start:: closeprocesses: createrestorepoint:...

Posté le 27 mars 2022
Télécharger | Reposter | Largeur fixe

start::
closeprocesses:
createrestorepoint:
AV: Total AV (Disabled - Up to date) {B185458D-38B3-A010-10F7-3D378DAA6032}
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier
AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\Users\Florent\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Florent\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-4224792036-2300550371-2692057828-1001\...\StartupApproved\Run: => "uTorrent"
C:\Users\Florent\Desktop\Activation\AAct_x64.exe
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4224792036-2300550371-2692057828-1001\...\MountPoints2: {038ada8f-319a-11ec-b8e3-e0d55e25d477} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4224792036-2300550371-2692057828-1001\...\MountPoints2: {47b8022f-b5a3-11ea-b736-e0d55e25d477} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4224792036-2300550371-2692057828-1001\...\MountPoints2: {7e7c2a71-7dc3-11ec-b943-e0d55e25d477} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4224792036-2300550371-2692057828-1001\...\MountPoints2: {a1cfd613-7eae-11ec-b946-e0d55e25d477} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4224792036-2300550371-2692057828-1001\...\MountPoints2: {c744535b-4889-11eb-b7c8-e0d55e25d477} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4224792036-2300550371-2692057828-1001\...\MountPoints2: {df8c9b69-44d8-11ec-b8f5-e0d55e25d477} - "H:\HiSuiteDownLoader.exe"
Startup: F:\Appdata\Microsoft\Windows\Start Menu\Programs\Startup\SecurityHealthSystray - Raccourci.lnk [2021-11-15]
ShortcutTarget: SecurityHealthSystray - Raccourci.lnk -> C:\Windows\System32\SecurityHealthSystray.exe (Microsoft Windows -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {6BCDECD1-3D8B-4497-84E6-9E1A2C4564B0} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> F:\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-11-10] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Fichier non signé]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-11-10] (Adobe Inc. -> Adobe Systems)
CHR Notifications: Default -> hxxps://www1a.delmarmora.pro; hxxps://www1a.rudyvalencia.pro; hxxps://www1a.samcunningham.pro; hxxps://www23.nathanaeldan.pro
S3 Browser; %SystemRoot%\System32\browser.dll [X]
2022-03-26 12:31 - 2022-03-26 12:48 - 000000151 _____ C:\Windows\restoro.ini
2022-03-26 12:23 - 2022-03-26 12:23 - 000932808 _____ (Restoro) C:\Users\Florent\Downloads\Restoro.exe
2022-03-27 17:02 - 2021-12-01 14:16 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2022-03-27 17:02 - 2021-12-01 14:15 - 000000000 ____D C:\Program Files\Bitdefender Agent
cmd: netsh advfirewall reset
cmd: sfc /scannow
emptytemp:
end::