cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CreateRestorePoint:
CloseProcesses:
GroupPolicyScripts: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2964149914-1592244283-1999672507-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
CHR Extension: (ClipConverter) - C:\Users\El Maronche\AppData\Local\Google\Chrome\User Data\Default\Extensions\njjjgjlocdhecpgdcfjblcnfebfnmhpp [2015-06-07] [UpdateUrl: hxxp://www.clipconverter.cc/extension/chromeupdates.xml] <==== ATTENTION
U3 a5rof8bn; C:\Windows\System32\Drivers\a5rof8bn.sys [0 ] (Elaborate Bytes AG) <==== ATTENTION (zéro octet Fichier/Dossier)
U3 akg356vo; C:\Windows\System32\Drivers\akg356vo.sys [0 ] (Elaborate Bytes AG) <==== ATTENTION (zéro octet Fichier/Dossier)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
HKLM-x32\...\Run: [] => [X]
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=INMODF&PC=IN05 [Pays US - 204.79.197.200]
SearchScopes: HKLM-x32 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=INMODF&PC=IN05 [Pays US - 204.79.197.200]
SearchScopes: HKU\S-1-5-21-2964149914-1592244283-1999672507-1000 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=INMODF&PC=IN05 [Pays US - 204.79.197.200]
SearchScopes: HKU\S-1-5-21-2964149914-1592244283-1999672507-1000 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=INMODF&PC=IN05 [Pays US - 204.79.197.200]
C:\Users\El Maronche\AppData\Local\Temp\proxy_vole97647553568027737.dll
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
CustomCLSID: HKU\S-1-5-21-2964149914-1592244283-1999672507-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\El Maronche\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-2964149914-1592244283-1999672507-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\El Maronche\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-2964149914-1592244283-1999672507-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\El Maronche\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => Pas de fichier
CHR HKLM-x32\...\Chrome\Extension: [cgpnojibjokpoghebklhkdeijehkohhb] - C:\Users\ELMARO~1\AppData\Local\Temp\tbch.crx
EmptyTemp:
end

Publicité


Signaler le contenu de ce document

Publicité