Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:mcpltui_exe =>.McAfee Inc.
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:ProductUpdater =>Toolbar.Freemake 
HKU\S-1-5-21-3266436634-2734453066-3260852382-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com =>PUP.Optional.LavasoftWebCompanion
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com =>PUP.Optional.LavasoftWebCompanion 
HKCU\Software\undefined =>.SUP.Downloader 
HKU\S-1-5-21-3266436634-2734453066-3260852382-1001\SOFTWARE\undefined =>.SUP.Downloader 
C:\Users\NOUS2\AppData\Local\AdvinstAnalytics =>.SUP.Various 
O69 - SBI: prefs.js [NOUS2 - o150yvhf.Pierre] user_pref("browser.newtab.url", "https://defaultsearch.co/homepage?hp=1&pId=BT170603&iDate=2020-04-30 12:19:42&bName=&bitmask=0600[...] =>SUP.Optional.DefaultSearch
O69 - SBI: prefs.js [NOUS2 - o150yvhf.Pierre] user_pref("browser.newtabpage.url", "https://defaultsearch.co/homepage?hp=1&pId=BT170603&iDate=2020-04-30 12:19:42&bName=&bitmask=[...] =>SUP.Optional.DefaultSearch
O69 - SBI: prefs.js [NOUS2 - fire4moi.default] user_pref("browser.newtab.url", "https://defaultsearch.co/homepage?hp=1&pId=BT170603&iDate=2020-04-30 12:19:42&bName=&bitmask=0600[...] =>SUP.Optional.DefaultSearch
O69 - SBI: prefs.js [NOUS2 - fire4moi.default] user_pref("browser.newtabpage.url", "https://defaultsearch.co/homepage?hp=1&pId=BT170603&iDate=2020-04-30 12:19:42&bName=&bitmask=[...] =>SUP.Optional.DefaultSearch 
C:\Users\NOUS2\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome
C:\Users\NOUS2\AppData\Local\Google\Chrome\User Data\Default\File System\001 =>.SUP.Temporary.Chrome
C:\Users\NOUS2\AppData\Local\Google\Chrome\User Data\Default\File System\002 =>.SUP.Temporary.Chrome
C:\Users\NOUS2\AppData\Local\Google\Chrome\User Data\Default\File System\003 =>.SUP.Temporary.Chrome
C:\Users\NOUS2\AppData\Local\Google\Chrome\User Data\Default\File System\004 =>.SUP.Temporary.Chrome
C:\Users\NOUS2\AppData\Local\Google\Chrome\User Data\Default\File System\005 =>.SUP.Temporary.Chrome 
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::