: {0D289D70-1672-4AC3-873C-D6CCAAA0533A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {0FCE9C14-8D72-4F4C-820C-72AF52705C45} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1B72FB83-2A8D-441E-BBEE-9AD7AE72FBBF} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {20CBCA4F-0242-438C-9E69-976E4C698943} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe
Task: {2245E408-9F3B-4380-94FB-DD6D494B59B2} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {23E95ABF-620A-4BAB-9C89-5EAE049E1642} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {31EBBE69-CBEF-44C8-BC43-E8F2711498F1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {3B8B62E6-5F8A-40F7-831E-73D8211068D9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {3DD69B2A-9A3D-442E-BD23-9E30CD818EF9} - System32\Tasks\SafeZone scheduled Autoupdate 1448807999 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {48290341-E61E-47E5-B705-8EA22872BC83} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {48E12821-C9FD-4A52-AA98-C6E1C8DA8333} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {4E3CD602-F96D-4F98-B631-03098C06CF98} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {4EF326F2-E9BF-45AD-9EA6-76A4819F7FDB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {500D4972-53DF-4929-AEE7-56940F697862} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {54D74522-F707-40D2-8951-99514F3D3A30} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {555E85D2-72DA-4AFF-B595-A926420D0067} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {6105D3E6-7275-439A-9895-6AE8F9B1B058} - System32\Tasks\avastBCLRestartS-1-5-21-3016340654-2902356786-3485786116-1000 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Task: {61D81368-2574-4B7E-A174-5200EC4A6866} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {66CBC89F-CADA-4648-B81A-0AB4AD0FB1AA} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {6BAD4976-FE52-4B87-8D0F-F21A95F6087A} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {76C95C2A-E066-42B4-B1E2-D4BA461CDE27} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {76E3E63E-0245-4939-91F0-EF410594A971} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {7A46314B-3427-448E-9405-FBB8D8D3A2A5} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7CFB1100-15C9-4D1F-B98B-FDCF44DD5399} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {7D5E6249-8C5D-4E2A-ACA6-6FABE8336ED2} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {82E46249-758D-4424-97E4-3E5498C494DE} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8351384E-AE2A-4544-91D7-025CA0DB2A3F} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {91BA1271-037A-4316-9096-E1D9A23A6FA8} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {94AEDA40-7A87-4A43-A760-FF0BDB98CBE0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9B7D0496-7D2C-4D1D-80B3-9BCD118409A7} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AE637CC7-47D0-455B-8AA1-77CB534550BF} - \AVAST Software\Avast settings backup -> Pas de fichier <==== ATTENTION
Task: {B2F9054A-9D79-4C8F-92A3-16BF6F45A5D6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {BA0DFD69-360F-47DF-A6C2-C1144D47A03F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BBADC59E-DBAE-4E84-A5E2-DB577DB396BF} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C1D1B5AD-94CB-4EEB-99AA-856275BFCDE7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {C6509B92-F56D-493E-812D-D9420550B799} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {D0045B41-0D8E-423B-8302-5D756958B68C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D60190E5-F0A7-41D5-AA87-3F53D200BABA} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {DA001B37-4A2B-46CD-95BB-F8A2DB20A5B8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {E1F0B9AB-0572-4BE4-B9CF-3F01146FEBCB} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EDB2BDC5-3D68-466D-A897-56D6FAFA8BC4} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F5F25DB5-3B05-461E-A7D2-3A9C8578511D} - System32\Tasks\{44AC126A-1C97-49B8-A10F-2EAE21322CAE} => C:\Windows\system32\pcalua.exe -a F:\Téléchargements\Install_CopyTransControlCenter.exe -d F:\Téléchargements
Task: {F61AD16D-EA45-42AB-8F74-DAA3499FD9AA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F62D470E-4B86-495D-B857-12E61BC58D37} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FDE4E254-3CB6-4C28-B8F0-DCC2EA3D7BAE} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{4bc57eb9-89de-4528-8e4c-99c3427eb2f2}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{7a1bc9b5-de1e-484b-8843-cf3e56f4f9bd}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{93348ec2-343e-49a8-9cb8-9458a2b23bf6}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9ee017ee-ed7a-4d8c-b03f-881b1fa8189d}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9fa830e2-9bb8-476e-845c-48a79c75d426}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{b37ca6bc-ee37-41da-b82c-a08167fe196c}: [DhcpNameServer] 192.168.1.250
Tcpip\..\Interfaces\{c9dbb7ad-7609-440b-8622-b8bee73ea86f}: [DhcpNameServer] 172.20.10.1
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Pas de fichier]
CHR Notifications: Default -> hxxps://kwn0.readfulexe.club; hxxps://www.zyngapoker.com
CHR DefaultSearchURL: Profile 1 -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Profile 1 -> Yahoo
CHR DefaultSuggestURL: Profile 1 -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
C:\Users\Fabien\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh
C:\Users\Fabien\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\emhginjpijfggbofeediiojmdlmlkoik
C:\Users\Fabien\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
C:\Users\Fabien\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fabhkdeopjkcpkmofliimbjckmocfiom
C:\Users\Fabien\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fdbpcigaolookbahgdofnimidinicfid
C:\Users\Fabien\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki
OPR Notifications: hxxps://web.whatsapp.com; hxxps://www.zyngapoker.com
2020-09-21 13:04 - 2019-09-03 09:25 - 000000000 __RHD C:\Users\Fabien\AppData\Roaming\KMSPickerHost
cmd: type C:\Users\Fabien\AppData\Local\dsi1.dat
cmd: type C:\Program Files\VMS\clean.bat
cmd: type C:\Program Files (x86)\NetSurveillance\CMS\reg.bat
emptytemp:
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.