Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CloseProcesses:
Hosts:
CreateRestorePoint:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\Run: [uTorrent] => "C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {459e8501-eb3b-11e6-af32-ac2b6ecce4de} - "H:\setup.EXE" /AUTORUN
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {567a8f2a-331b-11e7-af47-ac2b6ecce4de} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {96f207f7-07d4-11e7-af3a-ac2b6ecce4de} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {9bd4588e-4929-11e7-af4c-ac2b6ecce4de} - "G:\Setup.exe"
ShellExecuteHooks: Pas de nom - {73538FB6-AB7F-11E6-9B77-64006A5CFC23} - C:\Users\Francois\AppData\Roaming\Stezogh\Jacegh.dll -> Pas de fichier <==== ATTENTION
GroupPolicy: Restriction - Chrome <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-1288880404-4155176319-3141220653-1001 -> {C7C0DCA2-CD03-4A4B-A23E-D675A7ED2F67} URL =
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
S2 MEmusvc; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [X]
2016-11-23 16:47 - 2016-11-23 16:47 - 0000183 _____ () C:\Users\Francois\AppData\Local\uts.ini
ContextMenuHandlers01: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers04: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
Task: {1630A616-9C62-46DF-9824-3B8002465F18} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Francois\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {3B865285-1AC8-4A05-9D15-7DF7C246BFC0} - System32\Tasks\RTX Encoder => Rundll32.exe "C:\Program Files\RTX Encoder\RTX Encoder.dll",WFsiFeUsF <==== ATTENTION
Task: {5B898CF8-F63F-464B-89BB-CE4B1062CD5D} - System32\Tasks\PCTools Lile Information => Rundll32.exe "C:\Program Files\PCTools Lile Information\PCTools Lile Information.dll",dRFqbkSyjjC <==== ATTENTION
Task: {F88296E9-1860-45C3-B924-F8060AC4876D} - System32\Tasks\6618682a2bf2241e324d26e97e390200 => sc start 6618682a2bf2241e324d26e97e390200 <==== ATTENTION
FirewallRules: [{F5761AE6-3908-4C7F-A15C-2834C845523C}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AE2344E4-E390-4227-B094-FF4B0D8FFB94}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F2C6C6D9-1F73-4C2B-A455-1ABDFD3FCB77}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E8651EA5-4A9C-4E6E-8732-DA882065C09B}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D9C78391-C3E9-453D-9472-AD161E1417A2}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1E09A54A-FC5C-4937-80ED-C7B3D920B90E}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
EmptyTemp:
end
CloseProcesses:
Hosts:
CreateRestorePoint:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\Run: [uTorrent] => "C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {459e8501-eb3b-11e6-af32-ac2b6ecce4de} - "H:\setup.EXE" /AUTORUN
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {567a8f2a-331b-11e7-af47-ac2b6ecce4de} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {96f207f7-07d4-11e7-af3a-ac2b6ecce4de} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1288880404-4155176319-3141220653-1001\...\MountPoints2: {9bd4588e-4929-11e7-af4c-ac2b6ecce4de} - "G:\Setup.exe"
ShellExecuteHooks: Pas de nom - {73538FB6-AB7F-11E6-9B77-64006A5CFC23} - C:\Users\Francois\AppData\Roaming\Stezogh\Jacegh.dll -> Pas de fichier <==== ATTENTION
GroupPolicy: Restriction - Chrome <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-1288880404-4155176319-3141220653-1001 -> {C7C0DCA2-CD03-4A4B-A23E-D675A7ED2F67} URL =
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
S2 MEmusvc; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [X]
2016-11-23 16:47 - 2016-11-23 16:47 - 0000183 _____ () C:\Users\Francois\AppData\Local\uts.ini
ContextMenuHandlers01: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers04: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
Task: {1630A616-9C62-46DF-9824-3B8002465F18} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Francois\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {3B865285-1AC8-4A05-9D15-7DF7C246BFC0} - System32\Tasks\RTX Encoder => Rundll32.exe "C:\Program Files\RTX Encoder\RTX Encoder.dll",WFsiFeUsF <==== ATTENTION
Task: {5B898CF8-F63F-464B-89BB-CE4B1062CD5D} - System32\Tasks\PCTools Lile Information => Rundll32.exe "C:\Program Files\PCTools Lile Information\PCTools Lile Information.dll",dRFqbkSyjjC <==== ATTENTION
Task: {F88296E9-1860-45C3-B924-F8060AC4876D} - System32\Tasks\6618682a2bf2241e324d26e97e390200 => sc start 6618682a2bf2241e324d26e97e390200 <==== ATTENTION
FirewallRules: [{F5761AE6-3908-4C7F-A15C-2834C845523C}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AE2344E4-E390-4227-B094-FF4B0D8FFB94}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F2C6C6D9-1F73-4C2B-A455-1ABDFD3FCB77}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E8651EA5-4A9C-4E6E-8732-DA882065C09B}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D9C78391-C3E9-453D-9472-AD161E1417A2}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1E09A54A-FC5C-4937-80ED-C7B3D920B90E}] => (Allow) C:\Users\Francois\AppData\Roaming\uTorrent\uTorrent.exe
EmptyTemp:
end