Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\...\MountPoints2: H - H:\Startme.exe
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\...\MountPoints2: {1ec73eb7-cc3e-11e5-b92a-00e04c360643} - H:\Startme.exe
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoSMBalloonTip] 1
GroupPolicy\User: Restriction ? <======= ATTENTION
GroupPolicyScripts\User: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.DamasGate.com.com/vb
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.dz/
Toolbar: HKU\S-1-5-21-2055908500-1034735058-3773382703-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
FF ProfilePath: C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default [2017-03-09]
FF Homepage: Mozilla\Firefox\Profiles\pafpkx6p.default -> hxxps://www.google.dz/
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ftp", ""
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ftp_port", 0
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.socks", ""
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.socks_port", 0
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ssl", ""
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ssl_port", 0
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ftp", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ftp_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> http", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> http_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> share_proxy_settings", true
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> socks", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> socks_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ssl", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ssl_port", 80
FF Extension: (Pas de nom) - C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default\extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default\extensions\{ce7e73df-6a44-4028-8079-5927a588c948}.xpi [non trouvé(e)]
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF Extension: (Pas de nom) - C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default\extensions\translator@zoli.bod.xpi [non trouvé(e)]
FF Plugin: @pages.tvunetworks.com/WebPlayer -> D:\TVUPlayer\npTVUAx.dll [Pas de fichier]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Pas de fichier]
CHR DefaultProfile: Profile 1
S2 AdobeARMservice; "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
Service\nvwirelesscontroller.exe" [X]
S2 QQLiveService; C:\Program Files\Tencent\QQLive\9.10.1059.0\LiveService.dll [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
S3 SwitchBoard; "C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [X]
U4 Messenger; pas de ImagePath
S3 MSICDSetup; \??\G:\CDriver.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\...\MountPoints2: H - H:\Startme.exe
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\...\MountPoints2: {1ec73eb7-cc3e-11e5-b92a-00e04c360643} - H:\Startme.exe
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoSMBalloonTip] 1
GroupPolicy\User: Restriction ? <======= ATTENTION
GroupPolicyScripts\User: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.DamasGate.com.com/vb
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp
HKU\S-1-5-21-2055908500-1034735058-3773382703-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.dz/
Toolbar: HKU\S-1-5-21-2055908500-1034735058-3773382703-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
FF ProfilePath: C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default [2017-03-09]
FF Homepage: Mozilla\Firefox\Profiles\pafpkx6p.default -> hxxps://www.google.dz/
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ftp", ""
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ftp_port", 0
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.socks", ""
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.socks_port", 0
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ssl", ""
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> backup.ssl_port", 0
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ftp", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ftp_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> http", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> http_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> share_proxy_settings", true
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> socks", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> socks_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ssl", "kproxy.com"
FF NetworkProxy: Mozilla\Firefox\Profiles\pafpkx6p.default -> ssl_port", 80
FF Extension: (Pas de nom) - C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default\extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default\extensions\{ce7e73df-6a44-4028-8079-5927a588c948}.xpi [non trouvé(e)]
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF Extension: (Pas de nom) - C:\Users\MOHAMED\AppData\Roaming\Mozilla\Firefox\Profiles\pafpkx6p.default\extensions\translator@zoli.bod.xpi [non trouvé(e)]
FF Plugin: @pages.tvunetworks.com/WebPlayer -> D:\TVUPlayer\npTVUAx.dll [Pas de fichier]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Pas de fichier]
CHR DefaultProfile: Profile 1
S2 AdobeARMservice; "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
Service\nvwirelesscontroller.exe" [X]
S2 QQLiveService; C:\Program Files\Tencent\QQLive\9.10.1059.0\LiveService.dll [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
S3 SwitchBoard; "C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [X]
U4 Messenger; pas de ImagePath
S3 MSICDSetup; \??\G:\CDriver.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end