Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 09.09.2018
Exécuté par User (10-09-2018 21:12:12) Run:1
Exécuté depuis C:\Users\User\Desktop
Profils chargés: User (Profils disponibles: User)
Mode d'amorçage: Normal
==============================================

fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\...\Run: [Chromium] => c:\users\user\appdata\local\chromium\application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session
AppInit_DLLs: C:\Users\ANDRGU~1\AppData\Local\DProtect\eBP.dll => Pas de fichier
AppInit_DLLs: ,C:\Users\ANDRGU~1\AppData\Local\DProtect\eBPSD.dll => Pas de fichier
GroupPolicy: Restriction
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StBtAyEtCtN1L2XzuyEtFtByEtFtDtFzyyDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyB0E0D0Dzy0Fzy0BtGyDtD0ByEtGtC0ByDtBtGtB0ByCyDtG0CyE0CtDyB0CyByEtCzy0CtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEyEzytN1Q2Z1B1P1RzutCyDtByByCyCyBtAtDzz%26cr%3D1218984300%26a%3Dwbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StBtAyEtCtN1L2XzuyEtFtByEtFtDtFzyyDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyB0E0D0Dzy0Fzy0BtGyDtD0ByEtGtC0ByDtBtGtB0ByCyDtG0CyE0CtDyB0CyByEtCzy0CtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEyEzytN1Q2Z1B1P1RzutCyDtByByCyCyBtAtDzz%26cr%3D1218984300%26a%3Dwbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional
HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StBtAyEtCtN1L2XzuyEtFtByEtFtDtFzyyDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyB0E0D0Dzy0Fzy0BtGyDtD0ByEtGtC0ByDtBtGtB0ByCyDtG0CyE0CtDyB0CyByEtCzy0CtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEyEzytN1Q2Z1B1P1RzutCyDtByByCyCyBtAtDzz%26cr%3D1218984300%26a%3Dwbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StBtAyEtCtN1L2XzuyEtFtByEtFtDtFzyyDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyB0E0D0Dzy0Fzy0BtGyDtD0ByEtGtC0ByDtBtGtB0ByCyDtG0CyE0CtDyB0CyByEtCzy0CtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEyEzytN1Q2Z1B1P1RzutCyDtByByCyCyBtAtDzz%26cr%3D1218984300%26a%3Dwbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKLM -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_34_wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StByEtByBtN1L2XzutAtFtAtBtFtBtDyDtFyDtCtN1L1Czu1M1Q1CyEtCtFyDtFtDtN1L1G1B1V1N2Y1L1Qzu2SyCtB0ByBzzyEtBzztGtC0BtAyCtG0CtD0EzytGyBtCtB0CtGyCtB0DyCyC0BzytCtD0CtAyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCzzzyyBtDtN0D0T0S1P1RzutCyDtAyDtDzyyEtCzyyD%26cr%3D329393476%26a%3Dhdr_s_18_34_wbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKLM-x32 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StBtAyEtCtN1L2XzuyEtFtByEtFtDtFzyyDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyB0E0D0Dzy0Fzy0BtGyDtD0ByEtGtC0ByDtBtGtB0ByCyDtG0CyE0CtDyB0CyByEtCzy0CtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEyEzytN1Q2Z1B1P1RzutCyDtByByCyCyBtAtDzz%26cr%3D1218984300%26a%3Dwbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKLM-x32 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_34_wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StByEtByBtN1L2XzutAtFtAtBtFtBtDyDtFyDtCtN1L1Czu1M1Q1CyEtCtFyDtFtDtN1L1G1B1V1N2Y1L1Qzu2SyCtB0ByBzzyEtBzztGtC0BtAyCtG0CtD0EzytGyBtCtB0CtGyCtB0DyCyC0BzytCtD0CtAyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCzzzyyBtDtN0D0T0S1P1RzutCyDtAyDtDzyyEtCzyyD%26cr%3D329393476%26a%3Dhdr_s_18_34_wbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1178407831-3515193795-1417312221-1000 -> DefaultScope {1b31c9d2-7135-442b-bb93-7c002172adc6} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_34_wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StByEtByBtN1L2XzutAtFtAtBtFtBtDyDtFyDtCtN1L1Czu1M1Q1CyEtCtFyDtFtDtN1L1G1B1V1N2Y1L1Qzu2SyCtB0ByBzzyEtBzztGtC0BtAyCtG0CtD0EzytGyBtCtB0CtGyCtB0DyCyC0BzytCtD0CtAyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCzzzyyBtDtN0D0T0S1P1RzutCyDtAyDtDzyyEtCzyyD%26cr%3D329393476%26a%3Dhdr_s_18_34_wbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1178407831-3515193795-1417312221-1000 -> {1b31c9d2-7135-442b-bb93-7c002172adc6} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_34_wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StByEtByBtN1L2XzutAtFtAtBtFtBtDyDtFyDtCtN1L1Czu1M1Q1CyEtCtFyDtFtDtN1L1G1B1V1N2Y1L1Qzu2SyCtB0ByBzzyEtBzztGtC0BtAyCtG0CtD0EzytGyBtCtB0CtGyCtB0DyCyC0BzytCtD0CtAyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCzzzyyBtDtN0D0T0S1P1RzutCyDtAyDtDzyyEtCzyyD%26cr%3D329393476%26a%3Dhdr_s_18_34_wbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1178407831-3515193795-1417312221-1000 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsfrmtfctr_18_22_04�m1=1�m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyEzzyD0BtAzyyCzyzz0Azy0D0A0Czz0BtN0D0Tzu0StBtAyEtCtN1L2XzuyEtFtByEtFtDtFzyyDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyB0E0D0Dzy0Fzy0BtGyDtD0ByEtGtC0ByDtBtGtB0ByCyDtG0CyE0CtDyB0CyByEtCzy0CtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtB0A0A0EyB0AyCtGtCtDyDtCtGyE0FyDtDtGzy0AyB0FtG0CtDtCtA0Czy0Ezyzy0FyB0D2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEyEzytN1Q2Z1B1P1RzutCyDtByByCyCyBtAtDzz%26cr%3D1218984300%26a%3Dwbf_fsfrmtfctr_18_22_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional&p={searchTerms}
CHR HomePage: Default -> hxxp://www.accueil-nav.com/
CHR DefaultSearchURL: Default -> hxxp://www.accueil-nav.com/search?q={searchTerms}
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe] - <pas de Path/update_url>
CHR HKLM\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe] - <pas de Path/update_url>
CHR HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe] - <pas de Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock] - hxxps://clients2.google.com/service/update2/crx
2018-08-24 09:04 - 2018-08-24 09:04 - 000000000 ____D C:\Windows\System32\Tasks\kohuhekoke
2018-08-24 09:02 - 2018-08-24 09:06 - 000000000 ____D C:\Users\User\AppData\Local\Ticered
C:\Windows\Tasks\{6B036605-6FB7-6F4F-AFFE-722520F30EAE}.job
C:\ProgramData\{9B635E00-1121-D4C6-97E7-4A840DA5C14A}
C:\Users\User\AppData\Roaming\Bedolas
C:\Users\User\AppData\Roaming\6b0366056fb76f4faffe722520f30eae
c:\users\user\appdata\local\chromium
Task: {75E57EE9-2773-4525-9E07-CE5A4EA945DC} - System32\Tasks\kohuhekoke\{3865AC2D-A85E-0999-732E-4539FF62B1D9} => C:\Users\User\AppData\Roaming\Bedolas\KOHUHE~1.EXE
Task: {AF10541F-97F3-4D2B-8B1A-1CFE522F737B} - System32\Tasks\{6B036605-6FB7-6F4F-AFFE-722520F30EAE} => C:\Users\User\AppData\Roaming\6b0366056fb76f4faffe722520f30eae\ProductUpdt.exe [2013-04-27] ()
Task: {E09B0B8D-4312-4215-BDBD-C4DD891C4864} - System32\Tasks\Yahoo! Powered ritem => "wscript.exe" "C:\ProgramData\{9B635E00-1121-D4C6-97E7-4A840DA5C14A}\dido.txt" "68747470733a2f2f643277763764656e63316a78397a2e636c6f756466726f6e742e6e6574" "//B" "//E:jscript" "--IsErIk"
Task: C:\Windows\Tasks\{6B036605-6FB7-6F4F-AFFE-722520F30EAE}.job => C:\Users\User\AppData\Roaming\6B0366~1\PRODUC~1.EXE
Hosts:
EmptyTemp:
*****************

Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
"HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium" => supprimé(es) avec succès
"C:\Users\ANDRGU~1\AppData\Local\DProtect\eBP.dll" => Données de la valeur supprimé(es) avec succès
",C:\Users\ANDRGU~1\AppData\Local\DProtect\eBPSD.dll" => Données de la valeur supprimé(es) avec succès
C:\Windows\system32\GroupPolicy\Machine => déplacé(es) avec succès
C:\Windows\system32\GroupPolicy\GPT.ini => déplacé(es) avec succès
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => valeur restauré(es) avec succès
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => valeur restauré(es) avec succès
HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => valeur restauré(es) avec succès
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146} => non trouvé(e)
HKLM\Software\Classes\CLSID\{2f23ab71-4ac6-41f2-a955-ea576e553146} => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{f7bb050c-e116-44da-89c2-6f2b68c54836} => non trouvé(e)
HKLM\Software\Classes\CLSID\{f7bb050c-e116-44da-89c2-6f2b68c54836} => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => valeur restauré(es) avec succès
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146} => non trouvé(e)
HKLM\Software\Wow6432Node\Classes\CLSID\{2f23ab71-4ac6-41f2-a955-ea576e553146} => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{f7bb050c-e116-44da-89c2-6f2b68c54836} => non trouvé(e)
HKLM\Software\Wow6432Node\Classes\CLSID\{f7bb050c-e116-44da-89c2-6f2b68c54836} => non trouvé(e)
"HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => supprimé(es) avec succès
HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1b31c9d2-7135-442b-bb93-7c002172adc6} => non trouvé(e)
HKLM\Software\Classes\CLSID\{1b31c9d2-7135-442b-bb93-7c002172adc6} => non trouvé(e)
HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146} => non trouvé(e)
HKLM\Software\Classes\CLSID\{2f23ab71-4ac6-41f2-a955-ea576e553146} => non trouvé(e)
"Chrome HomePage" => supprimé(es) avec succès
"Chrome DefaultSearchURL" => supprimé(es) avec succès
"C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => non trouvé(e)
"HKLM\SOFTWARE\Google\Chrome\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => supprimé(es) avec succès
"HKLM\SOFTWARE\Google\Chrome\Extensions\oonbcpdabjcggcklopgbdagbfnkhbgbe" => supprimé(es) avec succès
"HKLM\SOFTWARE\Google\Chrome\Extensions\pdpcpceofkopegffcdnffeenbfdldock" => supprimé(es) avec succès
"HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Google\Chrome\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => supprimé(es) avec succès
"HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Google\Chrome\Extensions\oonbcpdabjcggcklopgbdagbfnkhbgbe" => supprimé(es) avec succès
"HKU\S-1-5-21-1178407831-3515193795-1417312221-1000\SOFTWARE\Google\Chrome\Extensions\pdpcpceofkopegffcdnffeenbfdldock" => supprimé(es) avec succès
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce" => supprimé(es) avec succès
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\oonbcpdabjcggcklopgbdagbfnkhbgbe" => supprimé(es) avec succès
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pdpcpceofkopegffcdnffeenbfdldock" => supprimé(es) avec succès
C:\Windows\System32\Tasks\kohuhekoke => déplacé(es) avec succès
C:\Users\User\AppData\Local\Ticered => déplacé(es) avec succès
C:\Windows\Tasks\{6B036605-6FB7-6F4F-AFFE-722520F30EAE}.job => déplacé(es) avec succès
"C:\ProgramData\{9B635E00-1121-D4C6-97E7-4A840DA5C14A}" => non trouvé(e)
"C:\Users\User\AppData\Roaming\Bedolas" => non trouvé(e)
"C:\Users\User\AppData\Roaming\6b0366056fb76f4faffe722520f30eae" => non trouvé(e)
"c:\users\user\appdata\local\chromium" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75E57EE9-2773-4525-9E07-CE5A4EA945DC}" => supprimé(es) avec succès
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75E57EE9-2773-4525-9E07-CE5A4EA945DC}" => supprimé(es) avec succès
"C:\Windows\System32\Tasks\kohuhekoke\{3865AC2D-A85E-0999-732E-4539FF62B1D9}" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\kohuhekoke\{3865AC2D-A85E-0999-732E-4539FF62B1D9}" => supprimé(es) avec succès
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF10541F-97F3-4D2B-8B1A-1CFE522F737B}" => supprimé(es) avec succès
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF10541F-97F3-4D2B-8B1A-1CFE522F737B}" => supprimé(es) avec succès
C:\Windows\System32\Tasks\{6B036605-6FB7-6F4F-AFFE-722520F30EAE} => déplacé(es) avec succès
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6B036605-6FB7-6F4F-AFFE-722520F30EAE}" => supprimé(es) avec succès
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E09B0B8D-4312-4215-BDBD-C4DD891C4864} => non trouvé(e)
"C:\Windows\System32\Tasks\Yahoo! Powered ritem" => non trouvé(e)
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Yahoo! Powered ritem => non trouvé(e)
"C:\Windows\Tasks\{6B036605-6FB7-6F4F-AFFE-722520F30EAE}.job" => non trouvé(e)
C:\Windows\System32\Drivers\etc\hosts => déplacé(es) avec succès
Hosts restauré(es) avec succès.

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13807324 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 40813694 B
Edge => 0 B
Chrome => 97349025 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 5640 B
User => 160850200 B

RecycleBin => 3998585 B
EmptyTemp: => 314.1 MB données temporaires supprimées.

================================


Le système a dû redémarrer.

==== Fin de Fixlog 21:14:33 ====