CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
EmptyTemp:
GroupPolicy: Restriction - Windows Defender <==== ATTENTION
URLSearchHook: [S-1-5-21-3283444282-202685168-1180665208-1001] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
FF NewTabOverride: Mozilla\Firefox\Profiles\l2lvb37w.default-1532975404889 -> Disabled: {dd68e504-9d4e-4346-9158-887b1be9b96e}
FF HKLM\...\Firefox\Extensions: [{dd68e504-9d4e-4346-9158-887b1be9b96e}] - C:\WINDOWS\fox\momentumlitetab-1.0.0.3-an+fx.xpi
FF Extension: (MomentumLiteTab) - C:\WINDOWS\fox\momentumlitetab-1.0.0.3-an+fx.xpi [2018-08-04]
FF HKLM-x32\...\Firefox\Extensions: [{dd68e504-9d4e-4346-9158-887b1be9b96e}] - C:\WINDOWS\fox\momentumlitetab-1.0.0.3-an+fx.xpi
CHR HKLM\...\Chrome\Extension: [cognmciomgbkakkddljnmdlekcnngpee] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cognmciomgbkakkddljnmdlekcnngpee] - hxxps://clients2.google.com/service/update2/crx
U5 iTranslatorSvc; <==== ATTENTION: Service verrouillé
Unlock: HKLM\System\CurrentControl\Services\iTranslatorSvc
reg: reg delete HKLM\System\CurrentControl\Services\iTranslatorSvc
R4 NetfilterSvc; \??\C:\WINDOWS\iNetfilterSvc [X]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe
2018-07-30 17:15 - 2018-07-30 22:18 - 000000000 ____D C:\Users\easpa\AppData\Local\ESET
2018-07-30 17:14 - 2018-07-30 17:15 - 006986872 _____ (ESET spol. s r.o.) C:\Users\easpa\Downloads\esetonlinescanner_fra.exe
2018-07-30 13:06 - 2018-07-30 13:06 - 000000000 ____D C:\ProgramData\XvGEGDYvPvqgwcVB
2018-07-30 12:17 - 2018-07-30 18:27 - 000000000 ____D C:\Users\easpa\AppData\Roaming\Enigma Software Group
2018-07-30 12:16 - 2018-07-30 12:16 - 000022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2018-07-30 12:16 - 2018-07-30 12:16 - 000000000 ____D C:\Program Files\Enigma Software Group
2018-07-30 00:44 - 2018-07-30 00:44 - 000000000 ____D C:\Users\easpa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Centre 360 Security
2018-07-28 16:57 - 2018-07-28 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2018-07-28 16:57 - 2017-09-27 16:20 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-07-28 16:57 - 2017-09-27 16:20 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-07-28 16:57 - 2017-09-27 16:20 - 000002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-07-28 16:57 - 2017-09-27 16:20 - 000002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-07-28 16:57 - 2017-09-27 16:20 - 000002479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-07-28 16:57 - 2017-09-27 16:20 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-07-28 16:56 - 2017-09-27 16:17 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
Task: {2255005C-9C0D-4D49-A86C-B5683B3566D1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {2AD712E2-963E-4A52-A9BD-F809A4EEE901} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {700D7DB1-2310-44CC-AD70-554A95D46E4C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
Task: {76A9F30B-DAF9-48C9-9F97-5D838C698B43} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
Task: {C82F816F-EEA4-488A-AF3D-0DCA0A08DF5E} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe
Shortcut: C:\Users\easpa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Int?rnet ??plorer.lnk -> C:\Users\easpa\AppData\Roaming\Browsers\exe.erolpxei.bat (Pas de fichier)
AlternateDataStreams: C:\WINDOWS\system32\Drivers\geqpesqd.sys:changelist [288]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\hlfchpbu.sys:changelist [406]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\iprgizrv.sys:changelist [288]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lrelhyoy.sys:changelist [288]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mnupcqvi.sys:changelist [288]
cmd: ipconfig /flushdns