Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CloseProcesses:
CreateRestorePoint:
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
CHR HKLM\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION
CHR HKU\S-1-5-21-1792541902-2769869324-760469572-1000\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Stratégie de restriction <======= ATTENTION
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Stratégie de restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1792541902-2769869324-760469572-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1792541902-2769869324-760469572-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1792541902-2769869324-760469572-1000 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL =
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Toolbar: HKLM-x32 - Pas de nom - {c9a6357b-25cc-4bcf-96c1-78736985d412} - Pas de fichier
FF DefaultSearchUrl: hxxps://blekko.com/#?q={searchTerms}&source=149e2f4c
FF Keyword.URL: hxxps://blekko.com/#?q={searchTerms}&source=149e2f4c
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] -
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025920 2014-10-15] (Enigma Software Group USA, LLC.)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2014-10-15] (Enigma Software Group USA, LLC.)
U3 akhrzv7k; C:\Windows\System32\Drivers\akhrzv7k.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zéro octet Fichier/Dossier)
C:\Users\PATRICK\AppData\Local\Temp\SP66195.exe
C:\Users\PATRICK\AppData\Local\Temp\vlc-2.2.1-win32.exe
IObit Apps Toolbar v8.5 (HKLM-x32\...\{32FF8E03-4332-44D3-B5E5-A04F1D69D0E1}) (Version: 8.5 - Spigot, Inc.) <==== ATTENTION
Task: {093E77B3-8E44-4FC8-AD9C-83ED85909C26} - System32\Tasks\{B4F06FBA-E19E-4991-B21A-1A5A7DE54941} => E:\NAVIGMA.EXE
Task: {09DA96AB-3AFA-47E5-A4BC-C9A9194CEC99} - \DealPlyUpdate -> Pas de fichier <==== ATTENTION
Task: {19C79CB8-2458-42AD-A474-CACF0D94F969} - \VuuPCUpdateLogin -> Pas de fichier <==== ATTENTION
Task: {283ED4BF-AC78-4AC7-B7FF-42D6E427E372} - \BrowserDefendert -> Pas de fichier <==== ATTENTION
Task: {303AF60A-A028-4817-B277-D2F328D25A06} - System32\Tasks\{58066B71-0BA4-4ADC-829F-589A6CDE8AA8} => pcalua.exe -a C:\Users\PATRICK\Downloads\sweetimsetup.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {4633B976-12D8-418C-9ECE-029381B0542B} - \LaunchSignup -> Pas de fichier <==== ATTENTION
Task: {6462995C-A7F9-4F4F-AED1-9C7B48542935} - \Desk 365 RunAsStdUser -> Pas de fichier <==== ATTENTION
Task: {792CDBD1-61D0-4F7E-84B8-8B186D6F7AE3} - \VuuPCUpdate -> Pas de fichier <==== ATTENTION
Task: {DFA06489-10FC-48D3-B828-3734CD45A1DC} - \Advanced System Protector_startup -> Pas de fichier <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:58A5270D
AlternateDataStreams: C:\ProgramData\Temp:7ADA8871
EmptyTemp:
end
CloseProcesses:
CreateRestorePoint:
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
CHR HKLM\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION
CHR HKU\S-1-5-21-1792541902-2769869324-760469572-1000\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Stratégie de restriction <======= ATTENTION
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Stratégie de restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1792541902-2769869324-760469572-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1792541902-2769869324-760469572-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1792541902-2769869324-760469572-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1792541902-2769869324-760469572-1000 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL =
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Toolbar: HKLM-x32 - Pas de nom - {c9a6357b-25cc-4bcf-96c1-78736985d412} - Pas de fichier
FF DefaultSearchUrl: hxxps://blekko.com/#?q={searchTerms}&source=149e2f4c
FF Keyword.URL: hxxps://blekko.com/#?q={searchTerms}&source=149e2f4c
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] -
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025920 2014-10-15] (Enigma Software Group USA, LLC.)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2014-10-15] (Enigma Software Group USA, LLC.)
U3 akhrzv7k; C:\Windows\System32\Drivers\akhrzv7k.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zéro octet Fichier/Dossier)
C:\Users\PATRICK\AppData\Local\Temp\SP66195.exe
C:\Users\PATRICK\AppData\Local\Temp\vlc-2.2.1-win32.exe
IObit Apps Toolbar v8.5 (HKLM-x32\...\{32FF8E03-4332-44D3-B5E5-A04F1D69D0E1}) (Version: 8.5 - Spigot, Inc.) <==== ATTENTION
Task: {093E77B3-8E44-4FC8-AD9C-83ED85909C26} - System32\Tasks\{B4F06FBA-E19E-4991-B21A-1A5A7DE54941} => E:\NAVIGMA.EXE
Task: {09DA96AB-3AFA-47E5-A4BC-C9A9194CEC99} - \DealPlyUpdate -> Pas de fichier <==== ATTENTION
Task: {19C79CB8-2458-42AD-A474-CACF0D94F969} - \VuuPCUpdateLogin -> Pas de fichier <==== ATTENTION
Task: {283ED4BF-AC78-4AC7-B7FF-42D6E427E372} - \BrowserDefendert -> Pas de fichier <==== ATTENTION
Task: {303AF60A-A028-4817-B277-D2F328D25A06} - System32\Tasks\{58066B71-0BA4-4ADC-829F-589A6CDE8AA8} => pcalua.exe -a C:\Users\PATRICK\Downloads\sweetimsetup.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {4633B976-12D8-418C-9ECE-029381B0542B} - \LaunchSignup -> Pas de fichier <==== ATTENTION
Task: {6462995C-A7F9-4F4F-AED1-9C7B48542935} - \Desk 365 RunAsStdUser -> Pas de fichier <==== ATTENTION
Task: {792CDBD1-61D0-4F7E-84B8-8B186D6F7AE3} - \VuuPCUpdate -> Pas de fichier <==== ATTENTION
Task: {DFA06489-10FC-48D3-B828-3734CD45A1DC} - \Advanced System Protector_startup -> Pas de fichier <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:58A5270D
AlternateDataStreams: C:\ProgramData\Temp:7ADA8871
EmptyTemp:
end