CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1915752 2020-09-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1915752 2020-09-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {46F8211A-635E-46D8-8B79-E2BBD87BD128} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-10-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {520A5BF8-F2E1-4690-A52B-CC860ACFC4C4} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
FF Homepage: Mozilla\Firefox\Profiles\tfw16otu.default -> hxxps://securesearch.org/homepage?hp=2&pId=BC180101&iDate=2020-10-04 08:17:43&bName=
FF NewTab: Mozilla\Firefox\Profiles\tfw16otu.default -> hxxps://securesearch.org/homepage?hp=2&pId=BC180101&iDate=2020-10-04 08:17:43&bName=
FF Notifications: Mozilla\Firefox\Profiles\tfw16otu.default -> hxxps://www.instagram.com; hxxps://tinder.com
2020-10-04 17:20 - 2020-07-14 18:31 - 000000000 ____D C:\Users\yoann\Desktop\FRST-OlderVersion
HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BC180101&iDate=2020-10-04 08:17:43&bName=
IE trusted site: HKU\S-1-5-21-1461851873-1119484311-3382848958-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1461851873-1119484311-3382848958-1001
C:\Users\yoann\AppData\Local\Temp\HFqZ7b8l\XevZeplPfd6XmQBR28oy.exe
C:\ProgramData\TranslateService\TranslateService.exe
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f
CMD: netsh winsock reset all
CMD: netsh advfirewall reset 
CMD: netsh int ipv4 reset all
CMD: netsh int ipv6 reset all
CMD: netsh int portproxy reset all
CMD: netsh int tcp reset all
c:\windows\temp\*.*
C:\Users\CurrentUserName\AppData\Local\Temp\*.*
C:\Windows\SoftwareDistribution\Download\ *
EmptyTemp: