Start::
CreateRestorePoint:
CloseProcesses:
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
Task: {59F2F617-80FE-4559-9982-D4CF78515D18} - System32\Tasks\SafeZone scheduled Autoupdate 1464154796 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-3346201014-2778908173-1434163057-1000Core" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-3346201014-2778908173-1434163057-1000Core1d6097e5d845173" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-3346201014-2778908173-1434163057-1000UA" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-3346201014-2778908173-1434163057-1000UA1d6097e5eaa1110" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\SafeZone scheduled Autoupdate 1464154796" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{3CEE63B2-837E-4863-A1B8-02B6DB3B168E}" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\{BC84736C-368B-4180-93FB-C88EFBEE5003}" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\{C74FB470-5CC6-4885-AFE3-FC7E87EF31C2}" /ENABLE
Task: {9657C153-E97D-4E54-A38F-F696D764F19B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF NetworkProxy: Mozilla\Firefox\Profiles\wyqqrp9c.default-release -> type", 0
FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Jean-André\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
FF Extension: (Speed Analysis 2) - C:\Users\Jean-André\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-08-14] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [7go@7go.com] - C:\Users\Jean-André\AppData\Roaming\Mozilla\Extensions\7go@7go.com
FF Extension: (7Go Games) - C:\Users\Jean-André\AppData\Roaming\Mozilla\Extensions\7go@7go.com [2013-08-14] [] [non signé]
FF HKU\S-1-5-21-3346201014-2778908173-1434163057-1000\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Jean-André\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
FF HKU\S-1-5-21-3346201014-2778908173-1434163057-1000\...\Firefox\Extensions: [7go@7go.com] - C:\Users\Jean-André\AppData\Roaming\Mozilla\Extensions\7go@7go.com
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2022-08-05] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2022-08-05] <==== ATTENTION
CHR Extension: (Recherche Google) - C:\Users\Jean-André\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean-André\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]
CHR HKU\S-1-5-21-3346201014-2778908173-1434163057-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKU\S-1-5-21-3346201014-2778908173-1434163057-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]
S4 DES2 Service; "C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe" [X]
U5 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [31064 2011-02-23] (AVAST Software -> AVAST Software)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (AnchorFree Inc -> The OpenVPN Project)
2022-08-05 12:12 - 2022-08-05 12:12 - 012716432 _____ (AVAST Software) C:\Users\Jean-André\Downloads\avastclear (2).exe
2022-08-04 19:12 - 2022-08-04 19:13 - 002370048 _____ (Farbar) C:\Users\Jean-André\Downloads\FRST64-2.1.exe
2022-08-04 15:57 - 2022-08-04 15:57 - 161345283 _____ C:\Users\Jean-André\Downloads\kfa18.0.0.405aben_es_fr_12643.sospc_.name_.zip
2022-08-03 16:43 - 2022-08-03 16:43 - 001575742 _____ (Igor Pavlov) C:\Users\Jean-André\Downloads\7z2201-x64.exe
2022-08-03 11:25 - 2022-08-03 11:25 - 001624440 _____ (Tous Les Drivers) C:\Users\Jean-André\Downloads\Mes_Drivers_3.0.4.exe
2022-08-04 07:46 - 2022-08-04 07:46 - 007521232 _____ (VS Revo Group ) C:\Users\Jean-André\Downloads\revosetup.exe
2022-08-02 18:13 - 2022-08-02 18:15 - 012716432 _____ (AVAST Software) C:\Users\Jean-André\Downloads\avastclear (1).exe
2022-08-02 18:13 - 2022-08-02 18:14 - 012716432 _____ (AVAST Software) C:\Users\Jean-André\Downloads\avastclear.exe
2022-07-23 07:24 - 2022-07-23 07:24 - 011847936 _____ (Tim Kosse) C:\Users\Jean-André\Downloads\FileZilla_3.60.2_win64-setup.exe
2022-07-14 10:32 - 2022-07-14 10:32 - 011828160 _____ (Tim Kosse) C:\Users\Jean-André\Downloads\FileZilla_3.60.1_win64-setup.exe
2022-08-05 14:24 - 2015-12-03 20:51 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2022-08-05 12:41 - 2016-05-25 15:06 - 000000000 ____D C:\Program Files\Common Files\McAfee
2022-08-05 12:39 - 2016-05-25 14:46 - 000000000 ____D C:\ProgramData\McAfee
2022-08-05 08:51 - 2016-05-24 15:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2022-08-05 08:51 - 2014-07-09 10:27 - 000000000 ____D C:\Users\Jean-André\AppData\Roaming\AVAST Software
2022-08-02 21:24 - 2018-08-01 08:22 - 000000000 ____D C:\Users\Jean-André\AppData\Local\AVAST Software
2022-08-02 18:02 - 2016-05-25 07:40 - 000003914 _____ C:\Windows\system32\Tasks\SafeZone scheduled Autoupdate 1464154796
2022-08-02 18:02 - 2014-07-12 08:54 - 000003096 _____ C:\Windows\system32\Tasks\{BC84736C-368B-4180-93FB-C88EFBEE5003}
2022-08-02 18:02 - 2013-04-24 15:46 - 000003324 _____ C:\Windows\system32\Tasks\{C74FB470-5CC6-4885-AFE3-FC7E87EF31C2}
7Go Games (HKLM-x32\...\7Go Games) (Version: 1.0.0.0 - 7go.com)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1207.2 - AVG Technologies) Hidden
CopyRightLeft 0.4 Beta (HKLM-x32\...\CopyRightLeft_is1) (Version: - )
LavasoftTcpService (HKLM-x32\...\{5916A24B-59A4-4FDB-9753-499CB1F65362}) (Version: 2.3.4.2 - Lavasoft) Hidden
odf-converter-integrator (HKLM-x32\...\odf-converter-integrator) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Photocite Collection 4 (HKLM-x32\...\Photocite Collection 4) (Version: - )
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
AlternateDataStreams: C:\Users\Jean-André\Desktop\NVIDIA.png:SummaryInformation [0]
AlternateDataStreams: C:\Users\Jean-André\Desktop\NVIDIA.png:Updt_SummaryInformation [151]
AlternateDataStreams: C:\Users\Jean-André\Desktop\NVIDIA.png:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Jean-André\Desktop\Sans titre.png:SummaryInformation [0]
AlternateDataStreams: C:\Users\Jean-André\Desktop\Sans titre.png:Updt_SummaryInformation [151]
AlternateDataStreams: C:\Users\Jean-André\Desktop\Sans titre.png:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\S-1-5-21-3346201014-2778908173-1434163057-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-3346201014-2778908173-1434163057-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk => C:\Windows\pss\Avast Cleanup Premium.lnk.CommonStartup
MSCONFIG\startupreg: ISUSPM Startup => C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
MSCONFIG\startupreg: TuneupUI.exe => "C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui
FirewallRules: [{448788B0-F0B3-49BC-91F0-CAF0BD55C7DB}] => (Allow) C:\Users\Jean-André\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{3C76B92E-214B-4A52-A654-403DC6783003}] => (Allow) C:\Users\Jean-André\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{D3160643-EE7E-44E8-B5D8-A09CED5CA210}] => (Allow) C:\Users\Jean-André\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{52EEC0A8-CC97-469C-8A96-04E2B8A32246}] => (Allow) C:\Users\Jean-André\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{5275A1EC-6704-4F13-9F5A-DE84AD29DDE6}] => (Allow) C:\Users\Jean-André\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{B0D6EE4B-2953-42AA-8FFE-2F91EC3800D7}] => (Allow) C:\Users\Jean-André\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{0AD31E81-D1A6-4855-A11F-5A279963A436}] => (Allow) C:\Users\Jean-André\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [Fichier non signé]
FirewallRules: [{2EB22CDD-BD14-4123-9899-99951B391FFD}] => (Allow) C:\Users\Jean-André\AppData\Local\Temp\7zS7071\HPDiagnosticCoreUI.exe => Pas de fichier
FirewallRules: [{14311571-0FCD-4EDB-AF7C-CF9EE37DE507}] => (Allow) C:\Users\Jean-André\AppData\Local\Temp\7zS7071\HPDiagnosticCoreUI.exe => Pas de fichier
Hosts:
EmptyTemp:
Reboot:
End::