Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPFix v2022.4.19.26 by Nicolas Coolman (2022/04/19)
~ Run by Client (Administrator) (22/04/2022 17:03:30)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Report : C:\Users\Client\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 19044)
---\\ SCRIPT DE L'UTILISATEUR. (29)
Start::
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task =>Riskware.QuickTime
HKLM\SOFTWARE\WOW6432Node\AVG =>.AVG Software
P2 - EXT FILE: (.Avast Software s.r.o.) -- C:\Users\Client\AppData\Roaming\Mozilla\Firefox\Profiles\ixeys2r3.default\extensions\sp@avast.com.tmp [Unsigned] =>.Avast Software s.r.o
P2 - EXT FILE: (.Avast Software s.r.o.) -- C:\Users\Client\AppData\Roaming\Mozilla\Firefox\Profiles\ixeys2r3.default\extensions\wrc@avast.com.tmp [Unsigned] =>.Avast Software s.r.o
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AvastUI.exe =>.Avast Software s.r.o
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKU\.DEFAULT\SOFTWARE\AVAST Software =>.AVAST Software
HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
C:\Users\Client\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName =>.Unsigned
EmptyTemp
EmptyPrefetch
EmptyClsid
End::
---\\ LOGICIEL. (0)
---\\ SERVICE. (0)
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (0)
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (22)
SUPPRIMÉ Dossier : C:\Users\Client\AppData\Local\Google\Chrome\User Data\Default\File System\000
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\jusched.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\LuUpdater.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\mbsetup.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\TWAIN.LOG
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\28e4d70e-7895-4e51-8ab1-07b992ecf196.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\30f961de-3239-4376-9d3d-33d332f084f4.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\721e50ee-ff12-49b9-bbc3-bca3bfb9157e.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\b37a5d62-23e4-4d44-8fc2-b2aea77b21e2.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\bec6d4e1-2ba8-4dd4-b05a-fef286edd9fd.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\fdd7be00-0816-427a-bf3c-5f2591000d81.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\nso2742.tmp
DEPLACÉ Fichier Temp*: C:\Users\Client\AppData\Local\Temp\nst9317.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct1DDA.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct323E.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct7602.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct7B24.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct917A.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct9256.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\~nsuA.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\LWSDebugOut.txt
---\\ REGISTRE ( Clés, Valeurs, Données ). (35)
ABSENT Valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 []
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\AVG
ABSENT Valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run []
ABSENT Clé: HKLM\SOFTWARE\AVAST Software
SUPPRIMÉ Clé: HKCU\SOFTWARE\AvastAdSDK [AvastAdSDK ]
SUPPRIMÉ Clé: HKU\.DEFAULT\SOFTWARE\AVAST Software [AVAST Software ]
ABSENT Clé: HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\SOFTWARE\AvastAdSDK
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur : C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur : C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur : C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
ABSENT Valeur: HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache []
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: QuickTime Task [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
SUPPRIMÉ Valeur: AvastUI.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
---\\ COMMANDE. (3)
~ EmptyTemp: Dossier Local temp partiellement vidé (21)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (138)
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
---\\ NON TRAITÉ. (0)
~ Le système a été redémarré.
***** ~ Fin de rapport terminé en 00mn00s
~ Run by Client (Administrator) (22/04/2022 17:03:30)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Report : C:\Users\Client\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 19044)
---\\ SCRIPT DE L'UTILISATEUR. (29)
Start::
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task =>Riskware.QuickTime
HKLM\SOFTWARE\WOW6432Node\AVG =>.AVG Software
P2 - EXT FILE: (.Avast Software s.r.o.) -- C:\Users\Client\AppData\Roaming\Mozilla\Firefox\Profiles\ixeys2r3.default\extensions\sp@avast.com.tmp [Unsigned] =>.Avast Software s.r.o
P2 - EXT FILE: (.Avast Software s.r.o.) -- C:\Users\Client\AppData\Roaming\Mozilla\Firefox\Profiles\ixeys2r3.default\extensions\wrc@avast.com.tmp [Unsigned] =>.Avast Software s.r.o
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AvastUI.exe =>.Avast Software s.r.o
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKU\.DEFAULT\SOFTWARE\AVAST Software =>.AVAST Software
HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
C:\Users\Client\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName =>.Unsigned
EmptyTemp
EmptyPrefetch
EmptyClsid
End::
---\\ LOGICIEL. (0)
---\\ SERVICE. (0)
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (0)
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (22)
SUPPRIMÉ Dossier : C:\Users\Client\AppData\Local\Google\Chrome\User Data\Default\File System\000
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\jusched.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\LuUpdater.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\mbsetup.log
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\TWAIN.LOG
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\28e4d70e-7895-4e51-8ab1-07b992ecf196.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\30f961de-3239-4376-9d3d-33d332f084f4.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\721e50ee-ff12-49b9-bbc3-bca3bfb9157e.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\b37a5d62-23e4-4d44-8fc2-b2aea77b21e2.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\bec6d4e1-2ba8-4dd4-b05a-fef286edd9fd.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\fdd7be00-0816-427a-bf3c-5f2591000d81.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\nso2742.tmp
DEPLACÉ Fichier Temp*: C:\Users\Client\AppData\Local\Temp\nst9317.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct1DDA.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct323E.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct7602.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct7B24.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct917A.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\wct9256.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Client\AppData\Local\Temp\~nsuA.tmp
DEPLACÉ Fichier Temp: C:\Users\Client\AppData\Local\Temp\LWSDebugOut.txt
---\\ REGISTRE ( Clés, Valeurs, Données ). (35)
ABSENT Valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 []
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\AVG
ABSENT Valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run []
ABSENT Clé: HKLM\SOFTWARE\AVAST Software
SUPPRIMÉ Clé: HKCU\SOFTWARE\AvastAdSDK [AvastAdSDK ]
SUPPRIMÉ Clé: HKU\.DEFAULT\SOFTWARE\AVAST Software [AVAST Software ]
ABSENT Clé: HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\SOFTWARE\AvastAdSDK
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur : C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur : C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur : C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
ABSENT Valeur: HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache []
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
VERROUILLÉ Valeur : C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: QuickTime Task [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
SUPPRIMÉ Valeur: AvastUI.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\MSOSYNC.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: Q:\%SFT_MNT%\140066.fra\Office14\ONENOTEM.EXE [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\PalaceChat-WINDOWS.exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Downloads\cdbxp_setup_4.5.8.7128_x64_minimal (1).exe.ApplicationCompany [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Users\Client\Desktop\Mp3Trim.exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
SUPPRIMÉ Valeur: C:\Program Files (x86)\WinRAR\WinRAR.exe.FriendlyAppName [HKU\S-1-5-21-3288505719-2756136131-1183742016-1003\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
---\\ COMMANDE. (3)
~ EmptyTemp: Dossier Local temp partiellement vidé (21)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (138)
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
---\\ NON TRAITÉ. (0)
~ Le système a été redémarré.
***** ~ Fin de rapport terminé en 00mn00s