Publicité
Publicité
Format du document : text/plain
Prévisualisation
start::
Hosts:
Removeproxy:
CreateRestorePoint:
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-3708138441-1992702873-667948556-1002_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 -> => Pas de fichier
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Users\mekki\AppData\Local\Temp\3582-490\IDMShellExt64.dll [2021-03-03] (Tonec Inc. -> Tonec FZE)
ContextMenuHandlers1: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers1: [IXnView] -> {A5D35F9F-6A11-4EAA-B70B-7BB6FE32663A} => -> Pas de fichier
ContextMenuHandlers4: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers6: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\RarExt.dll [2012-02-17] () [Fichier non signé]
HKLM\...\exefile\shell\open\command: C:\WINDOWS\svchost.com "%1" %* <==== ATTENTION
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Users\mekki\AppData\Local\Temp\3582-490\IDMIECC64.dll => Pas de fichier
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll => Pas de fichier
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Users\mekki\AppData\Local\Temp\3582-490\IDMIECC.dll => Pas de fichier
HKLM\...\Policies\Explorer: [AllowOnlineTips] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [ShellSmartScreenLevel] Warn
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-3708138441-1992702873-667948556-1002\...\Run: [IDMan] => C:\Users\mekki\AppData\Local\Temp\3582-490\IDMan.exe /onboot (Pas de fichier) <==== ATTENTION
Task: {3749C779-7D15-4FE8-906B-03A1559B9588} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {3B0D305A-986D-4724-B9B9-FCF568D5115E} - System32\Tasks\Uninstaller_SkipUac_mekki => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\AA-SCU~1\IOBITU~1.14P\App\PROGRA~1\IObitUninstaler.exe /UninstallExplorer (Pas de fichier)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {FD105F3F-B2ED-4916-B927-6CF8EDF685BD} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3708138441-1992702873-667948556-500 => C:\Users\mekki\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\mekki\AppData\Local\Temp\3582-490\IDMGCExt.crx
CHR HKU\S-1-5-21-3708138441-1992702873-667948556-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\mekki\AppData\Local\Temp\3582-490\IDMGCExt.crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\mekki\AppData\Local\Temp\3582-490\IDMGCExt.crx
S3 IUFileFilter; \??\C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\PROGRA~1\drivers\win10_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\PROGRA~1\drivers\win10_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\PROGRA~1\drivers\win10_amd64\IURegistryFilter.sys [X]
U4 xbgm; pas de ImagePath
2023-03-27 22:39 - 2023-03-27 22:39 - 000000000 ____D C:\Program Files (x86)\VOVSOFT
2023-03-26 21:52 - 2023-03-26 22:09 - 000000000 ____D C:\ProgramData\IObit
2023-03-26 21:15 - 2023-03-26 22:09 - 000000000 ____D C:\Users\mekki\AppData\Roaming\IObit
2023-03-05 10:58 - 2023-03-05 10:58 - 000000000 ____D C:\Users\mekki\AppData\Roaming\YCanPDF
2023-03-05 10:44 - 2023-03-15 20:59 - 000000000 ____D C:\Users\mekki\AppData\Roaming\ILOVEPDF
2023-03-05 10:44 - 2023-03-05 10:44 - 000000000 ____D C:\Users\mekki\AppData\Local\ILOVEPDF
2023-03-05 10:42 - 2023-03-26 13:42 - 000000000 ____D C:\Users\mekki\AppData\Roaming\EurekaLog
2023-03-05 09:34 - 2023-03-05 09:34 - 000000000 ____D C:\Users\mekki\AppData\Roaming\EMCO
2023-03-01 20:33 - 2023-03-19 17:11 - 000000000 ____D C:\Users\mekki\AppData\LocalLow\IObit
2023-03-05 12:35 - 2023-03-05 12:35 - 000000716 ____H () C:\Users\mekki\AppData\Roaming\{845CCF00-575D-EAD6-0A5A-ADC3A8533592}
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh winsock reset
cmd: sfc /scannow
EmptyEventLogs:
EmptyTemp:
end::
Hosts:
Removeproxy:
CreateRestorePoint:
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-3708138441-1992702873-667948556-1002_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 -> => Pas de fichier
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Users\mekki\AppData\Local\Temp\3582-490\IDMShellExt64.dll [2021-03-03] (Tonec Inc. -> Tonec FZE)
ContextMenuHandlers1: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers1: [IXnView] -> {A5D35F9F-6A11-4EAA-B70B-7BB6FE32663A} => -> Pas de fichier
ContextMenuHandlers4: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers6: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\ProgramFiles\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\RarExt.dll [2012-02-17] () [Fichier non signé]
HKLM\...\exefile\shell\open\command: C:\WINDOWS\svchost.com "%1" %* <==== ATTENTION
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Users\mekki\AppData\Local\Temp\3582-490\IDMIECC64.dll => Pas de fichier
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll => Pas de fichier
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Users\mekki\AppData\Local\Temp\3582-490\IDMIECC.dll => Pas de fichier
HKLM\...\Policies\Explorer: [AllowOnlineTips] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [ShellSmartScreenLevel] Warn
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-3708138441-1992702873-667948556-1002\...\Run: [IDMan] => C:\Users\mekki\AppData\Local\Temp\3582-490\IDMan.exe /onboot (Pas de fichier) <==== ATTENTION
Task: {3749C779-7D15-4FE8-906B-03A1559B9588} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {3B0D305A-986D-4724-B9B9-FCF568D5115E} - System32\Tasks\Uninstaller_SkipUac_mekki => C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\AA-SCU~1\IOBITU~1.14P\App\PROGRA~1\IObitUninstaler.exe /UninstallExplorer (Pas de fichier)
Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {FD105F3F-B2ED-4916-B927-6CF8EDF685BD} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3708138441-1992702873-667948556-500 => C:\Users\mekki\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\mekki\AppData\Local\Temp\3582-490\IDMGCExt.crx
CHR HKU\S-1-5-21-3708138441-1992702873-667948556-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\mekki\AppData\Local\Temp\3582-490\IDMGCExt.crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\mekki\AppData\Local\Temp\3582-490\IDMGCExt.crx
S3 IUFileFilter; \??\C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\PROGRA~1\drivers\win10_amd64\IUFileFilter.sys [X]
S3 IUProcessFilter; \??\C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\PROGRA~1\drivers\win10_amd64\IUProcessFilter.sys [X]
S3 IURegistryFilter; \??\C:\Users\mekki\m\Bureau\TELECH~1\LOGICI~1\IOBITU~1.14P\App\PROGRA~1\drivers\win10_amd64\IURegistryFilter.sys [X]
U4 xbgm; pas de ImagePath
2023-03-27 22:39 - 2023-03-27 22:39 - 000000000 ____D C:\Program Files (x86)\VOVSOFT
2023-03-26 21:52 - 2023-03-26 22:09 - 000000000 ____D C:\ProgramData\IObit
2023-03-26 21:15 - 2023-03-26 22:09 - 000000000 ____D C:\Users\mekki\AppData\Roaming\IObit
2023-03-05 10:58 - 2023-03-05 10:58 - 000000000 ____D C:\Users\mekki\AppData\Roaming\YCanPDF
2023-03-05 10:44 - 2023-03-15 20:59 - 000000000 ____D C:\Users\mekki\AppData\Roaming\ILOVEPDF
2023-03-05 10:44 - 2023-03-05 10:44 - 000000000 ____D C:\Users\mekki\AppData\Local\ILOVEPDF
2023-03-05 10:42 - 2023-03-26 13:42 - 000000000 ____D C:\Users\mekki\AppData\Roaming\EurekaLog
2023-03-05 09:34 - 2023-03-05 09:34 - 000000000 ____D C:\Users\mekki\AppData\Roaming\EMCO
2023-03-01 20:33 - 2023-03-19 17:11 - 000000000 ____D C:\Users\mekki\AppData\LocalLow\IObit
2023-03-05 12:35 - 2023-03-05 12:35 - 000000716 ____H () C:\Users\mekki\AppData\Roaming\{845CCF00-575D-EAD6-0A5A-ADC3A8533592}
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh winsock reset
cmd: sfc /scannow
EmptyEventLogs:
EmptyTemp:
end::