cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:

HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3992479630-2482588009-2382292733-1000\...\Policies\Explorer: []
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3992479630-2482588009-2382292733-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3992479630-2482588009-2382292733-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF ProfilePath: C:\Users\space\AppData\Roaming\Mozilla\Firefox\Profiles\8zim8t3w.default [2017-01-17]
FF Homepage: Mozilla\Firefox\Profiles\8zim8t3w.default -> user_pref("browser.startup.homepage", "hxxps://www.malwarebytes.org/restorebrowser/
FF Extension: (Pas de nom) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [non trouvé(e)]
S4 CodeMeter.exe; C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [X]
S2 Mihethoderly; C:\Program Files (x86)\Cluneghtmernersh\Pltientatugatainadp.dll [X]

U0 aswVmm; pas de ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
U2 ERSvc; pas de ImagePath
R3 gkernel; \??\C:\Users\space\AppData\Local\Temp\gkernel.sys [X]
U2 IAStorDataMgrsvc; pas de ImagePath
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
U2 NIHardwareService; pas de ImagePath
S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]
U2 Parvdm; pas de ImagePath
U2 srService; pas de ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <===== ATTENTION

nointegritychecks: ==> "IntegrityChecks" is disabled. <===== ATTENTION

CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end

Publicité


Signaler le contenu de ce document

Publicité