cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: F - F:\Startme.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {1059bba4-4e28-11e4-afe7-0022fad8423a} - F:\Setup.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {1059bbc0-4e28-11e4-afe7-0022fad8423a} - F:\Setup.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {229e6dc9-444b-11e5-8835-80a99556a02c} - H:\LGAutoRun.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {3c3b783a-afaf-11e5-81e2-aac4b3d3b48b} - H:\autorun.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {46d593fd-bac2-11e5-9d37-c9f6a9709940} - G:\Setup.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {603cee84-d24e-11e5-833d-e7496563566c} - H:\Setup.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {a0595980-5268-11e4-a0d8-0022fad8423a} - F:\Setup.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {e16daa76-8fb1-11e5-8268-002318b92542} - G:\Startme.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {f8176921-a35a-11e5-811e-aca21365ea49} - G:\AutoRun.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {f8176925-a35a-11e5-811e-aca21365ea49} - G:\AutoRun.exe
HKU\S-1-5-21-454156101-2345760694-676353058-1000\...\MountPoints2: {f817692b-a35a-11e5-811e-d7807bedc6be} - G:\AutoRun.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-454156101-2345760694-676353058-1000\Software\Microsoft\Internet Explorer\Main,Local Page = hxxp://www.babal.net/?gjj
HKU\S-1-5-21-454156101-2345760694-676353058-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.babal.net/?gjj
HKU\S-1-5-21-454156101-2345760694-676353058-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-454156101-2345760694-676353058-1000\Software\Microsoft\Internet Explorer\Main,Default Page URL = hxxp://www.babal.net/?gjj
URLSearchHook: [S-1-5-21-454156101-2345760694-676353058-1000] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-454156101-2345760694-676353058-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-454156101-2345760694-676353058-1000 -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL =
Toolbar: HKU\S-1-5-21-454156101-2345760694-676353058-1000 -> No Name - {04B84C46-5ABB-476B-A7D7-40435D9AE611} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File
FF Session Restore: -> is enabled
Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Extension: Barre d'outils eBuyClub - C:\Users\mourad\AppData\Roaming\Mozilla\Firefox\Profiles\cbabaezd.default-1460330565581\extensions\ebctb@plebicom.xul.xpi [2016-08-10]
CHR HomePage: Default -> yandex.ru/?__PARAM__from=chromehp
CHR DefaultSearchURL: Default -> hxxp://yandex.ru/search/?__PARAM__from=chromesearch&text={searchTerms}
CHR DefaultSearchKeyword: Default -> yandex.ru
CHR DefaultSuggestURL: Default -> hxxp://suggest.yandex.net/suggest-ff.cgi?uil=ru&part={searchTerms}
CHR Extension: (????????? — ??????) - C:\Users\mourad\AppData\Local\Google\Chrome\User
S3 Tosrfcom; no ImagePath
S3 andnetadb; System32\Drivers\lgandnetadb.sys [X]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
S3 catchme; \??\C:\Users\mourad\AppData\Local\Temp\catchmevspm.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]
S3 ndisahMP; system32\DRIVERS\ndisah.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]



CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end

Publicité


Signaler le contenu de ce document

Publicité