Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 14-11-2021
Exécuté par 78 (19-11-2021 22:04:24) Run:1
Exécuté depuis C:\Users\78\Desktop
Profils chargés: 78
Mode d'amorçage: Normal
==============================================
fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3009485436-429995660-437960845-1001\...\Run: [Discord] => C:\Users\78\AppData\Local\Discord\app-0.0.306\Discord.exe (Pas de fichier)
HKU\S-1-5-21-3009485436-429995660-437960845-1001\...\Run: [MicrosoftEdgeAutoLaunch_06E01C23F9AA4023E705067C6F86B909] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3009485436-429995660-437960845-1001\...\MountPoints2: {786a55c7-1aac-11ea-85c0-88ae1da5f0f4} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-17] (Google LLC -> Google LLC)
DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Discord
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\\Software\Microsoft\Windows\CurrentVersion\Run|Discord]
DeleteKey: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Discord
C:\Users\78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\001
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\003
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\78\AppData\LocalLow\DataMngr
S3 MpKsl6fb21fc0; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{50ADE31F-FEF2-493C-B964-C594BF13B53C}\MpKslDrv.sys [X]
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-3009485436-429995660-437960845-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-3009485436-429995660-437960845-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
FirewallRules: [TCP Query User{DCF634C8-FFDC-4298-8F96-2EB579977EB3}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{F84D61C9-5A9C-43B6-9376-1612A0D16A20}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{4197B21D-7634-4204-A2B9-A03CA3373853}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{40C17580-0464-48A5-971B-08F847C4C304}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{0866A3EC-F6BC-4D0E-8246-78F2FB9FAAD3}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{48AF05CD-8CFC-4BCD-9FA2-1664CAA2D141}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{24AFD19B-ECD1-4B63-9B3B-37AEEEBC417D}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{ABE0362B-7B42-4A09-87F6-949FACCB54DB}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{8E36F3AF-6A31-458D-A7B8-DE324F356316}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{91EEE87B-DE53-47DE-BE46-EB0D4332836B}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe => Pas de fichier
EmptyTemp:
*****************
Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => supprimé(es) avec succès
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Discord" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Microsoft\Windows\CurrentVersion\Run\\MicrosoftEdgeAutoLaunch_06E01C23F9AA4023E705067C6F86B909" => supprimé(es) avec succès
HKU\S-1-5-21-3009485436-429995660-437960845-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{786a55c7-1aac-11ea-85c0-88ae1da5f0f4} => non trouvé(e)
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => supprimé(es) avec succès
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Discord" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\\Software\Microsoft\Windows\CurrentVersion\Run\\Discord]" => non trouvé(e)
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Discord => supprimé(es) avec succès
C:\Users\78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\000 => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\001 => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\002 => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\003 => déplacé(es) avec succès
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany" => non trouvé(e)
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime => déplacé(es) avec succès
C:\Users\78\AppData\LocalLow\DataMngr => déplacé(es) avec succès
MpKsl6fb21fc0 => service non trouvé(e).
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valeur restauré(es) avec succès
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => supprimé(es) avec succès
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valeur restauré(es) avec succès
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => supprimé(es) avec succès
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => supprimé(es) avec succès
HKU\S-1-5-21-3009485436-429995660-437960845-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DCF634C8-FFDC-4298-8F96-2EB579977EB3}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F84D61C9-5A9C-43B6-9376-1612A0D16A20}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4197B21D-7634-4204-A2B9-A03CA3373853}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{40C17580-0464-48A5-971B-08F847C4C304}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0866A3EC-F6BC-4D0E-8246-78F2FB9FAAD3}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48AF05CD-8CFC-4BCD-9FA2-1664CAA2D141}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{24AFD19B-ECD1-4B63-9B3B-37AEEEBC417D}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ABE0362B-7B42-4A09-87F6-949FACCB54DB}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8E36F3AF-6A31-458D-A7B8-DE324F356316}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{91EEE87B-DE53-47DE-BE46-EB0D4332836B}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe" => supprimé(es) avec succès
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22239436 B
Java, Flash, Steam htmlcache => 510 B
Windows/system/drivers => 39233 B
Edge => 11077769 B
Chrome => 236610661 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 2464 B
NetworkService => 4058 B
78 => 9808956 B
DefaultAppPool => 9808956 B
RecycleBin => 24627882529 B
EmptyTemp: => 23.2 GB données temporaires supprimées.
================================
Le système a dû redémarrer.
==== Fin de Fixlog 22:11:07 ====
Exécuté par 78 (19-11-2021 22:04:24) Run:1
Exécuté depuis C:\Users\78\Desktop
Profils chargés: 78
Mode d'amorçage: Normal
==============================================
fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3009485436-429995660-437960845-1001\...\Run: [Discord] => C:\Users\78\AppData\Local\Discord\app-0.0.306\Discord.exe (Pas de fichier)
HKU\S-1-5-21-3009485436-429995660-437960845-1001\...\Run: [MicrosoftEdgeAutoLaunch_06E01C23F9AA4023E705067C6F86B909] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3009485436-429995660-437960845-1001\...\MountPoints2: {786a55c7-1aac-11ea-85c0-88ae1da5f0f4} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-17] (Google LLC -> Google LLC)
DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Discord
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\\Software\Microsoft\Windows\CurrentVersion\Run|Discord]
DeleteKey: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Discord
C:\Users\78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\001
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\003
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\78\AppData\LocalLow\DataMngr
S3 MpKsl6fb21fc0; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{50ADE31F-FEF2-493C-B964-C594BF13B53C}\MpKslDrv.sys [X]
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-3009485436-429995660-437960845-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\S-1-5-21-3009485436-429995660-437960845-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
FirewallRules: [TCP Query User{DCF634C8-FFDC-4298-8F96-2EB579977EB3}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{F84D61C9-5A9C-43B6-9376-1612A0D16A20}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{4197B21D-7634-4204-A2B9-A03CA3373853}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{40C17580-0464-48A5-971B-08F847C4C304}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{0866A3EC-F6BC-4D0E-8246-78F2FB9FAAD3}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{48AF05CD-8CFC-4BCD-9FA2-1664CAA2D141}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{24AFD19B-ECD1-4B63-9B3B-37AEEEBC417D}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{ABE0362B-7B42-4A09-87F6-949FACCB54DB}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe] => (Allow) C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe => Pas de fichier
FirewallRules: [TCP Query User{8E36F3AF-6A31-458D-A7B8-DE324F356316}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe => Pas de fichier
FirewallRules: [UDP Query User{91EEE87B-DE53-47DE-BE46-EB0D4332836B}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe] => (Block) C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe => Pas de fichier
EmptyTemp:
*****************
Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => supprimé(es) avec succès
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Discord" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Microsoft\Windows\CurrentVersion\Run\\MicrosoftEdgeAutoLaunch_06E01C23F9AA4023E705067C6F86B909" => supprimé(es) avec succès
HKU\S-1-5-21-3009485436-429995660-437960845-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{786a55c7-1aac-11ea-85c0-88ae1da5f0f4} => non trouvé(e)
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => supprimé(es) avec succès
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Discord" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\\Software\Microsoft\Windows\CurrentVersion\Run\\Discord]" => non trouvé(e)
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Discord => supprimé(es) avec succès
C:\Users\78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\000 => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\001 => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\002 => déplacé(es) avec succès
C:\Users\78\AppData\Local\Google\Chrome\User Data\Default\File System\003 => déplacé(es) avec succès
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName" => non trouvé(e)
"HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe.ApplicationCompany" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.FriendlyAppName" => non trouvé(e)
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\HiSuite\HiSuite.exe.ApplicationCompany" => non trouvé(e)
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime => déplacé(es) avec succès
C:\Users\78\AppData\LocalLow\DataMngr => déplacé(es) avec succès
MpKsl6fb21fc0 => service non trouvé(e).
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valeur restauré(es) avec succès
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => supprimé(es) avec succès
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valeur restauré(es) avec succès
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => supprimé(es) avec succès
"HKU\S-1-5-21-3009485436-429995660-437960845-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => supprimé(es) avec succès
HKU\S-1-5-21-3009485436-429995660-437960845-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DCF634C8-FFDC-4298-8F96-2EB579977EB3}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F84D61C9-5A9C-43B6-9376-1612A0D16A20}C:\users\78\appdata\local\temp\7zs30b8.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4197B21D-7634-4204-A2B9-A03CA3373853}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{40C17580-0464-48A5-971B-08F847C4C304}C:\users\78\appdata\local\temp\7zsac78.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0866A3EC-F6BC-4D0E-8246-78F2FB9FAAD3}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48AF05CD-8CFC-4BCD-9FA2-1664CAA2D141}C:\users\78\appdata\local\temp\7zs36e7.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{24AFD19B-ECD1-4B63-9B3B-37AEEEBC417D}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ABE0362B-7B42-4A09-87F6-949FACCB54DB}C:\users\78\appdata\local\temp\7zs4eba.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8E36F3AF-6A31-458D-A7B8-DE324F356316}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{91EEE87B-DE53-47DE-BE46-EB0D4332836B}C:\users\78\appdata\local\temp\7zseeb8.tmp\explorer.exe" => supprimé(es) avec succès
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22239436 B
Java, Flash, Steam htmlcache => 510 B
Windows/system/drivers => 39233 B
Edge => 11077769 B
Chrome => 236610661 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 2464 B
NetworkService => 4058 B
78 => 9808956 B
DefaultAppPool => 9808956 B
RecycleBin => 24627882529 B
EmptyTemp: => 23.2 GB données temporaires supprimées.
================================
Le système a dû redémarrer.
==== Fin de Fixlog 22:11:07 ====