start:: CreateRestorePoint: CloseProcesses: (services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe (taskeng.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {1b12fc04-b1d4-11e5-b0df-806e6f6e6963} - D:\ASRSetup.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {3fa45339-0b91-11e6-a03c-806e6f6e6963} - E:\AutoRun.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {3fa45382-0b91-11e6-a03c-d0509957b262} - E:\AutoRun.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {859115c5-fc26-11ea-af9b-d0509957b262} - E:\HiSuiteDownLoader.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {8c255b66-0acb-11e6-b7ef-d0509957b262} - E:\AutoRun.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {8eec5bd9-0949-11e6-8525-806e6f6e6963} - E:\AutoRun.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {8eec5c09-0949-11e6-8525-d0509957b262} - E:\AutoRun.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {94f3dc64-f247-11e9-8f10-d0509957b262} - E:\HiSuiteDownLoader.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {975ffa65-0a14-11e6-8a5c-d0509957b262} - E:\AutoRun.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {b14eedac-71d0-11eb-9cd1-d0509957b262} - E:\HiSuiteDownLoader.exe HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {e22e9eb2-bd66-11e5-8936-d0509957b262} - E:\LaunchU3.exe -a HKU\S-1-5-21-4006483327-3957098522-990465952-1000\...\MountPoints2: {fdad11d0-01e9-11e9-9ce7-d0509957b262} - E:\HiSuiteDownLoader.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-23] (Google LLC -> Google LLC) GroupPolicy-Firefox: Restriction HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction Task: {6DF114B5-5455-44D2-A8A4-DE07FDFBEE15} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [256800 2022-07-14] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) Task: {AF9A02F5-0E7B-427B-9D67-893FD5C8D09C} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [55808 2009-07-14] (Microsoft Windows -> Microsoft Corporation) Task: {BA62C90F-0E7F-4D4A-B414-FC85555B5E5E} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1645704 2022-07-14] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) Task: {CCBAF3C3-01E8-455A-AA86-5855164B9E42} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry Task: {CCBAF3C3-01E8-455A-AA86-5855164B9E42} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog Task: {CCBAF3C3-01E8-455A-AA86-5855164B9E42} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector Task: {F2EC4179-83A1-4581-97B2-198619055B3D} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [32837648 2022-07-27] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) FF Extension: (To Google Translate) - c:\programdata\kaspersky lab\safebrowser\kis\s-1-5-21-4006483327-3957098522-990465952-1000\firefox\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-11-30] FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR NewTab: Default -> Not-active:"chrome-extension://becklgmbheknjjjaflpgodmbihommoke/stubby.html", Not-active:"chrome-extension://edlkcjfhiofedjdnbagmjhmkemmnnggg/stubby.html" R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [264400 2022-07-14] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [282464 2022-07-14] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) R2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [8487456 2022-07-26] (Avira Operations GmbH -> Avira Operations GmbH) S3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [8487456 2022-07-26] (Avira Operations GmbH -> Avira Operations GmbH) S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X] R1 BdSentry; C:\Windows\System32\DRIVERS\BdSentry.sys [215360 2022-06-21] (BullGuard LTD -> Avira Operations GmbH & Co. KG) R1 rtp_traverse; C:\Windows\System32\DRIVERS\rtp_traverse.sys [47560 2022-06-24] (Avira Operations GmbH -> Avira Operations GmbH) S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X] S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X] AV: Avira Security (Enabled - Up to date) {76C0BF9F-9FD3-D249-DE2F-7A33A59B9258} AS: Avira Security (Enabled - Up to date) {CDA15E7B-B9E9-DDC7-E49F-4141DE1CD8E5} ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll -> Pas de fichier ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2022-07-14] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll -> Pas de fichier ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2022-07-14] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll -> Pas de fichier FirewallRules: [{444A5678-0489-45E0-8D4C-334E83CD0CBC}] => (Allow) LPort=54950 FirewallRules: [{98F63284-ECF5-40B9-BAC9-AB8D12BBFA89}] => (Allow) LPort=54955 EmptyTemp: end::