start CreateRestorePoint: CloseProcesses: RemoveProxy: HKLM\...\Policies\Explorer: [NoSetFolders] 0 HKLM\...\Policies\Explorer: [NoToolbarCustomize] 0 HKLM\...\Policies\Explorer: [NoFileMenu] 0 HKLM\...\Policies\Explorer: [NoFind] 0 HKLM\...\Policies\Explorer: [HideClock] 0 HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0 HKLM\...\Policies\Explorer: [NoFileUrl] 1 HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50509440 2015-11-30] (Skype Technologies S.A.) HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation) HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [] HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [NoSetFolders] 0 HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [NoToolbarCustomize] 0 HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [NoFileMenu] 0 HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [NoFind] 0 HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [HideClock] 0 HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [NoChangeStartMenu] 0 HKU\S-1-5-21-2257662679-3818682232-1060715382-1000\...\Policies\Explorer: [NoFileUrl] 1 ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier GroupPolicy: Restriction - Chrome <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = CHR RestoreOnStartup: Default -> "hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=bg_504_bl-is-20__alt__ddc_dsssyc_bd_com" CHR StartupUrls: Default -> "","hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=bg_504_bl-is-20__alt__ddc_dsssyc_bd_com" OPR StartupUrls: "hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=bg_504_bl-is-20__alt__ddc_dsssyc_bd_com" OPR Session Restore: -> est activé. S2 adfs; pas de ImagePath S3 WinRing0_1_2_0; \??\C:\Users\user\AppData\Local\Temp\Rar$EXa0.505\WinRing0.sys [X] CustomCLSID: HKU\S-1-5-21-2257662679-3818682232-1060715382-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe /Automation => Pas de fichier CustomCLSID: HKU\S-1-5-21-2257662679-3818682232-1060715382-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe => Pas de fichier CustomCLSID: HKU\S-1-5-21-2257662679-3818682232-1060715382-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\fr-FR\acadficn.dll => Pas de fichier CMD: netsh winsock reset all CMD: ipconfig /flushdns hosts: EmptyTemp: Reboot: end