start CreateRestorePoint: CloseProcesses: RemoveProxy: HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: J - J:\AutoRun.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {42384c86-b476-11e6-aa08-b8975a26dca4} - J:\Auto.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {489342de-b219-11e6-a306-b8975a26dca4} - J:\autorun.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {489342e2-b219-11e6-a306-b8975a26dca4} - J:\autorun.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {530a6631-a041-11e6-a971-10feedce4ac2} - J:\Setup.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {71de87cf-ace2-11e6-bd5f-b8975a26dca4} - J:\AutoRun.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {8edca6ce-b79b-11e6-aaef-10feedce4ac2} - J:\AutoRun.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {defd7e2d-9e7a-11e6-a17a-10feedce4ac2} - J:\AutoRun.exe HKU\S-1-5-21-444279093-2062295991-3838736036-1000\...\MountPoints2: {fbba8562-b271-11e6-810a-b8975a26dca4} - K:\Setup.exe ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Pas de fichier ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Pas de fichier HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = FF DefaultProfile: w0jy8d21.default FF ProfilePath: C:\Users\SERVER\AppData\Roaming\Mozilla\Firefox\Profiles\w0jy8d21.default [2016-12-15] FF Homepage: Mozilla\Firefox\Profiles\w0jy8d21.default -> www.google.com FF Extension: (Pas de nom) - C:\Users\SERVER\AppData\Roaming\Mozilla\Firefox\Profiles\w0jy8d21.default\extensions\yasearch@yandex.ru.xpi [non trouvé(e)] S2 NEWDRIVER; \??\C:\Windows\SysWow64\WinVDEdrv6.sys [X] Task: {9AA18101-EF4B-40CA-82B2-3FEC7B07AE4F} - \DllKitPRO -> Pas de fichier <==== ATTENTION CMD: netsh winsock reset all CMD: ipconfig /flushdns hosts: EmptyTemp: Reboot: end