start::
closeprocesses:
createrestorepoint:
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => -> Pas de fichier
HKU\S-1-5-21-3989596194-3478247091-1364011421-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKLM\...\StartupApproved\StartupFolder: => "avast! SecureLine.lnk"
HKU\S-1-5-21-3989596194-3478247091-1364011421-1001\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-3989596194-3478247091-1364011421-1001\...\StartupApproved\Run: => "bt"
FirewallRules: [TCP Query User{05611B59-2F37-4FA1-A41A-6D31077E5AD7}C:\users\picho\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\picho\appdata\roaming\bittorrent\bittorrent.exe => Pas de fichier
FirewallRules: [UDP Query User{5EC0CBC7-3DAA-4D70-8591-44554C9E0174}C:\users\picho\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\picho\appdata\roaming\bittorrent\bittorrent.exe => Pas de fichier
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\102.0.16817.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7980.150\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
C:\Program Files (x86)\AVAST Software
Task: {852D553A-BC70-4276-92F1-075FC40926C2} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Pas de fichier)
Task: {D28874F5-F9FB-4DCD-9D58-F04D4B2DF36D} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier)
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\picho\AppData\Roaming\Mozilla\Firefox\Profiles\4ymqiz8a.default-1583505398036\Extensions\sp@avast.com.xpi [2022-07-03]
FF Extension: (Avast Online Security & Privacy) - C:\Users\picho\AppData\Roaming\Mozilla\Firefox\Profiles\4ymqiz8a.default-1583505398036\Extensions\wrc@avast.com.xpi [2022-07-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [Pas de fichier]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [Pas de fichier]
C:\Users\picho\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
2022-07-29 10:38 - 2022-07-29 11:07 - 000000000 ____D C:\ProgramData\McAfee
2022-07-29 11:07 - 2015-08-21 22:03 - 000000000 ____D C:\Program Files\Common Files\McAfee
2022-07-29 11:07 - 2015-08-21 22:03 - 000000000 ____D C:\Program Files (x86)\McAfee
2022-07-29 11:07 - 2015-08-21 22:01 - 000000000 ____D C:\ProgramData\AVAST Software
2022-07-29 10:35 - 2015-08-21 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2022-07-29 10:33 - 2018-04-18 20:39 - 000000000 ____D C:\Users\picho\AppData\Local\AVAST Software
2022-07-29 09:43 - 2016-03-23 17:28 - 000000000 ____D C:\Users\picho\AppData\Roaming\BitTorrent
cmd: sfc /scannow
emptytemp:
end::