Start::
CreateRestorePoint:
CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction
Task: {588A9EA4-72A5-4FF9-9F6A-99E3AC7A4776} - System32\Tasks\{B442D95A-8805-41E0-BBF0-0F135732E6F6} => C:\Windows\system32\pcalua.exe -a C:\Users\Lou\AppData\Local\Temp\wzf23f\pwsafe-2.11-FR.exe -d "C:\Users\Lou\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BOQ2DUD1"
Task: {95499827-7622-4503-B825-FEFC3B5285E2} - System32\Tasks\{CA14EA9E-32F8-4DA6-A90B-FB1FE89CEF99} => C:\Windows\system32\pcalua.exe -a "C:\Users\Lou\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W1IQOVI4\HPSupportSolutionsFramework-12.0.30.473.exe" -d C:\Users\Lou\Desktop 
Task: {AB1E2B97-0172-46A9-A1BC-E0BF47188900} - System32\Tasks\{39C54B4C-7A79-43D3-8C4F-CFFF52C76F21} => C:\Windows\system32\pcalua.exe -a C:\Users\Lou\AppData\Local\Temp\wzaca8\pwsafe-2.11-FR.exe -d "C:\Users\Lou\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BOQ2DUD1" 
Task: {CA7D6F33-03B4-4CE3-BE7A-09A761DAA11A} - System32\Tasks\{51DDB100-1B04-4AF3-A3C5-D42C5841B333} => C:\Windows\system32\pcalua.exe -a "C:\Users\Lou\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WVGMMEN4\sp55306.exe" -d C:\Users\Lou\Desktop 
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://search.ask.com/web?q={searchTerms}&l=dis&o=CMDTDF
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://qc.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMDTDF 
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://search.ask.com/web?q={searchTerms}&l=dis&o=CMDTDF
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://qc.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMDTDF 
SearchScopes: HKU\S-1-5-21-2672293872-2841109556-2612424440-1001 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://search.ask.com/web?q={searchTerms}&l=dis&o=CMDTDF
SearchScopes: HKU\S-1-5-21-2672293872-2841109556-2612424440-1001 -> {94C7F78E-3AE6-4E1E-B210-0AF5220F00AB} URL = hxxps://ca.search.yahoo.com/search?p={searchTerms}&intl=ca&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
SearchScopes: HKU\S-1-5-21-2672293872-2841109556-2612424440-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://qc.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CMDTDF 
Toolbar: HKU\S-1-5-21-2672293872-2841109556-2612424440-1001 -> Pas de nom - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Pas de fichier 
C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{63A431C0-2EC1-274E-A395-125777C36E49}\YSearchUtilSvc.exe [182736 2017-03-21] (Yahoo! Inc. -> Yahoo Inc.) 
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier 
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime 
EmptyTemp:
End::