CreateRestorePoint: CloseProcesses: Task: {6E87B2F4-E049-42E2-B042-AD4B2EE58FF2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-01] (Google Inc -> Google LLC) Task: {D7A58AE4-A663-4A9E-A902-8B2A5BD25656} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-01] (Google Inc -> Google LLC) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Pas de fichier ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Pas de fichier ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Pas de fichier SearchScopes: HKU\S-1-5-21-2280364191-240033037-4280599442-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2280364191-240033037-4280599442-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = FirewallRules: [UDP Query User{1E2342FE-0392-47D2-BC30-89D6F6765358}C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe] => (Allow) C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe => Pas de fichier FirewallRules: [TCP Query User{F8DF6BB5-E500-4E9B-B21A-1C28EBD81F73}C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe] => (Allow) C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe => Pas de fichier FirewallRules: [{4528B4DD-FB78-4DDD-AEC5-89F45A955243}] => (Allow) C:\Users\jessi\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [UDP Query User{ECE161E2-8F3C-48BB-B7EF-5D5DF23A764F}D:\jeux\the sims 4\game\bin_le\ts4.exe] => (Allow) D:\jeux\the sims 4\game\bin_le\ts4.exe => Pas de fichier FirewallRules: [TCP Query User{BAB771F2-26CE-4627-96F5-73D17A617108}D:\jeux\the sims 4\game\bin_le\ts4.exe] => (Allow) D:\jeux\the sims 4\game\bin_le\ts4.exe => Pas de fichier FirewallRules: [UDP Query User{2B4F7887-3980-47B9-89DC-73931A4FDC8F}D:\jeux\the sims 4\game\bin\ts4_x64.exe] => (Allow) D:\jeux\the sims 4\game\bin\ts4_x64.exe => Pas de fichier FirewallRules: [TCP Query User{0A840FA2-589D-4643-98C1-3831F2AA0107}D:\jeux\the sims 4\game\bin\ts4_x64.exe] => (Allow) D:\jeux\the sims 4\game\bin\ts4_x64.exe => Pas de fichier FirewallRules: [UDP Query User{92A8DED7-A91C-4DBF-A640-21AF3F9781D6}C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe] => (Allow) C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe => Pas de fichier FirewallRules: [TCP Query User{AF09A9AE-B32A-4730-80E5-BC8E36A5C039}C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe] => (Allow) C:\users\jessi\appdata\local\webtorrent\app-0.21.0\webtorrent.exe => Pas de fichier FirewallRules: [{9F50AC23-E751-43D7-BDC1-6E3B889FFD93}] => (Allow) C:\Users\jessi\AppData\Local\Temp\7zS5C05\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{CFA86526-063B-4509-BA57-FBF356F141A5}] => (Allow) C:\Users\jessi\AppData\Local\Temp\7zS5C05\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{23A6BE88-8C93-49F1-B142-96FC68978AB5}] => (Allow) C:\Users\jessi\AppData\Local\Temp\7zS5F1F\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{9B886AC2-45A7-44AE-881E-FA929DF7F873}] => (Allow) C:\Users\jessi\AppData\Local\Temp\7zS5F1F\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{63BE2311-FF3B-4E21-8729-86EEEC94C22B}] => (Allow) C:\Users\jessi\AppData\Local\Temp\7zS6A7F\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{F2704756-2FB1-44B9-9F2B-F13AFF5B712C}] => (Allow) C:\Users\jessi\AppData\Local\Temp\7zS6A7F\HPDiagnosticCoreUI.exe => Pas de fichier Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\jessi\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Pas de fichier) Shortcut: C:\Users\jessi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\jessi\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Pas de fichier) CMD: netsh winsock reset all CMD: ipconfig /flushdns CMD: netsh advfirewall reset CMD: netsh int ipv4 reset all CMD: netsh int ipv6 reset all CMD: netsh int portproxy reset all CMD: netsh int tcp reset all CMD: netsh int ip reset all CMD: cscript %windir%\System32\slmgr.vbs /dli Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer" /V SmartScreenEnabled /T REG_SZ /D RequireAdmin /f cmd: sc config diagtrack start= disabled cmd: sc config dmwappushservice start= disabled CMD: echo "" > %ProgramData%\Microsoft\Diagnosis\ETLLogs\AutoLogger\AutoLogger-Diagtrack-Listener.etl Reg: REG ADD "HKLM\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /V AllowTelemetry /T REG_DWORD /D 0 /f Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer" /V SmartScreenEnabled /T REG_SZ /D RequireAdmin /f Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f Reg: REG QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall" Reg: REG QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall" Reg: REG QUERY "HKEY_LOCAL_MACHINE\SOFTWARE" Reg: REG QUERY "HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node" c:\windows\temp\*.* C:\Users\CurrentUserName\AppData\Local\Temp\*.* C:\Windows\SoftwareDistribution\Download\* Hosts: EmptyTemp: