Start::
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\Run: [com.messenger] => "C:\Users\marie\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (Pas de fichier)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {A73442C8-D966-4414-A5EE-41938DD1FD01} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{93893818-C79D-4A01-B808-8C42DB053F8A} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {E462652B-B632-4B33-88C1-9619D5744AE2} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe  /Run (Pas de fichier)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (Pas de fichier)
Task: {5D04333B-A50F-4804-A186-DC551258F306} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe  LogonUpdateResults (Pas de fichier)
Task: {D7058490-E50C-45D1-9A0D-AE1C8A1D460F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe  /RunOnAC ReadyToReboot (Pas de fichier)
Task: {1FF60D07-EF41-4940-AA05-87DEF0483FF4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe  /RunOnBattery ReadyToReboot (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Pas de fichier)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
2024-07-07 17:34 - 2024-07-07 17:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2024-07-07 17:33 - 2024-07-07 18:25 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2024-07-07 17:33 - 2024-07-07 18:23 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2024-07-06 11:08 - 2024-07-06 11:09 - 008420232 _____ (Google LLC) C:\Users\marie\Downloads\ChromeSetup (1).exe
2024-07-06 09:31 - 2024-07-06 09:31 - 008420232 _____ (Google LLC) C:\Users\marie\Downloads\ChromeSetup.exe
2024-06-10 15:43 - 2024-06-10 15:43 - 000315288 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> Pas de fichier
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> Pas de fichier
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> Pas de fichier
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> Pas de fichier
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> Pas de fichier
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> Pas de fichier
SearchScopes: HKU\S-1-5-21-2808128107-272406312-2941129848-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2808128107-272406312-2941129848-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2808128107-272406312-2941129848-1001\...\123simsen.com -> www.123simsen.com
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
EmptyTemp:
End::