cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [Wse_binkiland] => C:\Windows\SysWOW64\wscript.exe /E:vbscript /B "C:\Users\michau\AppData\Roaming\Wse_binkiland\UpdateProc\bkup.dat"
HKU\S-1-5-21-2170629006-3237138689-4256642382-1000\...\RunOnce: [Wse_binkiland] => C:\Windows\SysWOW64\wscript.exe /E:vbscript /B "C:\Users\michau\AppData\Roaming\Wse_binkiland\UpdateProc\bkup.dat"
GroupPolicy: Stratégie de groupe sur Chrome détecté(e) <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_clu_15_13&cd=2XzuyEtN2Y1L1QzutBtD0C0FtAtDyByC0DyBtD0EtBtBzy0EtN0D0Tzu0StCtCzztAtN1L2XzutAtFzytFyBtFtBtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2SyCzz0FyEyEyC0AyEtG0CyE0B0CtG0BzzyCzztG0C0DtBtBtGtAzyyD0Azy0EyD0ByE0EzytD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0BtBtC0BtAyCyC0DtG0EtDyD0AtGyEyByDyCtG0Bzy0BtAtGyD0EtAzz0B0A0DyCyE0E0BtD2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyCtAzy&cr=476372106&ir=
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_clu_15_13&cd=2XzuyEtN2Y1L1QzutBtD0C0FtAtDyByC0DyBtD0EtBtBzy0EtN0D0Tzu0StCtCzztAtN1L2XzutAtFzytFyBtFtBtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2SyCzz0FyEyEyC0AyEtG0CyE0B0CtG0BzzyCzztG0C0DtBtBtGtAzyyD0Azy0EyD0ByE0EzytD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0BtBtC0BtAyCyC0DtG0EtDyD0AtGyEyByDyCtG0Bzy0BtAtGyD0EtAzz0B0A0DyCyE0E0BtD2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyCtAzy&cr=476372106&ir=
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF DefaultSearchUrl: hxxps://www.google.com/search/?trackid=sp-006
S3 cpuz134; \??\C:\Users\michau\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 Trufos; system32\DRIVERS\Trufos.sys [X]
AppInit_DLLs-x32: C:/PROGRA~3/{75909~1/191~1.1/mele.dll => "C:\PROGRA~3\{75909~1\191~1.1\mele.dll" Fichier non trouvé(e)
2015-04-01 08:26 - 2015-04-02 15:33 - 0274045 _____ () C:\Users\michau\AppData\Local\dsi1.dat
2015-04-01 08:26 - 2015-04-02 15:33 - 0161916 _____ () C:\Users\michau\AppData\Local\dsi2.dat
C:\Users\michau\AppData\Local\Temp\130847983215199610.exe
C:\Users\michau\AppData\Local\Temp\13084798323501164595.exe
C:\Users\michau\AppData\Local\Temp\130847987085341144.exe
C:\Users\michau\AppData\Local\Temp\13084798709657316456.exe
C:\Users\michau\AppData\Local\Temp\130848131508979414.exe
C:\Users\michau\AppData\Local\Temp\13084813152551544318.exe
C:\Users\michau\AppData\Local\Temp\130848131822135967.exe
C:\Users\michau\AppData\Local\Temp\13084813183336798644.exe
C:\Users\michau\AppData\Local\Temp\Execute2App.exe
WebAdSystem (Version: 1.4.17.0 - KalityWeb) Hidden <==== ATTENTION
Task: {21723189-EB05-4208-82DF-668B4C4D7D5D} - \Wse_binkiland -> Pas de fichier <==== ATTENTION
Task: {E2E1714C-E264-47A7-A643-9E2C95E2DEDB} - System32\Tasks\Binkiland mele => C:\ProgramData\{75909D53-2512-4CD5-9494-3C574416EFD9}\1.9.1.1\f <==== ATTENTION
Task: {DD03C2BB-85B0-4785-A333-69095CF580D7} - \Adobe Acrobat Update Task -> Pas de fichier <==== ATTENTION


EmptyTemp:
end

Publicité


Signaler le contenu de ce document

Publicité