Posté le 3 juillet 2019
Télécharger | Reposter | Largeur fixe

start::
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001\...\Run: [himself] => "C:\Program Files (x86)\Accuses\Malloch.exe" zvaewzvaewzvaewzvae.
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001\...\Run: [optometry] => "C:\Program Files (x86)\Mcwilliams\Macleish.exe" kallfwkallfwkallfwkallf.
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001\...\Run: [Chromium] => c:\users\nicolas\appdata\local\chromium\application\chrome.exe
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06272019134525017\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {186E489E-D2D9-4F70-97A5-2B29F9C7CA8C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
Task: {EDA45917-3E52-4AFD-A1DC-41AAF929068F} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4284427307-2797357125-3296747649-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-06-22]
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\0dwml39g.default\Extensions\sp@avast.com.xpi [2019-05-19]
FF Extension: (Avast Online Security) - C:\Users\Nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\0dwml39g.default\Extensions\wrc@avast.com.xpi [2019-05-19]
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-06-22]
FF SearchPlugin: C:\Users\Nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\0dwml39g.default\searchplugins\bing-lavasoft-ff59.xml
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\browser\features\{7E559224-1ED3-4EEE-8CC6-49713355E085}.xpi
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [899264 2019-06-22]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1284032 2018-07-31]
R3 klupd_klif_arkmon_99553A6E784FD1143B760CB34841237C; C:\Users\Nicolas\AppData\Local\Temp\{CBA769F4-415B-42C1-8237-4694B240C4FB}\99553A6E784FD1143B760CB34841237C.sys
R1 OWYwYjcwYzQ0MG; C:\Windows\system32\drivers\OWYwYjcwYzQ0MG [206952 2019-04-25]
2019-07-02 11:38 - 2019-07-02 11:40 - 000000000 ____D C:\Users\Nicolas\AppData\Local\Gocahidiga
2019-07-01 16:59 - 2019-07-02 11:40 - 000000000 ____D C:\ProgramData\{D336EF0A-FB1E-9772-A346-BF5A4BAE6782}
2019-06-19 14:43 - 2019-02-07 20:46 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [466]
IE trusted site: HKU\S-1-5-21-4284427307-2797357125-3296747649-1001\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-4284427307-2797357125-3296747649-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06272019134525017\...\webcompanion.com -> hxxp://webcompanion.com
HKLM\...\StartupApproved\Run32: => "AvastUI.exe"
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001\...\StartupApproved\Run: => "Web Companion"
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06272019134525017\...\StartupApproved\Run: => "Web Companion"
HKU\S-1-5-21-4284427307-2797357125-3296747649-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06272019134525017\...\StartupApproved\Run: => "Chromium"
EmptyTemp:
cmd: ipconfig /flushdns
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.