start:: closeprocesses: createrestorepoint:... - TextUp

Posté le 31 octobre 2020
Télécharger | Reposter | Largeur fixe

start::
closeprocesses:
createrestorepoint:
HKU\S-1-5-21-4237852062-426818469-3353276117-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5gLnn6RDmsiCVheyiVbXHjPzmjxgkfcPGJ9cG9PZZXAyv3Ev53upoQ8AQPfSk8eyr4%2FTG%2BpN5Gtekb6apKpAuJQ%2FeWMEWLq2%2FqTRm43K%2B8a8CUUXs5llquhGZnxf78VFVr6kqy3qpqVaWJpGj48icLDi33MYr0qDLtu1QaRXL%2BjHOZ795LrJ861Mnj5lgjjKydXG%2BTzGXokA5bd%2BguxDAInUJ5aeKYlE38nJPYkQBdhgGMGMov9aks8R2FgD6czQbtN1nD8iyrANZzopnknGIAoFfEEV4aOFWS18wuVWp4%2FO8%2BNtadCNv7gfBinl%2FFwX6w%3D%3D
SearchScopes: HKU\S-1-5-21-4237852062-426818469-3353276117-1001 -> DefaultScope {D6A08B19-FF53-452E-9154-BE2D15454E2B} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5gVNNdRha%2BprsiIuCZTNAlht8NJEqgYzGSRntYjgge2WglDrTMs2%2BhPdI9gMkg6youPQbM%2BwEKL2YciHPHJbZyoOO%2BWbleSFDra5xqLKHpH7nDJqs90KMSMGZ81wHlRZ%2Fq4R3BqM8RSccecnUAiPSmofSnV%2BpcZvvdauqxWwpt9bjaiKbSLiSKQvNZzbA%2B5xpa2FONsQyJ%2Ftkeb7zuz0NrjxSERM%2FKwY686%2B5iPw7OoPO3DWMKy7ozzoRZUqFgK7KJQZqLrAst1v998wX7A5E%2FryLNvFvw7dAWR924r5tVTOK%2BE3KVXniCBtyb8iYsNU6w%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4237852062-426818469-3353276117-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_aom0mjz59bdfhjls13_20_21_ssg75&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutC0CtC0BtD0D0F0DyEtA0E0AyCtCtB0FtN0D0Tzu0StAtDyCtCtN1L2XzuyDtFtDtFtDtFyByDtN1L1Czu1ByE1VyDtN1L1G1B1V1N2Y1L1Qzu2StB0DyDtDyByCtCtDtGtB0AyCtBtGyBtDtByBtGyC0C0FyDtGtDtCyCyDtAtD0BtCzy0E0F0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzzzz1OyByBtA1TtG1P1OyD1StGyEtAtB1StG1StB1P1PtG1S1PtD1SzyzytD1TyB1R1P1O2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDzzzyzzyByByByDyB%26cr%3D809379626%26a%3Dwsg_aom0mjz59bdfhjls13_20_21_ssg75%26os_ver%3D10.0%26os%3DWindows%2B10%2BEnterprise&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4237852062-426818469-3353276117-1001 -> {D6A08B19-FF53-452E-9154-BE2D15454E2B} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5gVNNdRha%2BprsiIuCZTNAlht8NJEqgYzGSRntYjgge2WglDrTMs2%2BhPdI9gMkg6youPQbM%2BwEKL2YciHPHJbZyoOO%2BWbleSFDra5xqLKHpH7nDJqs90KMSMGZ81wHlRZ%2Fq4R3BqM8RSccecnUAiPSmofSnV%2BpcZvvdauqxWwpt9bjaiKbSLiSKQvNZzbA%2B5xpa2FONsQyJ%2Ftkeb7zuz0NrjxSERM%2FKwY686%2B5iPw7OoPO3DWMKy7ozzoRZUqFgK7KJQZqLrAst1v998wX7A5E%2FryLNvFvw7dAWR924r5tVTOK%2BE3KVXniCBtyb8iYsNU6w%3D%3D&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4237852062-426818469-3353276117-1001 -> {DAA08B19-FF53-452E-9154-BE2D15454E2B} URL =
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {26665402-94D5-41EE-9374-FFF4F318192D} - System32\Tasks\easyxplore_run => C:\Users\Megaport\AppData\Local\Programs\easyxplore\EasyXplore.exe <==== ATTENTION
Task: {27873685-BADD-4A0D-8751-42C5BB9746D5} - System32\Tasks\easyxplore_chk => C:\Users\Megaport\AppData\Local\Programs\easyxplore\EasyXplore.exe <==== ATTENTION
Task: {88289490-5135-4910-A4B6-57B780C2FBD0} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-4237852062-426818469-3353276117-1001Core => C:\Users\Megaport\AppData\Local\easyxplore\Update\easyxploreUpdate.exe <==== ATTENTION
Task: {F60D11A9-D190-490C-835D-E158292CEDF4} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-4237852062-426818469-3353276117-1001UA => C:\Users\Megaport\AppData\Local\easyxplore\Update\easyxploreUpdate.exe <==== ATTENTION
Edge HomeButtonPage: HKU\S-1-5-21-4237852062-426818469-3353276117-1001 -> hxxps://fr.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5muhCwyD2RyUclkbVneiXvB7BYN3J6Nb7A7jXC9aIhrIjox%2BlHbnRkRfcGaFRTi7%2FjlarA9i6CZ7vLiiJzIgh6bogBOmyASHPiyBz0Be9mgtvxg9pDCH8lf6kiADLL%2F%2FQBUWQ4YoclzgFYYEoEmqNiUB8IH4q8FC5Nwu5ccmrgkGVdlqVXQoOPN%2BI2U1w8V%2BMQ51eZdLAYb3QyLvrwLCwCL2DSbEHhmIsWBWI0TT6%2FVAtqi02I2mnSSqAdd9hYYRJ1B1qI%2FW83bERz4n5Ca3jHPuH%2BhwxLHeLyvTse7VWkPfR%2FI%2FV9YPi9hnGrv6Mtpk5g%3D%3D
Edge Profile: C:\Users\Megaport\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-25]
Edge HomePage: Default -> hxxps://fr.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5oIkU5LOmi4YCz3Yf0L6AOu1rOuTl%2B7LGW0vv8kNj9FlbgSToOjx3pnZjTpBXxph98kOwW84wk7CdJ2lbBBn0T2YQmKnL7uWl%2FY039JYRMlvDOOYsmkBza5VP6auXRGYJpK%2BKEoWPQ5fdUWIDnA232umsFcQfCpZWW0cSAw6LbBJziKec7LRw6nMHrPMA8Xl3X0l9gOr5tzUs4vciHNmSuQwt0rLRiPxCVdAyp71F7wJQ76DwDDxxqATfrd9Gley1jOJGyTv9jSszAbXBmYsCM3KIEmF%2Fp2O1CaFD2o59s%2FQxnowrRCNtLS6LnbGdFyQmQ%3D%3D
Edge StartupUrls: Default -> "hxxps://fr.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5gvEY2jOoEjDYEfecxH%2FlmsvfEi9Ot5DImeyo8TGkVbDwKyKpvxdeJyOUkneq8zaI9BKzF7ii1wwP3XCIkD3V8NU%2B0XbJbXkckqVZDAPLtegUaRjVEemxfZmm39xEBwgW6x7yyjLfuetMj8aSN4%2Flrywg0g7JXlfeiRycVfQuoJyUsQBAbQRoP0grkjbov4Ao2PfwYIk8BaawSgLuMN1EZsZYkEJYQEFHyCByqOPQEE0ZF0SieeBvX9mqNfuyUrApxcj%2ByxSGgLKHSYeNlfZQNp28w0%2FY2ySjjn2UJH%2Fx5SXfnJWEzTlJ1k1hTRrzpovYw%3D%3D"
Edge DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/yhs/search?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5gvEY2jOoEjDYEfecxH%2Flmvb8YjRSr6TYQoAIWLz6wiZl28LaTG3wYIJU6TuXWEzSXIlddTZSWbCnn8Zh94MS5srWVZA5vyHnSKrDK0v0aH0GC60UKQ0gBqdt%2BMTabCx8UDjLnZFd67yKSqear6nxrAOCJ5NOrhD%2FrpcinS%2BVPojgxuvjVc3XDwF6n0wjSk0zbYDeG4UHGUD3jhQcwU62SpOL5kQTSvRCCU88zYQwKHAwcX1wv9b4hx7YLrSvtz0aOeApcAlME7rqCX%2F%2Fekx5taLAnvhv16AHGAcnkDgcOzZ5mwD1pu80D42tnxmo1h4Yw%3D%3D&p={searchTerms}
Edge DefaultSearchKeyword: Default -> search.yahoo.com
Edge DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
CHR StartupUrls: Default -> "hxxp://www.home-explore.com/","hxxps://fr.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87aom0mjz59bdfhjls13_ssg752120&param1=y6bdVFVIsvuYsgEClQfz8MWmPlLJXpwS0X2bU1ZWcuyTtRWj%2Blka10RgvDpZUNgv6EzHldUmIhkpsy507zc%2B5rDrC9COa83R%2BcUcHM48OObBAmsDR4RGq5ZPQcxQq%2B6OSjgnMIB4msN%2FMiFZTmDSM5OHJMftFDmvB0mSJtq%2BYzEf7PROUh%2FTRinmqgeNYKPx3IciniJ6AXPYCAKMpj0AzPfLVtIBoxz1C%2Fg1BurGH3G7tMX%2F%2Bi2uoCNoT6vKvtvY%2FeJ7JLBZIZUqYJc0MUtIq5TWc3plK5%2ByNJ0%2BKEnahYc06FORiYKqm7WXm8hyCEQM8yUfofXfxRHIE0sRsvsDL%2FRYFXmaJjbl0egeojtLUIQqElTwNMf8YaQbFQ%2Bxi%2FCIf%2BTXcnfy5DU1l%2BbEXys0CQ%3D%3D"
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
C:\Users\Megaport\AppData\Local\Google\Chrome\User Data\Default\Extensions\miockbgloklamfiklogjaohlgekodeok
CHR HKLM\...\Chrome\Extension: [miockbgloklamfiklogjaohlgekodeok]
CHR HKLM\...\Chrome\Extension: [obhdbhpjhfncnelcpknkffpdmpdcjpep]
CHR HKU\S-1-5-21-4237852062-426818469-3353276117-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [miockbgloklamfiklogjaohlgekodeok]
CHR HKU\S-1-5-21-4237852062-426818469-3353276117-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [obhdbhpjhfncnelcpknkffpdmpdcjpep]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [miockbgloklamfiklogjaohlgekodeok]
CHR HKLM-x32\...\Chrome\Extension: [obhdbhpjhfncnelcpknkffpdmpdcjpep]
R2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [7057904 2020-05-19] (Digital Communications Inc -> Digital Com. Inc) <==== ATTENTION
R2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [192496 2020-05-19] (Digital Communications Inc -> Digital Com. Inc) <==== ATTENTION
R1 SANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusKD.sys [90096 2020-05-19] () [Fichier non signé] <==== ATTENTION
2020-10-25 20:54 - 2020-10-31 00:16 - 000003304 _____ C:\WINDOWS\system32\Tasks\easyxploreUpdateTaskUserS-1-5-21-4237852062-426818469-3353276117-1001Core
2020-10-25 20:54 - 2020-10-31 00:16 - 000002578 _____ C:\WINDOWS\system32\Tasks\easyxplore_chk
2020-10-25 20:54 - 2020-10-25 20:55 - 000002762 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2020-10-25 20:54 - 2020-10-25 20:55 - 000002760 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2020-10-25 20:54 - 2020-10-25 20:55 - 000002760 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2020-10-25 20:10 - 2020-05-19 09:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAntivirus
SAntivirus Realtime Protection Lite
emptytemp:
end::

x

Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x

Télécharger le texte

Merci de choisir le format du fichier à télécharger.