Start:
CreateRestorePoint:
CloseProcesses:
(C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe
(svchost.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
Task: {1BB22B10-C7C9-4CDF-8611-C1F86D775BEB} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [257312 2022-08-29] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
Task: {31880840-48A9-4F54-98C1-7043507C0979} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1645704 2022-08-29] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
Task: {67F4177B-C98B-4A9D-8508-8C26CC9B5A31} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {751E2547-5FEF-4BD2-8F49-BEF996E4FA26} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [31903104 2022-08-31] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
Task: {9B6042FA-9D38-43E1-92C2-04359BA9F367} - System32\Tasks\Opera scheduled Autoupdate 1631268776 => C:\Users\Acer\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {9C94985E-C9D2-4402-A73C-F9607C6D7F64} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry
Task: {9C94985E-C9D2-4402-A73C-F9607C6D7F64} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog
Task: {9C94985E-C9D2-4402-A73C-F9607C6D7F64} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Edge Extension: (Avira Safe Shopping) - C:\Users\Acer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-05-04]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Acer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-30]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR Extension: (Avira Password Manager) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-09-05]
CHR Extension: (Avira Safe Shopping) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-09-05]
CHR Extension: (Protection Web Avira) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-09-05]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-30]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [265416 2022-08-29] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [284136 2022-08-29] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
S2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [8564392 2022-09-03] (Avira Operations GmbH -> Avira Operations GmbH)
R3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [8564392 2022-09-03] (Avira Operations GmbH -> Avira Operations GmbH)
R1 BdSentry; C:\Windows\System32\DRIVERS\BdSentry.sys [230520 2022-06-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 netprotection_network_filter; C:\Windows\System32\drivers\netprotection_network_filter.sys [100128 2022-06-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 rtp_elam; C:\Windows\System32\DRIVERS\rtp_elam.sys [24024 2022-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH)
R2 rtp_filesystem_filter; C:\Windows\System32\DRIVERS\rtp_filesystem_filter.sys [205768 2022-09-03] (Avira Operations GmbH -> Avira Operations GmbH)
R1 rtp_process_monitor; C:\Windows\system32\DRIVERS\rtp_process_monitor.sys [187496 2022-09-03] (Avira Operations GmbH -> Avira Operations GmbH)
R1 rtp_traverse; C:\Windows\system32\DRIVERS\rtp_traverse.sys [45672 2022-08-26] (Avira Operations GmbH -> Avira Operations GmbH)
S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X]
2022-09-06 06:08 - 2022-09-06 06:08 - 002371072 _____ (Farbar) C:\Users\Acer\Downloads\Non confirmé 267033.crdownload
2022-09-06 05:36 - 2022-09-06 05:36 - 000003888 _____ C:\Windows\system32\Tasks\Avira_Security_Maintenance
2022-09-06 05:36 - 2022-09-06 05:36 - 000003428 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2022-09-06 05:36 - 2022-09-06 05:36 - 000002818 _____ C:\Windows\system32\Tasks\Avira_Security_Systray
2022-08-31 13:28 - 2022-08-31 13:28 - 000003794 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupVerify
2022-09-06 05:36 - 2022-05-04 10:27 - 000003480 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2022-09-06 05:36 - 2022-05-04 10:27 - 000001078 _____ C:\Users\Public\Desktop\Avira.lnk
2022-09-06 05:36 - 2022-05-04 10:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2022-09-03 08:12 - 2022-06-29 18:55 - 000205768 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_filesystem_filter.sys
2022-09-03 08:12 - 2022-06-29 18:55 - 000187496 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_process_monitor.sys
2022-08-26 10:38 - 2022-06-29 18:55 - 000045672 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_traverse.sys
2021-09-17 17:01 - 2021-11-11 20:35 - 000001832 _____ () C:\Users\Acer\AppData\Roaming\wklnhst.dat
AV: Avira Security (Enabled - Up to date) {76C0BF9F-9FD3-D249-DE2F-7A33A59B9258}
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.41.1.25731 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.1.73.30824 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version: - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.20.0.11426 - Avira Operations GmbH & Co. KG) Hidden
Endpoint Protection SDK (HKLM\...\{68E1CCB4-4965-4713-BDEB-77F6D6C9BF9D}_is1) (Version: 1.0.2206.2990 - Avira Operations GmbH & Co. KG) Hidden
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2022-08-30] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2022-08-29] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2022-08-29] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2022-08-30] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2022-08-30] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
FirewallRules: [TCP Query User{F47AA020-99BF-4F64-8C3F-F204E5EBDD49}C:3\emule\emule.exe] => (Allow) C:3\emule\emule.exe => Pas de fichier
FirewallRules: [UDP Query User{AB01E0AB-1C0F-47EE-843D-BED2638B78AD}C:3\emule\emule.exe] => (Allow) C:3\emule\emule.exe => Pas de fichier
FirewallRules: [TCP Query User{5A791BF0-6833-4509-BF98-A4BD5F3F02B7}C:8\emule\emule.exe] => (Allow) C:8\emule\emule.exe => Pas de fichier
FirewallRules: [UDP Query User{8DDACA1D-0CF7-4796-92B7-8E00177420CB}C:8\emule\emule.exe] => (Allow) C:8\emule\emule.exe => Pas de fichier
FirewallRules: [TCP Query User{271EABA3-0DC5-43F4-A92F-5EE495140321}C:5\emule\emule.exe] => (Allow) C:5\emule\emule.exe => Pas de fichier
FirewallRules: [UDP Query User{0978CE27-4723-40F7-92F4-2090B68D7DAF}C:5\emule\emule.exe] => (Allow) C:5\emule\emule.exe => Pas de fichier
FirewallRules: [TCP Query User{719D0961-B745-449F-8E96-D4BF76D770D2}F:\emule\emule.exe] => (Allow) F:\emule\emule.exe => Pas de fichier
FirewallRules: [UDP Query User{4458B7CE-1EB2-4B09-964C-B44FDD8F0A02}F:\emule\emule.exe] => (Allow) F:\emule\emule.exe => Pas de fichier
FirewallRules: [{366D7D07-EDD6-4D72-B1D3-9D674CA5FCE9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => Pas de fichier
FirewallRules: [TCP Query User{710AD10D-32BB-4D7C-A2C7-04E780C22EE2}E:\emule\emule.exe] => (Allow) E:\emule\emule.exe => Pas de fichier
FirewallRules: [UDP Query User{9999E7A8-F5BB-4ED5-8D95-BF49055D9214}E:\emule\emule.exe] => (Allow) E:\emule\emule.exe => Pas de fichier
EmptyTemp:
Reboot: