Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKLM\...\Run: [VEFLSQM] => wscript.exe //B //E:vbs "C:\Users\kl\AppData\Local\Temp\VEFLSQM" <===== ATTENTION
Winlogon\Notify\DfLogon: LogonDll.dll [X]
HKLM\...\Policies\Explorer: [NoDrives] 32
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [Xvid] => powershell.exe -nologo -WindowStyle hidden -Noninteractive -NoProfile -ExecutionPolicy Bypass -File "C:\Program Files (x86)\Xvid\CheckUpdate.ps1"
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [SysinfY2X] => C:\WINDOWS\system32\cmd.exe /c start wscript /e:VBScript.Encode %temp%\SysinfY2X.db
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [VEFLSQM] => wscript.exe //B //E:vbs "C:\Users\kl\AppData\Local\Temp\VEFLSQM" <===== ATTENTION
BootExecute: autocheck autochk /k:C /k:E *
URLSearchHook: [S-1-5-21-3250740000-1501286622-4233108103-1000] ATTENTION => URLSearchHook par défaut est absent
FF DefaultProfile: 4lsg1rb5.default
FF ProfilePath: C:\Users\kl\AppData\Roaming\Mozilla\Firefox\Profiles\4lsg1rb5.default [2017-03-22]
S3 BstHdDrv; \??\C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [X]
S3 BstkDrv; \??\C:\Program Files (x86)\Bluestacks\BstkDrv.sys [X]
Task: {EB02381F-D652-4B1C-894A-712498C62C51} - \Microsoft\Windows\MUI\LPRemove -> Pas de fichier <==== ATTENTION
CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKLM\...\Run: [VEFLSQM] => wscript.exe //B //E:vbs "C:\Users\kl\AppData\Local\Temp\VEFLSQM" <===== ATTENTION
Winlogon\Notify\DfLogon: LogonDll.dll [X]
HKLM\...\Policies\Explorer: [NoDrives] 32
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [Xvid] => powershell.exe -nologo -WindowStyle hidden -Noninteractive -NoProfile -ExecutionPolicy Bypass -File "C:\Program Files (x86)\Xvid\CheckUpdate.ps1"
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [SysinfY2X] => C:\WINDOWS\system32\cmd.exe /c start wscript /e:VBScript.Encode %temp%\SysinfY2X.db
HKU\S-1-5-21-3250740000-1501286622-4233108103-1000\...\Run: [VEFLSQM] => wscript.exe //B //E:vbs "C:\Users\kl\AppData\Local\Temp\VEFLSQM" <===== ATTENTION
BootExecute: autocheck autochk /k:C /k:E *
URLSearchHook: [S-1-5-21-3250740000-1501286622-4233108103-1000] ATTENTION => URLSearchHook par défaut est absent
FF DefaultProfile: 4lsg1rb5.default
FF ProfilePath: C:\Users\kl\AppData\Roaming\Mozilla\Firefox\Profiles\4lsg1rb5.default [2017-03-22]
S3 BstHdDrv; \??\C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [X]
S3 BstkDrv; \??\C:\Program Files (x86)\Bluestacks\BstkDrv.sys [X]
Task: {EB02381F-D652-4B1C-894A-712498C62C51} - \Microsoft\Windows\MUI\LPRemove -> Pas de fichier <==== ATTENTION
CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end