start::
closeprocesses:
createrestorepoint:
ContextMenuHandlers1-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => -> Pas de fichier
ContextMenuHandlers2-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => -> Pas de fichier
ContextMenuHandlers4-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
Task: {08FE0E3A-763E-4EB4-B334-04104E394E9F} - System32\Tasks\update-S-1-5-21-3086062569-2544984848-1260828526-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
C:\Program Files (x86)\Skillbrains
Task: {14E868F6-EFF0-485B-B92B-FFE1F9E6E4A3} - System32\Tasks\Driver Booster SkipUAC (chris) => C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe [2017-10-26] (IObit)
Task: {9072A88A-0241-4CAD-82B1-5C60385EDF7D} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2018-01-07] (Glarysoft Ltd)
Task: {91FFE19E-0127-4454-8C5B-1832EC5C0F9A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2018-01-07] (Glarysoft Ltd)
Task: {C3E15A97-B019-4406-B2FA-64A54CAA7C1C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {F5C8A913-5240-4791-BA32-FB8D11B07DBE} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: C:\WINDOWS\Tasks\update-S-1-5-21-3086062569-2544984848-1260828526-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
IE trusted site: HKU\S-1-5-21-3086062569-2544984848-1260828526-1001\...\amazon.ca -> hxxps://amazon.ca
FirewallRules: [{A59B2BA9-126F-49D0-B2E6-6ADAAC7BEB56}] => (Allow) C:\Users\chris\AppData\Local\AwesomeMiner\Zec.miner.0.3.4b_1\0.3.4b\miner.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION 
GroupPolicy: Restriction <==== ATTENTION 
HKU\S-1-5-21-3086062569-2544984848-1260828526-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION 
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-03-19] (McAfee, Inc.) 
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-03-19] (McAfee, Inc.) Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-03-19] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-03-19] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-03-19] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-03-19] (McAfee, Inc.)
Handler: WSISAllmytubechrome - Pas de valeur CLSID
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-04-25]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi 
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2016-11-17] [Legacy] 
FF Plugin HKU\S-1-5-21-3086062569-2544984848-1260828526-1001: @acestream.net/acestreamplugin,version=3.1.20.1 -> C:\Users\chris\AppData\Roaming\ACEStream\player\npace_plugin.dll [Pas de fichier] 
S1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [44632 2015-02-23] (ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-29] () 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" 
S3 MBAMFarflt; \SystemRoot\system32\DRIVERS\farflt.sys [X]
S3 MBAMProtection; \SystemRoot\system32\DRIVERS\mbam.sys [X]
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X] 
2018-04-26 11:16 - 2018-04-26 11:26 - 000000000 ____D C:\Program Files (x86)\Awesome Miner 
2018-04-26 10:08 - 2016-11-11 20:18 - 000000000 ____D C:\Users\chris\AppData\Local\ESET 
hosts:
cmd: ipconfig /flushdns
emptytemp:
end::