Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CloseProcesses:
Hosts:
CreateRestorePoint:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1078081533-1757981266-725345543-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-21-1078081533-1757981266-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={A8A0A49B-CC0F-42F5-97D1-9890290606E6}&mid=77e37fa6f56247d190ecd15a955a24d8-77e12acd98b4af486fbac17e2941467931843c67&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0715av&pr=fr&d=2015-07-18 18:51:33&v=4.2.9.726&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-1078081533-1757981266-725345543-1004 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={A8A0A49B-CC0F-42F5-97D1-9890290606E6}&mid=77e37fa6f56247d190ecd15a955a24d8-77e12acd98b4af486fbac17e2941467931843c67&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-07-18 18:51:33&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1078081533-1757981266-725345543-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={A8A0A49B-CC0F-42F5-97D1-9890290606E6}&mid=77e37fa6f56247d190ecd15a955a24d8-77e12acd98b4af486fbac17e2941467931843c67&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-07-18 18:51:33&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - Pas de fichier
Toolbar: HKU\S-1-5-21-1078081533-1757981266-725345543-1004 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
FF Plugin: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll [Pas de fichier]
S2 aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys [X]
S3 cpuz134; \??\C:\DOCUME~1\JEANMI~1\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [X]
S3 EntDrv51; \??\C:\WINDOWS\system32\drivers\EntDrv51.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S1 gaiyrbvr; \??\C:\WINDOWS\system32\drivers\gaiyrbvr.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 mbr; \??\C:\DOCUME~1\JEANMI~1\LOCALS~1\Temp\mbr.sys [X]
2016-04-16 09:14 - 2016-04-16 09:18 - 00000150 _____ C:\WINDOWS\Reimage.ini
2016-04-30 08:45 - 2014-05-29 12:39 - 00003818 _____ C:\WINDOWS\Tasks\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.job
C:\WINDOWS\Tasks\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.job
Task: C:\WINDOWS\Tasks\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.job => C:\Program Files\HQ-Video-Pro-1.7\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.exe <==== ATTENTION
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
StandardProfile\AuthorizedApplications: [C:\Program Files\VuuPC\RemoteEngine.exe] => Enabled:VuuPC Remote Engine
StandardProfile\AuthorizedApplications: [C:\Program Files\VuuPC\Connectivity.exe] => Enabled:VuuPC Connectivity
EmptyTemp:
end
CloseProcesses:
Hosts:
CreateRestorePoint:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1078081533-1757981266-725345543-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=FR&userid=c7397c2a-5b8d-4a53-a155-b0ee98eab843&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKU\S-1-5-21-1078081533-1757981266-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={A8A0A49B-CC0F-42F5-97D1-9890290606E6}&mid=77e37fa6f56247d190ecd15a955a24d8-77e12acd98b4af486fbac17e2941467931843c67&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0715av&pr=fr&d=2015-07-18 18:51:33&v=4.2.9.726&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-1078081533-1757981266-725345543-1004 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={A8A0A49B-CC0F-42F5-97D1-9890290606E6}&mid=77e37fa6f56247d190ecd15a955a24d8-77e12acd98b4af486fbac17e2941467931843c67&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-07-18 18:51:33&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1078081533-1757981266-725345543-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={A8A0A49B-CC0F-42F5-97D1-9890290606E6}&mid=77e37fa6f56247d190ecd15a955a24d8-77e12acd98b4af486fbac17e2941467931843c67&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-07-18 18:51:33&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - Pas de fichier
Toolbar: HKU\S-1-5-21-1078081533-1757981266-725345543-1004 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
FF Plugin: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll [Pas de fichier]
S2 aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys [X]
S3 cpuz134; \??\C:\DOCUME~1\JEANMI~1\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys [X]
S3 EntDrv51; \??\C:\WINDOWS\system32\drivers\EntDrv51.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S1 gaiyrbvr; \??\C:\WINDOWS\system32\drivers\gaiyrbvr.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 mbr; \??\C:\DOCUME~1\JEANMI~1\LOCALS~1\Temp\mbr.sys [X]
2016-04-16 09:14 - 2016-04-16 09:18 - 00000150 _____ C:\WINDOWS\Reimage.ini
2016-04-30 08:45 - 2014-05-29 12:39 - 00003818 _____ C:\WINDOWS\Tasks\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.job
C:\WINDOWS\Tasks\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.job
Task: C:\WINDOWS\Tasks\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.job => C:\Program Files\HQ-Video-Pro-1.7\9b0da08a-cf56-4ed5-994a-11f13d56a798-3.exe <==== ATTENTION
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
StandardProfile\AuthorizedApplications: [C:\Program Files\VuuPC\RemoteEngine.exe] => Enabled:VuuPC Remote Engine
StandardProfile\AuthorizedApplications: [C:\Program Files\VuuPC\Connectivity.exe] => Enabled:VuuPC Connectivity
EmptyTemp:
end