start::
closeprocesses:
createrestorepoint:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier 
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier 
AlternateDataStreams: C:\Users\clara\Cookies:ErUTk56K9PgZ3hW09QY1g [2308]
AlternateDataStreams: C:\Users\clara\AppData\Local\fjAKQDSaXr0Ip:EQDBLfjxENRbc2jTQFpkI [2066]
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com 
FirewallRules: [{90839865-C252-423B-9462-8FF039173977}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => Pas de fichier
FirewallRules: [{330795B2-535F-4A6E-81A3-514B70F3AFF1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => Pas de fichier
FirewallRules: [{8354D7DE-F9E7-4178-8ADB-B3D4A7529C8D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => Pas de fichier
FirewallRules: [{B181FC74-6B2B-43A3-8C9F-5D26C2088844}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => Pas de fichier 
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION 
HKU\S-1-5-21-636252599-509434962-314770919-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32721976 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd) 
IFEO\LogTransport2.exe: [Debugger] 0
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION 
Task: {5AE8A278-5ED4-4599-8EF7-D7A111844F09} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software) 
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION 
FF Extension: (Online Safety by Safely) - C:\Users\clara\AppData\Roaming\Mozilla\Firefox\Profiles\qzc341s8.default-1519728528977\Extensions\{72dc5fd5-179b-40b6-9218-e88434939ed8}.xpi [2019-10-18] [UpdateUrl:hxxps://addons.mysafe-search.net/ssff/updates.json] 
CHR HKLM\...\Chrome\Extension: [looohgelibjoplmkhecmalapkgadkfcc]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [looohgelibjoplmkhecmalapkgadkfcc] 
C:\WINDOWS\system32\default_error_stack-*
2021-02-24 08:22 - 2017-11-09 00:30 - 000000000 ___DC C:\Users\clara\AppData\Roaming\Lavasoft
2021-02-24 08:22 - 2017-11-09 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 
cmd: sfc /scannow
emptytemp:
end::