start:: closeprocesses: createrestorepoint:...

Édité le 29 octobre 2022
Télécharger | Reposter | Largeur fixe

start::
closeprocesses:
createrestorepoint:
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
SearchScopes: HKLM -> DefaultScope {D55072CC-1840-4FD4-B8C2-9A56D805F433} URL =
SearchScopes: HKLM-x32 -> DefaultScope {D55072CC-1840-4FD4-B8C2-9A56D805F433} URL =
FirewallRules: [{47E130D0-60C1-466D-82EF-617861542288}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [{11132D3C-4DE5-41BC-9ADF-48858A057ACF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [{0A1E57CE-BC52-4211-934C-846957831CFC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [{7D02AB96-5671-4F20-9B63-8B2E800B3BA0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [{4896E052-5323-4B75-8250-7BD80B947721}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [{6045FEDB-0D6E-46A8-A9C0-C653D3B31C25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [{22EE7940-7A61-4B24-B83E-A315426F60BF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [{B86658A2-B0E8-4258-8A97-A3462FA38F67}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe => Pas de fichier
FirewallRules: [UDP Query User{ACDAE73B-0DD3-44F3-A6F1-8BEABB3E03E6}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe => Pas de fichier
FirewallRules: [TCP Query User{9FFDEF44-02F4-4C32-9EDB-6D28DEF9396A}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe => Pas de fichier
FirewallRules: [UDP Query User{A0912EFF-A537-4963-AF98-909B2E38D25E}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe => Pas de fichier
FirewallRules: [TCP Query User{584D2A2E-E692-49EA-A5F7-CEFAC489DFD9}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe => Pas de fichier
FirewallRules: [{ACA9BD77-05D7-4DD3-9117-C9E322E7F939}] => (Allow) C:\Users\Ferre\AppData\Local\Chromium\Application\chrome.exe => Pas de fichier
FirewallRules: [{13988879-1027-4363-8400-8E51F0451D88}] => (Allow) C:\Users\Ferre\AppData\Roaming\Zoom\bin\Zoom.exe => Pas de fichier
FirewallRules: [{E783DBD9-C633-461E-96F9-BE91DB2D9872}] => (Allow) C:\Users\Ferre\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{EA48A4F0-4563-4161-9D80-85FE61630C46}] => (Allow) C:\Users\Ferre\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [TCP Query User{1CC761BA-D0A8-4148-99D5-862D0D62A2A3}C:\users\ferre\downloads\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\ferre\downloads\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{6B4926A1-643D-4F61-BD1B-35EFFF8D5C74}C:\users\ferre\downloads\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\ferre\downloads\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [{9F2E081C-866F-4DA9-A176-E83DDB01C1BE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{B8DE164E-64D8-4B80-B79B-291E7960F921}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
C:\$Recycle.Bin\S-1-5-21-2211017928-1661232592-3156464270-1001\$RSA7IS3.exe
C:\Users\Ferre\Downloads\IObit-Malware-Fighter-Setup.exe
HKLM\...\Run: [CL-26-3C4116A0-A311-4C69-AA25-FC0FBF4FD923] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\CL-26-3C4116A0-A311-4C69-AA25-FC0FBF4FD923\setuplauncher.exe" /run:Installer.exe /args:"/setup-folder:"CL-26-3C4116A0-A311-4C69-AA25-FC0FBF4 (l'élément de données a 7 caractères en plus). (Pas de fichier)
C:\Program Files\Common Files\Bitdefender
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {1F208720-6B97-4D05-BC0A-858DF9193D65} - System32\Tasks\ChromiumUpdateTaskMachineCore => C:\Program Files (x86)\Chromium\Update\ChromiumUpdate.exe /c (Pas de fichier) <==== ATTENTION
C:\Program Files (x86)\Chromium
Task: {AECFD9F7-CD08-4159-BCA3-685A68D75897} - System32\Tasks\ChromiumUpdateTaskMachineUA => C:\Program Files (x86)\Chromium\Update\ChromiumUpdate.exe /ua /installsource scheduler (Pas de fichier) <==== ATTENTION
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {FF8BA7F7-CE6C-4B8B-94C9-0B9430F8CDE2} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\IObit Malware Fighter\sump.exe /sup2 (Pas de fichier)
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=3 -> C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [Pas de fichier]
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=9 -> C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [Pas de fichier]
C:\Users\Ferre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho
C:\Users\Ferre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki
C:\Users\Ferre\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho
C:\Users\Ferre\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X]
S3 Imf8HpRegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [41848 2019-12-17] (IObit Information Technology -> IObit)
S3 IMFEFSFileControl; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFEFSFileControl.sys [40824 2019-08-13] (IObit Information Technology -> IObit)
S3 ImfHpFileFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [45432 2019-12-17] (IObit Information Technology -> IObit)
2022-10-26 20:16 - 2019-10-13 15:27 - 000000000 ____D C:\Users\Ferre\AppData\Roaming\IObit
2022-10-28 00:27 - 2019-10-10 18:37 - 000000000 ____D C:\ProgramData\AVAST Software
C:\Program Files (x86)\IObit
emptytemp:
end::