CreateRestorePoint:
CloseProcesses:
Task: {6A099DEF-93B8-45FB-B662-5564AB634DEA} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software)
C:\Program Files\Common Files\AVAST Software
SearchScopes: HKU\S-1-5-21-1461851873-1119484311-3382848958-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1461851873-1119484311-3382848958-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05042020104927294 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X]
2020-04-17 12:33 - 2020-04-17 12:33 - 000001871 _____ C:\Users\yoann\Desktop\kprm-20200417123306.txt
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-04-15 22:02 - 2020-04-15 22:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Pas de fichier
AlternateDataStreams: C:\Users\yoann\AppData\Local\Temp:$DATA​ [16]
CMD: cscript %windir%\System32\slmgr.vbs /dli
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer" /V SmartScreenEnabled /T REG_SZ /D RequireAdmin /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f
CMD: netsh winsock reset
RemoveProxy:
CMD: ipconfig /flushdns
CMD: bitsadmin /reset 
c:\windows\temp\*.*
C:\Users\CurrentUserName\AppData\Local\Temp\*.*
C:\Windows\SoftwareDistribution\Download\ *
EmptyTemp: