start::
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
GroupPolicy: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {8D4D6A96-63D0-4BE6-88B9-D1A83BCAB25B} - System32\Tasks\FreedomReset => e:\Program Files (x86)\F-Secure\Freedome\Freset.exe [451699 2018-03-11]
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Pas de fichier
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-05-10]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-05-10]
S2 0071841538189417mcinstcleanup; C:\WINDOWS\TEMP\007184~1.EXE -cleanup -nolog [X]
S2 SpyHunter 4 Service; C:\Program Files\SpyHunter\SH4Service.exe [685752 2017-08-12]
S3 esgiguard; C:\Program Files\SpyHunter\esgiguard.sys [15920 2016-10-15]
S3 EsgScanner; C:\Windows\SysWOW64\DRIVERS\EsgScanner.sys [22704 2016-10-15]
AlternateDataStreams: C:\ProgramData:gs5sys [8192]
AlternateDataStreams: C:\Users\All Users:gs5sys [8192]
AlternateDataStreams: C:\Users\HP:gs5sys [2560]
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys [8192]
AlternateDataStreams: C:\Users\HP\Application Data:gs5sys [2048]
AlternateDataStreams: C:\Users\HP\Cookies:gs5sys [2560]
AlternateDataStreams: C:\Users\HP\Local Settings:gs5sys [2560]
AlternateDataStreams: C:\Users\HP\Modèles:gs5sys [2048]
AlternateDataStreams: C:\Users\HP\Desktop\desktop.ini:gs5sys [3074]
AlternateDataStreams: C:\Users\HP\AppData\Local:gs5sys [2560]
AlternateDataStreams: C:\Users\HP\AppData\Roaming:gs5sys [2048]
AlternateDataStreams: C:\Users\HP\AppData\Local\Application Data:gs5sys [2560]
AlternateDataStreams: C:\Users\HP\AppData\Local\Historique:gs5sys [2048]
AlternateDataStreams: C:\Users\HP\Documents\desktop.ini:gs5sys [2048]
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys [2560]
EmptyTemp:
cmd: ipconfig /flushdns
end::