start::
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> Pas de fichier
Task: {4ED5B0BC-160B-48C6-94E3-CE187588DA89} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: C:\Windows\Tasks\Norton Product InstallerIdle.job => C:\Program Files (x86)\MSI\Live Update\Plugins\Norton\SymInstallStub.exe
FF Extension: (Avast Online Security) - C:\Users\cmoaf_000\AppData\Roaming\Mozilla\Firefox\Profiles\g271z9vv.default-1434271149572-1530123760471\Extensions\wrc@avast.com.xpi
CHR HKU\S-1-5-21-4155056788-671560477-2050105528-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKU\S-1-5-21-4155056788-671560477-2050105528-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]
S2 iocbios2; \??\C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [X]
S0 MBAMSwissArmy; system32\drivers\MBAMSwissArmy.sys [X]
S3 MBfilt; \SystemRoot\system32\drivers\MBfilt64.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
2015-04-28 17:27 - 2018-07-16 14:34 - 003260800 _____ () C:\Users\cmoaf_000\ZHPCleaner.exe
2015-03-06 15:39 - 2015-04-28 19:21 - 000000121 _____ () C:\Users\cmoaf_000\AppData\Roaming\D2Info0
2015-03-06 15:39 - 2015-04-22 21:24 - 000000008 _____ () C:\Users\cmoaf_000\AppData\Roaming\DofusAppId0_1
2015-03-08 14:09 - 2015-04-28 19:52 - 000000008 _____ () C:\Users\cmoaf_000\AppData\Roaming\DofusAppId0_2
2014-05-29 14:54 - 2014-05-29 14:54 - 000000036 _____ () C:\Users\cmoaf_000\AppData\Roaming\DOK52P4Q3J.dat
ShellIconOverlayIdentifiers: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier
ShellIconOverlayIdentifiers: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier
ShellIconOverlayIdentifiers: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
AlternateDataStreams: C:\Users\cmoaf_000:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\TEMP:054203E4 [149]
AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
EmptyTemp:
cmd: ipconfig /flushdns
end::