cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\MountPoints2: {16a42400-2e5c-11e6-8453-001e101f0164} - "E:\AutoRun.exe"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\MountPoints2: {28ee51fd-0d82-11e6-8429-645a044d5063} - "E:\AutoRun.exe"
HKU\S-1-5-21-518511124-2112986350-859192497-1001\...\MountPoints2: {8c83d1ce-cb0c-11e4-826e-645a044d5064} - "E:\AutoRun.exe"
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => No File
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-518511124-2112986350-859192497-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-518511124-2112986350-859192497-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.toshiba.com
HKU\S-1-5-21-518511124-2112986350-859192497-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01
URLSearchHook: [S-1-5-21-518511124-2112986350-859192497-1001] ATTENTION => Default URLSearchHook is missing
S3 catchme; \??\C:\Users\Hamza\AppData\Local\Temp\catchme.sys [X]
2016-05-31 22:30 - 2016-05-31 22:30 - 00000000 _SHDL C:\Users\Elamr\My Documents
2016-05-31 22:30 - 2016-05-31 22:30 - 00000000 _SHDL C:\Users\Elamr\Documents\My Videos
2016-05-31 22:30 - 2016-05-31 22:30 - 00000000 _SHDL C:\Users\Elamr\Documents\My Pictures
2016-05-31 22:30 - 2016-05-31 22:30 - 00000000 _SHDL C:\Users\Elamr\Documents\My Music
Task: {084A47F8-F644-43A0-B330-043E128C27DA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {12B10F39-4DD6-4554-9BDF-DAF81497899C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {243B511E-25DD-4E23-A6C6-350356404049} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {628D4C64-C897-4C27-9974-9C6FC56E3201} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {6E20F80E-34EC-47BC-918D-A9455DAA4FD0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {ABD33CDC-DB94-428A-804A-08862413E952} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {AC0A4796-3E55-415A-AF0C-B4FDF501E589} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {BE7E222E-653A-4142-83CB-CACA163D1E13} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {BFAFBE3D-03AA-422F-8B79-089446AB69F9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {EBB99341-184B-4EE2-BA84-230F0DDA11EC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {F19D18CE-55F8-47EB-ACD6-C30A33470F23} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end

Publicité


Signaler le contenu de ce document

Publicité