cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:

HKU\S-1-5-21-1730516790-1945992075-1385482835-1000\...\MountPoints2: F - F:\autorun.exe
HKU\S-1-5-21-1730516790-1945992075-1385482835-1000\...\MountPoints2: {3a84c4ee-3d4b-11e6-a8b3-74de2b9bace6} - F:\AutoRun.exe
HKU\S-1-5-21-1730516790-1945992075-1385482835-1000\...\MountPoints2: {560e186b-411d-11e6-b681-028037ec0200} - H:\Autorun.exe
HKU\S-1-5-21-1730516790-1945992075-1385482835-1000\...\MountPoints2: {560e186f-411d-11e6-b681-028037ec0200} - J:\Autorun.exe
HKU\S-1-5-21-1730516790-1945992075-1385482835-1000\...\MountPoints2: {9780d4b9-476e-11e6-a572-028037ec0200} - F:\autorun.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Pas de fichier
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
CHR HomePage: Profile 1 -> hxxp://www.nicesearches.com?type=hp&ts=1468230436&from=21d70711&uid=hgstxhts545050a7e380_130908tm85a34t2dbpmlx&z=30ece064919b27feea6cddag1zcqdb4o5c8e7z8q4c
CHR StartupUrls: Profile 1 -> "hxxp://www.nicesearches.com?type=hp&ts=1468230436&from=21d70711&uid=hgstxhts545050a7e380_130908tm85a34t2dbpmlx&z=30ece064919b27feea6cddag1zcqdb4o5c8e7z8q4c"
CHR DefaultSearchURL: Profile 1 -> hxxp://www.nicesearches.com/search.php?type=ds&ts=1468230436&from=21d70711&uid=hgstxhts545050a7e380_130908tm85a34t2dbpmlx&z=30ece064919b27feea6cddag1zcqdb4o5c8e7z8q4c&q={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> nice
S4 OVPNService; "C:\Users\user\AppData\Local\TotalVPN\OVPN.Service.exe" [X]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]

Task: {0501548C-B5A7-4B3A-8B72-D800F0FA325D} - System32\Tasks\HipfatUpdateTaskMachineUA => C:\Program Files (x86)\Hipfat\Update\HipfatUpdate.exe [2016-07-11] () <==== ATTENTION
Task: {441DB7BF-4809-437D-88CE-BAFF8D86468D} - System32\Tasks\HipfatUpdateTaskMachineCore => C:\Program Files (x86)\Hipfat\Update\HipfatUpdate.exe [2016-07-11] () <==== ATTENTION


CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end

Publicité


Signaler le contenu de ce document

Publicité