start:: CreateRestorePoint: CloseProcesses: HKU\S-1-5-21-495597106-207834800-127078263-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18594760 2018-09-19] (Piriform Ltd) CHR HomePage: Default -> hxxp://fr.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ir_15_32¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtAzz0ByBtA0AyD0Azz0ByD0CyDtN0D0Tzu0StCtAtCyCtN1L2XzutAtFtCtBtFyDtFtAtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyE0EyBtA0FtDtAyDtGtCzytB0BtGtDzy0F0BtGtAtCzztAtGtAtCtDzyyBtCtByE0D0BtB0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0DtDyEzytDtB0AtGyDtCtDtAtGyE0CzzzytGzyyD0B0BtG0A0AyCyEyCyBtAyBtCyB0C0B2QtN0A0LzuyE%26cr%3D1626156109%26a%3Dwncy_ir_15_32%26os%3DWindows%2B7%2BHome%2BPremium DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|HP Deskjet 3070 B611 series (NET) DeleteValue: HKU\S-1-5-21-495597106-207834800-127078263-1001\Software\Microsoft\Windows\CurrentVersion\Run|HP Deskjet 3070 B611 series (NET) DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} DeleteKey: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} C:\WINDOWS\Installer\107b5d92.msp C:\WINDOWS\Installer\108521aa.msp C:\WINDOWS\Installer\1779dc26.msp C:\WINDOWS\Installer\495cf59.msp C:\WINDOWS\Installer\ea725e6.msp DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} DeleteKey: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 C:\Users\Marlene\AppData\Local\Google\Chrome\User Data\Default\File System\000 C:\Users\Marlene\AppData\Local\Google\Chrome\User Data\Default\File System\001 C:\Users\Marlene\AppData\Local\Google\Chrome\User Data\Default\File System\002 C:\Users\Marlene\AppData\Local\Google\Chrome\User Data\Default\File System\003 ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier Task: {A91F9B91-F5D1-4A89-B07F-93C08F4C81CE} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier EmptyTemp: end::