Format du document : text/plain
Prévisualisation
start
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKU\S-1-5-21-3544706222-1499703263-3937389962-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3544706222-1499703263-3937389962-1000\...\MountPoints2: {0fa1e872-7a7a-11e7-b821-b82a72aa285d} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3544706222-1499703263-3937389962-1000\...\MountPoints2: {f580b47b-7a76-11e6-b728-b82a72aa285d} - "G:\SISetup.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
ShortcutTarget: WizIQ Desktop.lnk -> C:\Program Files (x86)\WizIQ Desktop\WizIQ Desktop.exe ()
GroupPolicy: Restriction <==== ATTENTION
BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
BHO-x32: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
StartMenuInternet: Google Chrome.6YVD3SAXKUMUCUYPYGWUIFT3OQ - C:\Users\mohamed\AppData\Local\Google\Chrome\Application\chrome.exe
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => -> No File
ContextMenuHandlers3-x32: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {9ADC4F4E-F9B6-46B2-BD34-96325EFDD430} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {FA6B4797-77E8-4695-BA9D-8649F517C1D7} - System32\Tasks\{19CE17E5-7E37-48D4-9ECD-7B7ABE71A747} => C:\Windows\system32\pcalua.exe -a C:\Users\mohamed\AppData\Local\Temp\jre-8u66-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ATTENTION
CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end