Start::
SystemRestore: On
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {6244020C-4D04-49B4-9AC9-C1653AEBFF25} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [File not signed] <==== ATTENTION
Task: {A436DD53-A159-47CB-841C-D14A881B1F35} - \KMSpico Automatic Update Scheduler -> No File <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/ <==== ATTENTION
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4C8F04C4-E275-4E52-9DF5-045381FDA666}: [NameServer] 8.8.8.8,4.4.4.4
Tcpip\..\Interfaces\{4C8F04C4-E275-4E52-9DF5-045381FDA666}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7704E33B-A935-419F-A8E4-D46FE6D28A51}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{7704E33B-A935-419F-A8E4-D46FE6D28A51}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{80F002FA-A840-403A-8435-1CB022271DAA}: [DhcpNameServer] 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{921152AE-FF2B-4FBC-9D13-5BD368C8C4DD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{993CB13E-E44A-417B-B786-54A8C43F7936}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{CA843557-D6F5-4991-BAE3-246922548944}: [DhcpNameServer] 192.168.0.1
ManualProxies: 0hxxp://127.0.0.1:86/ <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge HKU\S-1-5-21-737693840-413745377-1450863732-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HomePage: Default -> hxxp://www.istartsurf.com/?type=sy&ts=1434994428&z=ed63a2e13251f22108f1e5bg5z9c1z2t4tezbz9oez&from=pcm&uid=ST3500312CS_6VV526XQXXXX6VV526XQ
CHR StartupUrls: Default -> "","hxxp://www.google.com/","hxxp://www.istartsurf.com/?type=hp&ts=1434994411&z=3e8ade62bbc032ace7a34c0g7zbcfz0t1t4z2z8e6m&from=pcm&uid=ST3500312CS_6VV526XQXXXX6VV526XQ","hxxps://www.google.com/?trackid=sp-006","hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHEqBX0kBHQkBU..&v=20160615&uid=E40A9D47D026362555ABE319519F2A97&ptid=csdi&mode=loadm","hxxp://do-search.com/?type=hp&ts=1425924775&from=cor&uid=TOSHIBAXMK3259GSXP_42G2P17DTXX42G2P17DT","hxxps://www.google.com/"
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
Folder: C:\Program Files\KMSpico
Hosts:
RemoveProxy:
CMD: sfc /scannow
CMD: DISM /Online /Cleanup-Image /RestoreHealth
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh winhttp reset proxy
CMD: Bitsadmin /Reset /Allusers
CMD: Winmgmt /salvagerepository
CMD: Winmgmt /resetrepository
CMD: winmgmt /resyncperf
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
C:\WINDOWS\SysWOW64\*.tmp
C:\WINDOWS\System32\*.tmp
C:\Windows\SystemTemp\*.tmp
EmptyTemp:
End: