Édité le 26 juin 2021
Télécharger | Reposter | Largeur fixe

start::
closeprocesses:
createrestorepoint:
AlternateDataStreams: C:\ProgramData\TEMP:0A73A758 [105]
AlternateDataStreams: C:\ProgramData\TEMP:15D23447 [119]
AlternateDataStreams: C:\ProgramData\TEMP:16269130 [127]
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\TEMP:4F801072 [246]
AlternateDataStreams: C:\ProgramData\TEMP:5453E5AF [124]
AlternateDataStreams: C:\ProgramData\TEMP:7D846F62 [143]
AlternateDataStreams: C:\ProgramData\TEMP:9768CF89 [143]
AlternateDataStreams: C:\ProgramData\TEMP:9AC92097 [147]
AlternateDataStreams: C:\ProgramData\TEMP:A3CDD1FD [143]
AlternateDataStreams: C:\ProgramData\TEMP:A9F13D2D [145]
AlternateDataStreams: C:\ProgramData\TEMP:AD450465 [286]
AlternateDataStreams: C:\ProgramData\TEMP:C928F3BE [204]
AlternateDataStreams: C:\ProgramData\TEMP:EAE818E4 [286]
AlternateDataStreams: C:\ProgramData\TEMP:F97CB382 [134]
BHO: Pas de nom -> {34EDF7FD-FD9B-420F-A701-CC2C081FB26C} -> Pas de fichier
FirewallRules: [{10FE8FBE-A834-4245-B4A5-482FD7963856}] => (Block) C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRW.exe => Pas de fichier
FirewallRules: [{3B7B1E22-15C9-45D2-8A18-B43EDFCD2154}] => (Block) C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRWUI.exe => Pas de fichier
FirewallRules: [{36782F53-E43C-451E-BF11-862A8AF43B12}] => (Block) C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRW.exe => Pas de fichier
FirewallRules: [{F61D3C15-F4BF-42D4-9A78-D1BDA14666C8}] => (Block) C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRWUI.exe => Pas de fichier
FirewallRules: [TCP Query User{A7C1DA90-395E-427C-B9D0-A42FF34A5872}C:\program files (x86)\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\purevpn\purevpn.exe => Pas de fichier
FirewallRules: [UDP Query User{BE66D582-2A16-48A9-B10C-4A5E3E4AE424}C:\program files (x86)\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\purevpn\purevpn.exe => Pas de fichier
FirewallRules: [{06D34E0E-07A0-443D-AD47-AD072BAFE5C3}] => (Block) C:\program files (x86)\purevpn\purevpn.exe => Pas de fichier
FirewallRules: [{B4655199-37C4-47EB-8BC2-862967FBD24B}] => (Block) C:\program files (x86)\purevpn\purevpn.exe => Pas de fichier
HKLM-x32\...\Run: [CompeGPSDev] => [X]
InternetURL: C:\Users\Patrice1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RemotePosWorker.url -> URL: file:///C:/Users/Patrice1/RemotePosWorker/RemotePosWorker.vbs
C:/Users/Patrice1/RemotePosWorker
Startup: C:\Users\Patrice1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WhatsApp Desktop.lnk [2021-03-06]
ShortcutTarget: WhatsApp Desktop.lnk -> (Pas de fichier)
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {06DD3F4F-127B-410F-A436-43CC10D225A6} - System32\Tasks\GoogleUpdateTaskMachineAZ => C:\Users\Public\dllhost.exe <==== ATTENTION
C:\Users\Public\dllhost.exe
Task: {343A72A4-F28A-428E-A72D-FA8804D31119} - System32\Tasks\ASUS Live Update2 => "C:\Program Files\Google\Chrome\Application\chrome.exe" streamcode"".""icu
Task: {664361B9-1E87-4002-A38D-24636FC3DAD6} - System32\Tasks\GoogleUpdateTaskMachineUZ => C:\Users\Public\dllhost.exe <==== ATTENTION
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FF ProfilePath: C:\Users\Patrice1\AppData\Roaming\Mozilla\Firefox\Profiles\k1vms2lv.Patrice [non trouvé(e)] <==== ATTENTION
S2 RealtekWlanU; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe [X]
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S3 MpKsl85bd8be7; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EC4DA4B1-99E1-4F22-9E1D-2D1D81C1DA8C}\MpKslDrv.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
StartRegedit:
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000005
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer]
"SmartScreenEnabled"="warm"
EndRegedit:
emptytemp:
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.