Posté le 10 juin
Télécharger | Reposter | Largeur fixe

start::
CreateRestorePoint:
CloseProcesses:
Hosts:
C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.60.0_x64__wafk5atnkzcwy
C:\Program Files\Avast Software
C:\Program Files\McAfee
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [UDP Query User{A1772927-BB41-4C17-A98B-36DFACE35BE5}C:\program files\windowsapps\facebook.317180b0bb486_500.5.130.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Block) C:\program files\windowsapps\facebook.317180b0bb486_500.5.130.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [TCP Query User{00521BF0-69CF-443A-8DFD-48FA9B1234B8}C:\program files\windowsapps\facebook.317180b0bb486_500.5.130.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Block) C:\program files\windowsapps\facebook.317180b0bb486_500.5.130.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [UDP Query User{78D466B3-74A9-4EB8-B1FB-EFD1403E37A8}C:\program files\windowsapps\facebook.317180b0bb486_480.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_480.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [TCP Query User{BB75D32B-97D5-4C6D-8CE3-A74532DFC3B3}C:\program files\windowsapps\facebook.317180b0bb486_480.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_480.5.121.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [UDP Query User{30899BE7-D553-491A-820A-99ACF9FEB01E}C:\program files\windowsapps\facebook.317180b0bb486_460.16.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_460.16.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [TCP Query User{8D54AC7E-D67A-4BD0-A94C-FE17E38E0E2F}C:\program files\windowsapps\facebook.317180b0bb486_460.16.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_460.16.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [UDP Query User{E359F758-5FF4-4B88-B2D3-F9E1F6B6FD3B}C:\program files\windowsapps\facebook.317180b0bb486_460.14.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Block) C:\program files\windowsapps\facebook.317180b0bb486_460.14.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [TCP Query User{FEE52F34-1CBE-43D4-B6C6-6F4CA9E609BE}C:\program files\windowsapps\facebook.317180b0bb486_460.14.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Block) C:\program files\windowsapps\facebook.317180b0bb486_460.14.123.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [UDP Query User{CD344D69-2030-4445-9819-72E974F50993}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [TCP Query User{D981B3D8-E6B9-4DF2-AA66-536C1057B802}C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_440.9.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [TCP Query User{2844C5D2-F0B0-4AD8-88AC-90A9A3874477}C:\program files\windowsapps\facebook.317180b0bb486_750.4.124.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_750.4.124.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [UDP Query User{8B044F0B-9565-4A05-98F5-64E0189B60B7}C:\program files\windowsapps\facebook.317180b0bb486_750.4.124.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_750.4.124.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
C:\Program Files\Avast Software
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(McAfee, LLC -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(McAfee, LLC. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_20_1\mcapexe.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\McCSPServiceHost.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\MSM\McSmtFwk.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MQS\QcShm.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\VUL\McVulCtr.exe
C:\Program Files\McAfee
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [118496 2021-04-29] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {17D72506-F484-4309-A33F-783013399470} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1072312 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
Task: {DAE499C0-950B-466E-95C7-7CED88EEA953} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION
Task: {DB2A83EB-1A32-44B8-BD96-8C755A6550D7} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1072312 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
Task: {F70EEB8C-C227-4F99-B6D0-EB19A2593012} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4808928 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
FF HomepageOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: _65Membersttab03_@download.fromdoctopdf.com
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: _65Membersttab03_@download.fromdoctopdf.com
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: _j5Membersttab03_@ext.ask.com
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: qwant@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: amazon@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: bing@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\byollmmb.default-release -> Enabled: google@search.mozilla.org
FF Extension: (MyWay Search By FromDocToPDF) - C:\Users\fbanc\AppData\Roaming\Mozilla\Firefox\Profiles\byollmmb.default-release\Extensions\_65Membersttab03_@download.fromdoctopdf.com.xpi [2021-02-17] [UpdateUrl:hxxps:\/\/updates.tb.ask.com\/updateXpi.json?id=207743773&version=9.110.19.58558&track=TTAB03&trackRevision=1&fromId=_65Membersttab03_%40download.fromdoctopdf.com&isBridgeExtension=false]
FF Extension: (Ask Search for Firefox) - C:\Users\fbanc\AppData\Roaming\Mozilla\Firefox\Profiles\byollmmb.default-release\Extensions\_j5Membersttab03_@ext.ask.com.xpi [2021-05-19] [UpdateUrl:hxxps:\/\/updates.tb.ask.com\/updateXpi.json?id=232530392&version=50.241.19.64106&track=TTAB03&trackRevision=1&fromId=_j5Membersttab03_%40ext.ask.com&isBridgeExtension=false]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => non trouvé(e)
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2020-02-05] (McAfee, LLC. -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2020-02-05] (McAfee, LLC. -> )
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7894040 2021-04-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [606944 2021-04-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1281760 2021-04-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [356064 2021-04-29] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56920 2021-04-29] (Avast Software s.r.o. -> AVAST Software)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_20_1\McApExe.exe [758864 2020-02-05] (McAfee, LLC. -> McAfee, LLC)
S3 McAWFwk; c:\program files\common files\McAfee\ActWiz\McAWFwk.exe [458688 2018-11-14] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\\McCSPServiceHost.exe [2687856 2020-01-25] (McAfee, LLC. -> McAfee, LLC.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1737992 2020-02-06] (McAfee, LLC -> McAfee, LLC.)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1373912 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216360 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [365536 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250336 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99296 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-27] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41296 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [180944 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522864 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107792 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82856 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851144 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471352 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215352 2021-04-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326976 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [75896 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [217912 2019-06-04] (McAfee, LLC -> McAfee, Inc.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [527272 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [380840 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85920 2020-01-15] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [521128 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [997800 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [594360 2019-12-23] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [107960 2019-12-23] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [116856 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252328 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
2021-06-08 17:24 - 2021-06-08 17:34 - 000000000 ____D C:\Users\fbanc\AppData\Roaming\ZHP
2021-06-08 17:24 - 2021-06-08 17:24 - 000000000 ____D C:\Users\fbanc\AppData\Local\ZHP
2021-06-08 17:23 - 2021-06-08 17:23 - 003471512 _____ (Nicolas Coolman) C:\Users\fbanc\Downloads\ZHPSuite.exe
2021-06-08 17:15 - 2021-06-08 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2021-06-02 14:45 - 2021-06-02 14:45 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-06-02 14:45 - 2021-06-02 14:45 - 000215336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7463774dc5011a89.tmp
2021-05-27 23:33 - 2021-05-27 23:33 - 000017328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-06-08 17:49 - 2020-12-15 16:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-06-08 17:10 - 2020-12-15 16:54 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-06-02 14:45 - 2020-12-15 16:54 - 000851144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000522864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000471352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000365536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000250336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000216360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000180944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000099296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000082856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-06-02 14:45 - 2020-12-15 16:54 - 000041296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-05-24 20:08 - 2020-12-15 16:54 - 000522936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw5e22b5034d503097.tmp
EmptyTemp:
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh winsock reset
cmd: sfc /scannow
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.