start::
CreateRestorePoint:
CloseProcesses:
Hosts:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => -> Pas de fichier 
IE trusted site: HKU\S-1-5-21-2334979098-4153499458-2743966119-1001\...\localhost -> localhost 
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION 
Task: {0E4224DF-F0E9-40EB-B280-91989AD245F8} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK 
HKU\S-1-5-21-2334979098-4153499458-2743966119-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
SearchScopes: HKU\S-1-5-21-2334979098-4153499458-2743966119-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Pas de nom -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Pas de fichier 
BHO-x32: Pas de nom -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Pas de fichier 
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - Pas de fichier 
FF Extension: (Avast Online Security) - C:\Users\Cedric\AppData\Roaming\Mozilla\Firefox\Profiles\z0pllm4w.default\Extensions\wrc@avast.com.xpi [2019-09-14] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json] 
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx 
CHR Extension: (Avast Online Security) - C:\Users\Cedric\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-12-29] 
2019-09-16 18:15 - 2018-12-02 18:05 - 000000000 ____D C:\Users\Cedric\AppData\Local\AVAST Software
2019-09-16 18:15 - 2018-12-02 18:02 - 000000000 ____D C:\ProgramData\AVAST Software 
EmptyTemp:
cmd: ipconfig /flushdns
end::