Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 18-09-2019 01
Exécuté par User (22-09-2019 08:56:12) Run:1
Exécuté depuis C:\Users\User\Desktop\Antivirus
Profils chargés: User (Profils disponibles: User)
Mode d'amorçage: Normal
==============================================
fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\...\Run: [Chromium] => c:\users\user\appdata\local\chromium\application\chrome.exe [4195328 2017-10-07] (The Chromium Authors) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-19] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.119\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction
DeleteKey: HKCU\Software\undefined
DeleteKey: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\undefined
C:\Program Files\WinZip Driver Updater
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\001
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\003
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\004
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\005
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\006
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\007
C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej
DeleteKey: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\csastats
DeleteKey: HKCU\Software\csastats
DeleteKey: HKCU\Software\ProductSetup
DeleteKey: HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
DeleteKey: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\ProductSetup
C:\ProgramData\ByteFence
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninst.exe
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\dicati
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\namefos
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninstp.dat
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\chromium-min.jpg
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\control panel-min-min.JPG
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\down.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff menu.JPG
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff search engine-min.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\HowToRemove.html
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ff.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ie.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\search engine.gif
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\setup pages.gif
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\sp-min.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\start-min.jpg
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\up.png
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASAPI32
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASMANCS
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings|pdpcpceofkopegffcdnffeenbfdldock
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings|pilplloabdedfmialnfchjomjmpjcoej
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings|nahhmpbckpgdidfnmfkfgiflpjijilce
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wcg_mjphgwgm1y1zvrq88_19_37_ssg04¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0BtCyDyC0CzzyE0E0CtB0EyDyB0BtN0D0Tzu0StBzztCtAtN1L2XzuyEtFyDyDtFtDtFtCtAtCtN1L1Czu1ByE1VyDtN1L1G1B1V1N2Y1L1Qzu2StD0BzyyEyEzy0AtDtGyD0E0FtDtG0F0D0EtBtGtB0C0B0FtGtCyEtByByEtAyD0B0CtB0CyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1TyEtAtDtBzyyCyBtG1P1QtB1TtGyEtDzz1OtGzytByE1StGtCtA1SzyzytAyC1S1T1TtB1Q2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDyCzzyEyCtCzzzyyE%26cr%3D354219380%26a%3Dwcg_mjphgwgm1y1zvrq88_19_37_ssg04%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.qo-pro.com/
SearchScopes: HKU\S-1-5-21-1789295179-2572424175-394193223-1001 -> DefaultScope {9EA66E7B-8DF6-405F-A287-44374570E03C} URL = hxxp://www.qo-pro.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1789295179-2572424175-394193223-1001 -> {9EA66E7B-8DF6-405F-A287-44374570E03C} URL = hxxp://www.qo-pro.com/search?q={searchTerms}
Edge HomeButtonPage: HKU\S-1-5-21-1789295179-2572424175-394193223-1001 -> hxxp://www.qo-pro.com/
FF Homepage: Mozilla\Firefox\Profiles\o1zfu3rn.default -> hxxp://www.qo-pro.com/
CHR HomePage: Default -> hxxp://www.qo-pro.com/
CHR StartupUrls: Default -> "hxxp://www.qo-pro.com/"
CHR DefaultSearchURL: Default -> hxxp://www.qo-pro.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> recherche
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
EmptyTemp:
*****************
Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => supprimé(es) avec succès
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium" => supprimé(es) avec succès
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => supprimé(es) avec succès
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => supprimé(es) avec succès
HKLM\SOFTWARE\Policies\Mozilla => supprimé(es) avec succès
HKCU\Software\undefined => non trouvé(e)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\undefined => non trouvé(e)
"C:\Program Files\WinZip Driver Updater" => non trouvé(e)
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\000 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\001 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\002 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\003 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\004 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\005 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\006 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\007 => déplacé(es) avec succès
"C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej" => non trouvé(e)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\csastats => non trouvé(e)
HKCU\Software\csastats => non trouvé(e)
HKCU\Software\ProductSetup => non trouvé(e)
HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe => non trouvé(e)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\ProductSetup => non trouvé(e)
"C:\ProgramData\ByteFence" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninst.exe" => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\dicati" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\namefos" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninstp.dat" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\chromium-min.jpg" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\control panel-min-min.JPG" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\down.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff menu.JPG" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff search engine-min.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\HowToRemove.html" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ff.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ie.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\search engine.gif" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\setup pages.gif" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\sp-min.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\start-min.jpg" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\up.png" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej" => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASMANCS => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings\\pdpcpceofkopegffcdnffeenbfdldock" => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings\\pilplloabdedfmialnfchjomjmpjcoej" => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings\\nahhmpbckpgdidfnmfkfgiflpjijilce" => non trouvé(e)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => supprimé(es) avec succès
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => valeur restauré(es) avec succès
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => valeur restauré(es) avec succès
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => supprimé(es) avec succès
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9EA66E7B-8DF6-405F-A287-44374570E03C} => supprimé(es) avec succès
HKLM\Software\Classes\CLSID\{9EA66E7B-8DF6-405F-A287-44374570E03C} => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main\\HomeButtonPage" => supprimé(es) avec succès
"Firefox homepage" => supprimé(es) avec succès
"Chrome HomePage" => supprimé(es) avec succès
"Chrome StartupUrls" => supprimé(es) avec succès
"Chrome DefaultSearchURL" => supprimé(es) avec succès
"Chrome DefaultSearchKeyword" => supprimé(es) avec succès
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => supprimé(es) avec succès
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => non trouvé(e)
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 130392668 B
Java, Flash, Steam htmlcache => 510 B
Windows/system/drivers => 2279753 B
Edge => 3418506 B
Chrome => 397379477 B
Firefox => 72823564 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 7400 B
LocalService => 0 B
NetworkService => 10408 B
NetworkService => 0 B
User => 121555770 B
RecycleBin => 211289101 B
EmptyTemp: => 903.2 MB données temporaires supprimées.
================================
Le système a dû redémarrer.
==== Fin de Fixlog 08:57:25 ====
Exécuté par User (22-09-2019 08:56:12) Run:1
Exécuté depuis C:\Users\User\Desktop\Antivirus
Profils chargés: User (Profils disponibles: User)
Mode d'amorçage: Normal
==============================================
fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\...\Run: [Chromium] => c:\users\user\appdata\local\chromium\application\chrome.exe [4195328 2017-10-07] (The Chromium Authors) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-19] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.119\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction
DeleteKey: HKCU\Software\undefined
DeleteKey: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\undefined
C:\Program Files\WinZip Driver Updater
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\001
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\003
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\004
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\005
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\006
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\007
C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej
DeleteKey: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\csastats
DeleteKey: HKCU\Software\csastats
DeleteKey: HKCU\Software\ProductSetup
DeleteKey: HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
DeleteKey: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\ProductSetup
C:\ProgramData\ByteFence
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninst.exe
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32
DeleteKey: HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\dicati
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\namefos
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninstp.dat
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\chromium-min.jpg
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\control panel-min-min.JPG
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\down.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff menu.JPG
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff search engine-min.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\HowToRemove.html
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ff.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ie.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\search engine.gif
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\setup pages.gif
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\sp-min.png
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\start-min.jpg
C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\up.png
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASAPI32
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASMANCS
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings|pdpcpceofkopegffcdnffeenbfdldock
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings|pilplloabdedfmialnfchjomjmpjcoej
DeleteValue: HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings|nahhmpbckpgdidfnmfkfgiflpjijilce
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wcg_mjphgwgm1y1zvrq88_19_37_ssg04¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0BtCyDyC0CzzyE0E0CtB0EyDyB0BtN0D0Tzu0StBzztCtAtN1L2XzuyEtFyDyDtFtDtFtCtAtCtN1L1Czu1ByE1VyDtN1L1G1B1V1N2Y1L1Qzu2StD0BzyyEyEzy0AtDtGyD0E0FtDtG0F0D0EtBtGtB0C0B0FtGtCyEtByByEtAyD0B0CtB0CyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1TyEtAtDtBzyyCyBtG1P1QtB1TtGyEtDzz1OtGzytByE1StGtCtA1SzyzytAyC1S1T1TtB1Q2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDyCzzyEyCtCzzzyyE%26cr%3D354219380%26a%3Dwcg_mjphgwgm1y1zvrq88_19_37_ssg04%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.qo-pro.com/
SearchScopes: HKU\S-1-5-21-1789295179-2572424175-394193223-1001 -> DefaultScope {9EA66E7B-8DF6-405F-A287-44374570E03C} URL = hxxp://www.qo-pro.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1789295179-2572424175-394193223-1001 -> {9EA66E7B-8DF6-405F-A287-44374570E03C} URL = hxxp://www.qo-pro.com/search?q={searchTerms}
Edge HomeButtonPage: HKU\S-1-5-21-1789295179-2572424175-394193223-1001 -> hxxp://www.qo-pro.com/
FF Homepage: Mozilla\Firefox\Profiles\o1zfu3rn.default -> hxxp://www.qo-pro.com/
CHR HomePage: Default -> hxxp://www.qo-pro.com/
CHR StartupUrls: Default -> "hxxp://www.qo-pro.com/"
CHR DefaultSearchURL: Default -> hxxp://www.qo-pro.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> recherche
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
EmptyTemp:
*****************
Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => supprimé(es) avec succès
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium" => supprimé(es) avec succès
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => supprimé(es) avec succès
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => supprimé(es) avec succès
HKLM\SOFTWARE\Policies\Mozilla => supprimé(es) avec succès
HKCU\Software\undefined => non trouvé(e)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\undefined => non trouvé(e)
"C:\Program Files\WinZip Driver Updater" => non trouvé(e)
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\000 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\001 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\002 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\003 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\004 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\005 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\006 => déplacé(es) avec succès
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\File System\007 => déplacé(es) avec succès
"C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\User\AppData\Local\Temp\~nsuA.tmp\Un_A.exe.FriendlyAppName" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej" => non trouvé(e)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\csastats => non trouvé(e)
HKCU\Software\csastats => non trouvé(e)
HKCU\Software\ProductSetup => non trouvé(e)
HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe => non trouvé(e)
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\ProductSetup => non trouvé(e)
"C:\ProgramData\ByteFence" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninst.exe" => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\dicati" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\namefos" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\uninstp.dat" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\chromium-min.jpg" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\control panel-min-min.JPG" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\down.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff menu.JPG" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\ff search engine-min.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\HowToRemove.html" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ff.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\hp-min ie.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\search engine.gif" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\setup pages.gif" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\sp-min.png" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\start-min.jpg" => non trouvé(e)
"C:\Users\User\AppData\Local\{BBD18D8D-9F79-E135-F2E1-C4DDD6893845}\HowToRemove\up.png" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock" => non trouvé(e)
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej" => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASAPI32 => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASMANCS => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings\\pdpcpceofkopegffcdnffeenbfdldock" => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings\\pilplloabdedfmialnfchjomjmpjcoej" => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings\\nahhmpbckpgdidfnmfkfgiflpjijilce" => non trouvé(e)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => supprimé(es) avec succès
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => valeur restauré(es) avec succès
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => valeur restauré(es) avec succès
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => supprimé(es) avec succès
HKU\S-1-5-21-1789295179-2572424175-394193223-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9EA66E7B-8DF6-405F-A287-44374570E03C} => supprimé(es) avec succès
HKLM\Software\Classes\CLSID\{9EA66E7B-8DF6-405F-A287-44374570E03C} => non trouvé(e)
"HKU\S-1-5-21-1789295179-2572424175-394193223-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main\\HomeButtonPage" => supprimé(es) avec succès
"Firefox homepage" => supprimé(es) avec succès
"Chrome HomePage" => supprimé(es) avec succès
"Chrome StartupUrls" => supprimé(es) avec succès
"Chrome DefaultSearchURL" => supprimé(es) avec succès
"Chrome DefaultSearchKeyword" => supprimé(es) avec succès
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => supprimé(es) avec succès
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => non trouvé(e)
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 130392668 B
Java, Flash, Steam htmlcache => 510 B
Windows/system/drivers => 2279753 B
Edge => 3418506 B
Chrome => 397379477 B
Firefox => 72823564 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 7400 B
LocalService => 0 B
NetworkService => 10408 B
NetworkService => 0 B
User => 121555770 B
RecycleBin => 211289101 B
EmptyTemp: => 903.2 MB données temporaires supprimées.
================================
Le système a dû redémarrer.
==== Fin de Fixlog 08:57:25 ====