start::
CreateRestorePoint:
CloseProcesses:
Hosts:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION 
HKU\S-1-5-21-1422908636-1179334149-1785268453-1001\...\Policies\Explorer: [NoAutoTrayNotify] 1 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-17] (Google LLC -> Google LLC)
IFEO\MusNotification.exe: [Debugger] cmd.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Tcpip\..\Interfaces\{361817d6-e4dd-4d39-9b91-f3456940744e}: [DhcpNameServer] 8.8.8.8 
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION 
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] 
2021-06-23 19:30 - 2021-06-23 19:32 - 000000000 ____D C:\ProgramData\OBRG7T9NWG6FFEJKWFVZVBCXV
2021-06-23 19:30 - 2021-06-23 19:32 - 000000000 ____D C:\ProgramData\GQEP13EOGEUL9XNFBU3PU14HG
2021-06-23 19:30 - 2021-06-23 19:32 - 000000000 ____D C:\ProgramData\1WENJOWV0K4QGW99QP9OPCDL1
2021-06-23 19:30 - 2021-06-23 19:31 - 000000000 ____D C:\ProgramData\CAZ3B26QWNJMXJ2WJ2Y12UJ5O 
2021-06-23 19:30 - 2021-06-23 19:30 - 000000000 ____D C:\Users\bazel\AppData\Local\Yandex
2021-06-23 19:29 - 2021-06-23 20:09 - 000000000 ____D C:\Program Files (x86)\Browzar 
2021-06-28 18:36 - 2020-01-12 19:13 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 
2021-06-28 18:13 - 2020-01-27 13:58 - 000000000 ____D C:\Users\bazel\AppData\Roaming\uTorrent 
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier 
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [488] 
0.0.0.0 tools.google.com
0.0.0.0 clients2.google.com
0.0.0.0 update.googleapis.com
0.0.0.0 msedge.api.cdp.microsoft.com
0.0.0.0 msedge.f.dl.delivery.mp.microsoft.com
0.0.0.0 download.mozilla.org
0.0.0.0 product-details.mozilla.org
0.0.0.0 desktop-netinstaller-sub.osp.opera.software
0.0.0.0 download-installer.cdn.mozilla.net
0.0.0.0 aus5.mozilla.org
0.0.0.0 normandy.cdn.mozilla.net
0.0.0.0 api.browser.yandex.ru
0.0.0.0 classify-client.services.mozilla.com 
FirewallRules: [{107C1AC5-3ABD-4469-987D-F6689B36F50F}] => (Allow) C:\Users\bazel\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{A06E8FD1-8FDD-43E5-B7A7-70FD4664FB53}] => (Allow) C:\Users\bazel\AppData\Roaming\Zoom\bin\Zoom.exe => Pas de fichier
FirewallRules: [UDP Query User{DB16CB24-C7F3-47F6-BF3E-EE64138EFE75}C:\users\bazel\appdata\local\radvision\conference client\8.3.901.2\cucore.exe] => (Block) C:\users\bazel\appdata\local\radvision\conference client\8.3.901.2\cucore.exe => Pas de fichier
FirewallRules: [TCP Query User{861B42AD-69CC-41DB-8A5C-47DA13EBFE5B}C:\users\bazel\appdata\local\radvision\conference client\8.3.901.2\cucore.exe] => (Block) C:\users\bazel\appdata\local\radvision\conference client\8.3.901.2\cucore.exe => Pas de fichier 
FirewallRules: [{8BFEB904-3570-428B-84AF-74D261F02B1C}] => (Allow) C:\Users\bazel\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5BA54071-DA60-445F-8176-EA7666CD864A}] => (Allow) C:\Users\bazel\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9F2A3BC7-5D2A-40A0-8446-CB17E5B1BB36}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Pas de fichier
FirewallRules: [{39FFA535-6479-44EF-AA13-25DF2B160F85}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Pas de fichier 
FirewallRules: [{9E59F428-6920-4DDD-89D5-576447EAF53D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{A76FAB46-5337-4668-990B-49C1E1682E9B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{1C7460B9-8F35-4590-B5DD-83EAC4851A86}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier
FirewallRules: [{971E71F8-1108-42C9-8219-0FA1E3AA09DF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier 
EmptyTemp: 
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh winsock reset
cmd: sfc /scannow
end::