start::
closeprocesses:
createrestorepoint:
SSODL: EldosMountNotificator-cbfs6 - {D1273364-8AFA-4373-BF6C-5EA3130713F3} - C:\WINDOWS\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {D1273364-8AFA-4373-BF6C-5EA3130713F3} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {D1273364-8AFA-4373-BF6C-5EA3130713F3} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-08-03] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {D1273364-8AFA-4373-BF6C-5EA3130713F3} => C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll [2016-08-03] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {698EB0A9-E364-44E9-9693-38466019041A} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-08-03] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {698EB0A9-E364-44E9-9693-38466019041A} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-08-03] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier
SearchScopes: HKU\S-1-5-21-1868460690-2761753343-3300100694-1003 -> DefaultScope {FBB71888-FF74-4A02-A4D6-2B5EC806DC7D} URL =
SearchScopes: HKU\S-1-5-21-1868460690-2761753343-3300100694-1003 -> {FBB71888-FF74-4A02-A4D6-2B5EC806DC7D} URL =
Toolbar: HKU\S-1-5-21-1868460690-2761753343-3300100694-1003 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-1868460690-2761753343-3300100694-1003\...\webcompanion.com -> hxxp://webcompanion.com
FirewallRules: [TCP Query User{E39F28EE-7EB6-489D-9893-5424F1634C0A}D:\games\the sims 4 seasons\game\bin\ts4_x64.exe] => (Block) D:\games\the sims 4 seasons\game\bin\ts4_x64.exe => Pas de fichier
FirewallRules: [UDP Query User{D4A910E2-8740-4011-BC3F-82F8A22445E5}D:\games\the sims 4 seasons\game\bin\ts4_x64.exe] => (Block) D:\games\the sims 4 seasons\game\bin\ts4_x64.exe => Pas de fichier
FirewallRules: [{4F9C2951-6ADD-4C88-9E71-6065BEC68466}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe => Pas de fichier
FirewallRules: [{48EA8AB2-103B-4A7D-8AA8-C5FFF2C846D7}] => (Allow) C:\Users\Juliette\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{69293263-0FA0-40C3-8026-9E6D15B8DA40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe => Pas de fichier
FirewallRules: [{6568044E-C3E9-4CE0-B30F-A134D6132AFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe => Pas de fichier
HKU\S-1-5-21-1868460690-2761753343-3300100694-1003\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-1868460690-2761753343-3300100694-1003\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1868460690-2761753343-3300100694-1003\...\MountPoints2: {82a721c2-49ed-11ea-8646-04d9f5d26571} - "I:\Autoplay.exe" -auto
C:\WINDOWS\system32\cbfsMntNtf6.dl
C:\WINDOWS\system32\drivers\cbfs6.sys
C:\WINDOWS\System32\drivers\vpnpbus.sys
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
C:\Program Files (x86)\Lavasoft
R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-08-03] (EldoS Corporation -> /n software, Inc.)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-08-03] (EldoS Corporation -> /n software, Inc.)
cmd: md C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database
emptytemp:
end::