start:: CreateRestorePoint: CloseProcesses: Hosts: RemoveProxy: Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Select a coupon.lnk [2016-05-28] Task: {034377B7-F727-47C7-82F9-8EDD074B554F} - \WPD\SqmUpload_S-1-5-21-3896884349-4277914328-3146512117-1001 -> Pas de fichier Task: {2664786C-1370-418A-9C31-C40C02CC8022} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier Task: {32B80FAF-71D0-41D1-85B3-B66AAD3A68C7} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier Task: {3A6AF2B6-11E8-44D2-98E6-03EBC7E84463} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Camping St-Ignace\Downloads\esetonlinescanner_fra.exe Task: {49C73A47-30A3-4639-B823-54F7AFD345D0} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier Task: {4C616D25-AA05-4479-96D1-B32D3D6E3930} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier Task: {5D91480A-10E7-454B-AB55-E5B3D8A9CD94} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier Task: {698B9222-FF72-47FD-BEBE-D14C8022E085} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier Task: {81B76BED-B8C4-4822-ACE8-842BB1F91640} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier Task: {83728B6D-C4C9-4B23-AF11-61C869BE3E36} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier Task: {B22CD049-DA13-40AF-876C-F54C73EEE85B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier Task: {B3B96F94-6946-41C3-AB4B-3F29C9CB81B5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier Task: {ED80565C-C480-4461-83E3-6A426C145A83} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier Task: {ED9C57DD-51C5-46DB-A676-9A278080B3EC} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Camping St-Ignace\Downloads\esetonlinescanner_fra.exe Task: {EF7DFC08-E03F-43EE-8582-EF1ECB4FADEB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier Task: {FF6AFAAE-7635-43F9-A558-2ABEF2F8E096} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier Task: {FFF6E450-0872-4374-934C-E5DB1B9F6F4D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier SearchScopes: HKU\S-1-5-21-3896884349-4277914328-3146512117-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3896884349-4277914328-3146512117-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = CHR HKU\S-1-5-21-3896884349-4277914328-3146512117-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] 2016-10-01 16:26 - 2016-10-01 16:26 - 000000000 _____ () C:\Users\Camping St-Ignace\AppData\Local\{91A5CB4C-5FCD-4206-AA16-E45B8B9561EE} ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL -> Pas de fichier HKLM\...\StartupApproved\StartupFolder: => "Select a coupon.lnk" EmptyTemp: cmd: ipconfig /flushdns cmd: md C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database cmd: DISM /Online /Cleanup-image /Restorehealth cmd: sfc /scannow end::