start:: closeprocesses: createrestorepoint:...

Édité le 13 mai 2021
Télécharger | Reposter | Largeur fixe

start::
closeprocesses:
createrestorepoint:
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: Pare-feu McAfee (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
FirewallRules: [TCP Query User{8C222684-9F4F-4E62-BDDB-0AFA20D0FB9D}D:\formatfactory\formatfactory.exe] => (Allow) D:\formatfactory\formatfactory.exe => Pas de fichier
FirewallRules: [UDP Query User{1E16FF59-578D-47F6-BC81-84119CB242F3}D:\formatfactory\formatfactory.exe] => (Allow) D:\formatfactory\formatfactory.exe => Pas de fichier
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.94\Installer\chrmstp.exe [2021-05-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {ED3C8B13-9EB8-41D7-8303-232FA6EB3784} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4630104 2021-02-03] (McAfee, LLC -> McAfee, LLC)
C:\Program Files\Common Files\AV\McAfee VirusScan
Task: {E7745D72-C5C7-4B23-A7A3-655D25F00662} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-05-04] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-05-04] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-05-04] (Avast Software s.r.o. -> AVAST Software)
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
C:\Users\sluis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjbhlpgcgebilbcmljofcelaankhcdma
2021-05-09 02:20 - 2021-04-02 17:40 - 000000000 ____D C:\ProgramData\McAfee
2021-05-04 01:52 - 2021-04-02 17:40 - 000000000 ____D C:\Program Files\Common Files\McAfee
emptytemp:
end::