Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CloseProcesses:
CreateRestorePoint:
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3748347043-2010101570-539999997-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
HKU\S-1-5-21-3748347043-2010101570-539999997-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-118-756
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3748347043-2010101570-539999997-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3748347043-2010101570-539999997-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
Toolbar: HKU\S-1-5-21-3748347043-2010101570-539999997-1000 -> Pas de nom - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Pas de fichier
Handler: WSISVCUchrome - {78A543EB-3A61-4ED3 - Pas de fichier
FF Homepage: Mozilla\Firefox\Profiles\6v6cbmhp.default -> hxxps://www.google.com/?bcutc=sp-118-756
FF Keyword.URL: Mozilla\Firefox\Profiles\6v6cbmhp.default -> hxxps://www.google.com/search?bcutc=sp-118-756
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\6v6cbmhp.default -> hxxps://www.google.com/search?bcutc=sp-118-756
FF Extension: (Pas de nom) - C:\Users\Olivier Louvet\AppData\Roaming\Mozilla\Firefox\Profiles\6v6cbmhp.default\Extensions\{a38384b3-2d1d-4f36-bc22-0f7ae402bcd7} [2017-06-16] [non signé]
FF Extension: (Pas de nom) - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com_xpi\ [] [non signé]
FF Extension: (Pas de nom) - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com_xpi [2017-06-16] [non signé]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
U3 idsvc; pas de ImagePath
U3 wpcsvc; pas de ImagePath
2017-06-18 01:11 - 2017-05-01 09:52 - 00000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml
2017-05-01 09:52 - 2017-06-18 01:11 - 0000060 _____ () C:\ProgramData\SoftwareUpdateTemp.xml
MSCONFIG\startupreg: amigo => C:\Users\Olivier Louvet\AppData\Local\Amigo\Application\amigo.exe --no-startup-window
MSCONFIG\startupreg: mailruhomesearch => "C:\Users\Olivier Louvet\AppData\Local\Mail.Ru\Sputnik\ptls\mailruhomesearch.exe" --pr_deferred
FirewallRules: [{E1F6592E-557F-41A6-9DD7-F79904B253CC}] => (Allow) C:\Users\Olivier Louvet\AppData\Local\Amigo\Application\amigo.exe
C:\Users\Olivier Louvet\AppData\Local\Amigo\Application\amigo.exe
C:\Users\Olivier Louvet\AppData\Local\Mail.Ru\Sputnik\ptls\mailruhomesearch.exe
EmptyTemp:
end
CloseProcesses:
CreateRestorePoint:
GroupPolicy: Restriction <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3748347043-2010101570-539999997-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
HKU\S-1-5-21-3748347043-2010101570-539999997-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-118-756
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3748347043-2010101570-539999997-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3748347043-2010101570-539999997-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-118-756&q={searchTerms}
Toolbar: HKU\S-1-5-21-3748347043-2010101570-539999997-1000 -> Pas de nom - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Pas de fichier
Handler: WSISVCUchrome - {78A543EB-3A61-4ED3 - Pas de fichier
FF Homepage: Mozilla\Firefox\Profiles\6v6cbmhp.default -> hxxps://www.google.com/?bcutc=sp-118-756
FF Keyword.URL: Mozilla\Firefox\Profiles\6v6cbmhp.default -> hxxps://www.google.com/search?bcutc=sp-118-756
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\6v6cbmhp.default -> hxxps://www.google.com/search?bcutc=sp-118-756
FF Extension: (Pas de nom) - C:\Users\Olivier Louvet\AppData\Roaming\Mozilla\Firefox\Profiles\6v6cbmhp.default\Extensions\{a38384b3-2d1d-4f36-bc22-0f7ae402bcd7} [2017-06-16] [non signé]
FF Extension: (Pas de nom) - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com_xpi\ [] [non signé]
FF Extension: (Pas de nom) - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com_xpi [2017-06-16] [non signé]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
U3 idsvc; pas de ImagePath
U3 wpcsvc; pas de ImagePath
2017-06-18 01:11 - 2017-05-01 09:52 - 00000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml
2017-05-01 09:52 - 2017-06-18 01:11 - 0000060 _____ () C:\ProgramData\SoftwareUpdateTemp.xml
MSCONFIG\startupreg: amigo => C:\Users\Olivier Louvet\AppData\Local\Amigo\Application\amigo.exe --no-startup-window
MSCONFIG\startupreg: mailruhomesearch => "C:\Users\Olivier Louvet\AppData\Local\Mail.Ru\Sputnik\ptls\mailruhomesearch.exe" --pr_deferred
FirewallRules: [{E1F6592E-557F-41A6-9DD7-F79904B253CC}] => (Allow) C:\Users\Olivier Louvet\AppData\Local\Amigo\Application\amigo.exe
C:\Users\Olivier Louvet\AppData\Local\Amigo\Application\amigo.exe
C:\Users\Olivier Louvet\AppData\Local\Mail.Ru\Sputnik\ptls\mailruhomesearch.exe
EmptyTemp:
end