start::
CreateRestorePoint:
CloseProcesses:
Hosts:
RemoveProxy:
HKLM-x32\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2897025983-2889811053-1143756652-1001\...\Run: [AvastBrowserAutoLaunch_F56D82E4D818977C6C2669C4F200DA10] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\Installer\chrmstp.exe
Task: {006669AB-B3CE-444D-B69F-0CE998510287} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier
Task: {098C14B0-2918-4BDD-9486-2F8882487E01} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12]
Task: {168B5E83-84A9-4931-AE28-2AB02E8228A6} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier
Task: {16EAF332-C457-4074-A9A9-7B95B2EE4E74} - \WPD\SqmUpload_S-1-5-21-2897025983-2889811053-1143756652-1001 -> Pas de fichier
Task: {1C61E99B-E5E9-4469-BC13-8226E274D3AC} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {2852996B-0942-4558-88E6-569C464B2DAE} - \Lenovo\Lenovo Service Bridge\S-1-5-21-2897025983-2889811053-1143756652-1001 -> Pas de fichier
Task: {2D76519B-871A-430E-B973-9FED5DD9F0AE} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12]
Task: {2F223970-7841-4039-8775-0FADEA1D7F36} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-06-12]
Task: {3CEBFD47-06A9-4412-AFD1-1409AA39DDCE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2281944 2019-06-04]
Task: {4DA7345A-9D9E-4843-A979-4E42BB683EEF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier
Task: {5860B3EB-DC79-43BB-ADC9-F15EFB1F8D2C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier
Task: {6CD980A0-14C3-4894-B123-A604E48BE11E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier
Task: {8AAA9C4E-707E-4D12-91F3-C267768C4050} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier
Task: {AFC42622-E13D-4955-86A1-BC95463DDCE1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-06-12]
Task: {C5BA1E18-9E97-4E05-B865-F1AE8693F648} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier
Task: {C7D10AF8-0834-46BD-8552-E7F0596922FF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier
Task: {E02F022B-FCC7-47AA-8F58-4FDC8F554D5F} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier
Task: {E48AA4EC-B1CB-47BC-A991-BB9D0F91BCF4} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E539FC03-F550-4E72-B2BD-A27CAE808939} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier
Task: {E98C9092-82D5-4368-81DA-826AFAF80CDA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier
Task: {EF93356F-416B-43B6-80A5-FBB73124ADEF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier
Task: {FB5B1020-9778-4B64-90FE-806419841CE2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier
URLSearchHook: [S-1-5-21-2897025983-2889811053-1143756652-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07132019030857808] ATTENTION => URLSearchHook par défaut est absent
URLSearchHook: [S-1-5-21-2897025983-2889811053-1143756652-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07132019034306311] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKLM-x32 -> DefaultScope {A2A0D830-579B-40E9-A2EB-950E5469FD06} URL =
SearchScopes: HKU\S-1-5-21-2897025983-2889811053-1143756652-1001 -> {A2A0D830-579B-40E9-A2EB-950E5469FD06} URL =
CHR HKLM\...\Chrome\Extension: [lbojggafdepnclikhiapkpinbfdhbdoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [lbojggafdepnclikhiapkpinbfdhbdoi] - hxxps://clients2.google.com/service/update2/crx
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12]
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12]
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\75.0.1447.80\elevation_service.exe [978720 2019-06-12]
2019-06-28 14:15 - 2019-04-12 18:41 - 000003856 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-06-28 14:15 - 2019-04-12 18:41 - 000003272 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-06-28 14:15 - 2018-04-12 10:03 - 000002472 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2016-11-25 09:56 - 2019-04-15 13:30 - 000027648 _____ () C:\Users\Alain Beaujard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
AlternateDataStreams: C:\Users\Public\AppData:CSM [474]
EmptyTemp:
cmd: ipconfig /flushdns
end::