cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CloseProcesses:
Hosts:
CreateRestorePoint:
(Irrational Number Applications) C:\ProgramData\nnyqLmSoPyI\JwBkOokYtV.exe
() C:\ProgramData\Browser\prompt.exe
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
BootExecute: autocheck autochk * sdnclean64.exe
HKU\S-1-5-21-1075306282-704854533-380126294-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
Toolbar: HKLM-x32 - Pas de nom - {7C68E87F-4487-4AE5-BBC2-C398C530DE9A} - Pas de fichier
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - Pas de fichier
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Pas de fichier
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - Pas de fichier
FF Extension: Pas de nom - C:\Users\nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\j975cryt.default\extensions\6a1a03975fde4c8690f6b883c36bc1@7d88519bfe704d8cae3851239.com [non trouvé(e)]
R2 JwBkOokYtV; C:\ProgramData\nnyqLmSoPyI\JwBkOokYtV.exe [2732024 2015-08-23] (Irrational Number Applications)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
2015-08-24 08:29 - 2015-08-24 08:29 - 00000000 ____D C:\ProgramData\Browser
2015-08-24 08:25 - 2015-08-24 08:33 - 00000000 ____D C:\Users\nicolas\AppData\Local\WebShield
2015-08-23 11:53 - 2015-08-24 08:24 - 00001042 _____ C:\WINDOWS\Tasks\pSUwNPhmr3bqMBLQNszxkno.job
2015-08-23 11:53 - 2015-08-24 08:24 - 00001028 _____ C:\WINDOWS\Tasks\Sx7hraIlCfJrObqS.job
C:\WINDOWS\Tasks\pSUwNPhmr3bqMBLQNszxkno.job
C:\WINDOWS\Tasks\Sx7hraIlCfJrObqS.job
2015-08-23 11:53 - 2015-08-23 11:53 - 00004190 _____ C:\WINDOWS\System32\Tasks\pSUwNPhmr3bqMBLQNszxkno
2015-08-23 11:53 - 2015-08-23 11:53 - 00004162 _____ C:\WINDOWS\System32\Tasks\Sx7hraIlCfJrObqS
2015-08-23 11:51 - 2015-08-23 11:51 - 00000000 ____D C:\ProgramData\nnyqLmSoPyI
2015-08-04 18:17 - 2015-08-04 18:17 - 00115592 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\nicolas\AppData\Roaming\pSUwNPhmr3bqMBLQNszxkno
2015-04-20 16:05 - 2015-04-20 16:05 - 1246720 _____ () C:\Users\nicolas\AppData\Roaming\pSUwNPhmr3bqMBLQNszxkno.exe
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\nicolas\AppData\Roaming\Sx7hraIlCfJrObqS
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\nicolas\AppData\Roaming\Sx7hraIlCfJrObqS.exe
2015-08-17 09:48 - 2015-08-17 09:48 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
C:\Users\nicolas\AppData\Local\Temp\5589.exe
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
Task: {1E0C73A7-8341-4CB3-9128-02216BF7B9B1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {1FD4871B-2B4E-4C02-B983-FCDEE8CD50E2} - System32\Tasks\Sx7hraIlCfJrObqS => C:\Users\nicolas\AppData\Roaming\Sx7hraIlCfJrObqS.exe [2015-04-20] () <==== ATTENTION
Task: {24155DAF-32CF-4DA6-8BC2-6FD11BE9C94E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {367AA3A3-098E-4E8D-8894-5C82FED8EBD3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {47E20C62-4841-4F29-B680-6A43C0CB1FBC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {4F23CFDB-6BCC-4690-9A2B-95ACF0E3CDAD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {5D7A5605-A165-4032-BEDE-0FC41A524B6A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {64B75BBB-DBBE-4499-9210-5BFF8A133397} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {70D1ED55-9E69-4D68-B212-6F8402511C24} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {C32B4723-88BF-4708-A7CE-5177A5E0C6AA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {D8D55507-8F00-443C-9BD1-10CEC6570CA1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {E18BA542-FF07-4A20-AB25-F483934AB67D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {E92E3CFA-ABCD-412A-9A0E-B62255E16B10} - System32\Tasks\pSUwNPhmr3bqMBLQNszxkno => C:\Users\nicolas\AppData\Roaming\pSUwNPhmr3bqMBLQNszxkno.exe [2015-04-20] () <==== ATTENTION
Task: C:\WINDOWS\Tasks\pSUwNPhmr3bqMBLQNszxkno.job => C:\Users\nicolas\AppData\Roaming\pSUwNPhmr3bqMBLQNszxkno.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Sx7hraIlCfJrObqS.job => C:\Users\nicolas\AppData\Roaming\Sx7hraIlCfJrObqS.exe <==== ATTENTION
2015-08-24 08:29 - 2015-08-24 08:29 - 00083208 _____ () C:\ProgramData\Browser\prompt.exe



EmptyTemp:
end

Publicité


Signaler le contenu de ce document

Publicité