start:: closeprocesses: createrestorepoint:...

Édité le 1 août 2021
Télécharger | Reposter | Largeur fixe

start::
closeprocesses:
createrestorepoint:
HKU\S-1-5-21-3640099606-3125973422-1426647458-1001\...\Run: [Overwolf] => A:\Overwolf\OverwolfLauncher.exe -overwolfsilent
HKU\S-1-5-21-3640099606-3125973422-1426647458-1001\...\Run: [Opera Browser Assistant] => A:\assistant\browser_assistant.exe [4079824 2021-07-21] (Opera Software AS -> Opera Software)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
virustotal: A:\Launcher.exe
Task: {1B4F75EC-97B0-4C8F-99CE-464C0DCBA13D} - System32\Tasks\Opera scheduled Autoupdate 1626528373 => A:\launcher.exe [2264784 2021-07-21] (Opera Software AS -> Opera Software) <==== ATTENTION
Task: {989EF389-8C59-4EFE-BDFE-2E3A18FC89F8} - System32\Tasks\Overwolf Updater Task => A:\Overwolf\OverwolfUpdater.exe [2491736 2021-02-15] (Overwolf Ltd -> Overwolf LTD)
Task: {F01725FC-255B-4E46-9CBD-145C6AF804B0} - System32\Tasks\Opera scheduled assistant Autoupdate 1626528375 => A:\launcher.exe [2264784 2021-07-21] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="A:\assistant" $(Arg0)
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
OPR Extension: (Rich Hints Agent) - C:\Users\William\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-07-17]
StartMenuInternet: (HKU\S-1-5-21-3640099606-3125973422-1426647458-1001) OperaStable - "A:\\Launcher.exe"
S2 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe" [X]
S3 OverwolfUpdater; "A:\Overwolf\OverwolfUpdater.exe" /RunningFrom SCM [X]
S3 bntap; \SystemRoot\System32\drivers\bntap.sys [X]
cmd: sfc /scannow
emptytemp:
end::