start
closeprocesses:
System Mechanic (HKLM-x32\...\{BF979795-8FC8-4FB5-AC26-CC753CA140BE}) (Version: 17.0.1.11 - iolo technologies, LLC) Hidden
createrestorepoint:ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
CustomCLSID: HKU\S-1-5-21-2002730894-3358321575-2067789027-1001_Classes\CLSID\{D8E0CDAD-2FAE-40EB-8433-7F5A79714FB8}\InprocServer32 -> C:\Users\Claude\AppData\Local\Chromium\Update\1.3.99.0\psuser_64.dll (Chromium.) [Fichier non signé]
CustomCLSID: HKU\S-1-5-21-2002730894-3358321575-2067789027-1001_Classes\CLSID\{E064AEC2-5150-4DF6-B2A3-1A6721C2076B}\InprocServer32 -> C:\Users\Claude\AppData\Local\Chromium\Update\1.3.99.0\psuser_64.dll (Chromium.) [Fichier non signé]
Toolbar: HKU\S-1-5-21-2002730894-3358321575-2067789027-1001 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
FirewallRules: [{B59390EC-5C59-4A7E-9EDA-90CF3B036812}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 5.8.0\ABService.exe => Pas de fichier
FirewallRules: [{98FEACAD-B6C6-462B-A7E8-4A66C5921420}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 5.8.0\ABService.exe => Pas de fichier
FirewallRules: [{A7191935-CFDB-44B6-AFF7-0AC27C5DA049}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 5.8.0\ABService.exe => Pas de fichier
FirewallRules: [{59D141DF-2360-49C3-ACCD-F208B95CAA72}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 5.8.0\ABService.exe => Pas de fichier
FirewallRules: [{EBFFAF6C-03E9-4C7A-8B00-C42A934E0BA7}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.4.0\ABService.exe => Pas de fichier
FirewallRules: [{EA0A89A7-9EFB-4DC8-ACF6-D3CA0F92551C}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.4.0\ABService.exe => Pas de fichier
FirewallRules: [{34EE8CB0-8E6D-4880-9E73-40E217549F92}] => (Allow) C:\Users\Claude\AppData\Roaming\Zoom\bin\Zoom.exe => Pas de fichier
FirewallRules: [{30C31218-AE69-4A57-BAA0-8EA10AAC67EA}] => (Allow) C:\Users\Claude\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{1A486573-8137-41A9-AF67-AA34D4AF2088}] => (Allow) C:\Users\Claude\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
C:\Users\Claude\AppData\Local\chromium
HKU\S-1-5-21-2002730894-3358321575-2067789027-1001\...\Run: [Chromium] => "c:\users\claude\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-2002730894-3358321575-2067789027-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2002730894-3358321575-2067789027-1001\...\Run: [Chromium Update] => C:\Users\Claude\AppData\Local\Chromium\Update\1.3.99.0\ChromiumUpdateCore.exe [588800 2020-02-25] (Chromium.) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-2002730894-3358321575-2067789027-1001\...\Run: [CanonImageDisplay] => [X]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2021-07-16]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Pas de fichier)
Task: {039E9854-587E-4903-9602-DD271F4B3B12} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.11.2.7\SymErr.exe
Task: {0445120E-403B-42FD-A09F-7FC3F8CCF278} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.11.2.7\SymErr.exe
C:\Program Files\Norton Security
Task: {0E3DCAA9-2E70-46C5-96C9-63CF69941FB8} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.11.2.7\WSCStub.exe
Task: {1E9A1589-45B7-4C51-AF83-F2D86385715B} - System32\Tasks\Opera scheduled Autoupdate 1574610606 => C:\Users\Claude\AppData\Local\Programs\Opera\launcher.exe
Task: {53AAF2D9-AAB0-4898-87FA-0FCAF066F6F3} - System32\Tasks\ChromiumUpdateTaskUserS-1-5-21-2002730894-3358321575-2067789027-1001Core => C:\Users\Claude\AppData\Local\Chromium\Update\ChromiumUpdate.exe [100352 2020-02-25] (Chromium.) [Fichier non signé] <==== ATTENTION
Task: {67163866-7E42-45FA-9A50-49F937E681B3} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {AEB6D926-FA20-48A9-8C05-67E939233980} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.11.2.7\SymErr.exe
Task: {B4D6F78A-4890-42A1-B3D9-1A8D88168761} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {B9E59DC6-B388-4A04-BD9B-C1C914FC4432} - System32\Tasks\ioloSmartUpdater => C:\Program Files (x86)\System Mechanic\ioloSmartUpdater.exe
Task: {C8E54CC2-C913-4AE2-8391-F7840F17F313} - System32\Tasks\ChromiumUpdateTaskUserS-1-5-21-2002730894-3358321575-2067789027-1001UA => C:\Users\Claude\AppData\Local\Chromium\Update\ChromiumUpdate.exe [100352 2020-02-25] (Chromium.) [Fichier non signé] <==== ATTENTION
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Mailtrack for Gmail & Inbox: Email tracking) -> EdgeExtension_MailtrackMailtrack_sw9krn3pjz8v2 => C:\Program Files\WindowsApps\Mailtrack.Mailtrack_2.22.6.0_neutral__sw9krn3pjz8v2 [2020-05-19]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FF Plugin HKU\S-1-5-21-2002730894-3358321575-2067789027-1001: @chbrowserupdate.com/Chromium Update;version=3 -> C:\Users\Claude\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2020-02-25] (Chromium.) [Fichier non signé]
FF Plugin HKU\S-1-5-21-2002730894-3358321575-2067789027-1001: @chbrowserupdate.com/Chromium Update;version=9 -> C:\Users\Claude\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2020-02-25] (Chromium.) [Fichier non signé]
OPR Profile: C:\Users\Claude\AppData\Roaming\Opera Software\Opera Stable [2021-06-30]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.fr/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
2021-07-04 15:44 - 2021-07-04 15:44 - 000000000 ____D C:\KPRM
2021-07-02 15:48 - 2021-07-01 18:31 - 000000031 _____ C:\AVScanner.ini
2021-07-01 18:32 - 2021-07-01 18:32 - 000000000 ____D C:\Program Files\McAfee
2021-07-01 18:31 - 2021-07-16 16:13 - 000000000 ____D C:\ProgramData\McAfee
2018-08-10 11:22 - 2018-08-10 11:22 - 003158912 _____ () C:\Users\Claude\ZHPDiag3.exe
cmd: md C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database
cmd: sfc /scannow
cmd: DISM /Online /Cleanup-image /Restorehealth
emptytemp:
end