Start::
CloseProcesses:
CreateRestorePoint:
Removeproxy:
Hosts:
C:\Program Files (x86)\Lavasoft
C:\Users\barba\AppData\Roaming\Lavasoft
C:\Users\barba\AppData\Local\Lavasoft
C:\ProgramData\Lavasoft
C:\Program Files\McAfee
Task: {0A192384-63B6-4ABB-85E5-1E47F7D5FFE8} - System32\Tasks\McAfee\McAfee OOBE Patch Telemetry => C:\Program Files\Common Files\McAfee\ModuleCore\DayZeroOOBEFix_64.exe [3499728 2020-04-01] (McAfee, LLC -> McAfee, LLC)
Task: C:\Windows\Tasks\update-S-1-5-21-1974288296-430127373-1930672524-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: {5BA98CD8-836F-4E2C-9FA8-7A35584D1360} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfeeŽ WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-06-03] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [939544 2020-06-03] (McAfee, LLC -> McAfee, LLC)
C:\ProgramData\Spybot - Search & Destroy
C:\Program Files (x86)\Spybot - Search & Destroy 2
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
C:\Users\barba\OneDrive\Documents\KMSPICO v10.2.0 Portable & Install
C:\Windows\SECOH-QAD.exe
C:\Windows\SECOH-QAD.dll
C:\Users\barba\AppData\Local\BitTorrentHelper
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
FirewallRules: [{D7027A64-C5C0-4F2D-A146-9DEFB274BE76}] => (Allow) C:\Users\barba\AppData\Local\Programs\Opera\68.0.3618.125\opera.exe => Pas de fichier
FirewallRules: [{6C93677D-5253-4BE4-AFD6-B5824E64CA69}] => (Allow) C:\Users\barba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{74EB47E9-0C94-4572-966A-BCA6BBAF14C9}] => (Allow) C:\Users\barba\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
cmd: netsh winsock reset
cmd: cscript %windir%\System32\slmgr.vbs /dli 
StartPowershell:
DISM /Online /Cleanup-image /Restorehealth
sfc /scannow
EndPowershell:
Emptytemp: 
End::