Installation Google Chrome : Votre administrateur réseau à appliquer une stratégie de groupe qui empêche

[DOSTO]

Bonjour,

Je suis sur Windows, je cherche à installer Chrome sur mon pc, mais l'installation est impossible.
Un message s'affiche :"Votre administrateur réseau à appliquer une stratégie de groupe qui empêche de procédé à l'installation."

Que puis-je faire ?

Merci

[Malekal_morte]

Salut,

Suis le tutoriel FRST. ( prends le temps de lire attentivement - tout y est bien expliqué ).

Attendre la fin du scan, un message indique que l'analyse est terminée.
Télécharge et lance le scan FRST,

Trois rapports FRST seront générés :
* FRST.txt
* Shortcut.
* Additionnal.txt

Envoie ces 3 rapports sur le site https://pjjoint.malekal.com/ et en retour donne les 3 liens pjjoint qui mènent aux rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.

(Les liens bleus mènent à des tutoriels explicatifs pas à pas, clic dessus pour avoir les instructions plus précises à suivre).

[DOSTO]

Bonjour,
Merci pour ta réponse. Voici les liens des rapports générés :
- https://pjjoint.malekal.com/files.php?i ... 3r9n7l6e10
- https://pjjoint.malekal.com/files.php?i ... 3j12o7e6q5
- https://pjjoint.malekal.com/files.php?i ... 1s15v14r12

[Malekal_morte]

Voici la correction à effectuer avec FRST. Tu peux t'aider de cette Voici la correction à effectuer avec FRST. Tu peux t'aider de cette #fix note explicative avec des captures d'écran.
Relance FRST puis sur ton clavier appuyer sur la touche CTRL + Y.
Le bloc-note va s'ouvrir, copie/colle ceci.

Code : Tout sélectionner

Start:
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [Mccollum] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM-x32\...\Run: [Coldness] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM-x32\...\Run: [Sandbank] => "C:\Program Files (x86)\Gula\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26812208 2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [49803112 2018-09-21] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [TAV] => C:\Program Files\Translated - TAV\TAV\TAV.exe [67574624 2019-07-29] ("Translated srl" -> Translated SRL)
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Blunting] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Nangle] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Abstain] => "C:\Program Files (x86)\Gula\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Haar] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Itochu] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [melanoma] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [YXXY3EI21FFWTQB] => "C:\Program Files\9V70UB890C\9V70UB890.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [OZELSOT9QFPMESO] => "C:\Program Files\6JLEI1L9IV\6JLEI1L9I.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [V8ZWEANN7UXKL81] => "C:\Program Files\4JSOQAGYZ2\4JSOQAGYZ.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [ZFRHJCW087072RU] => "C:\Program Files\5LSLKKSNSO\5LSLKKSNS.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [6C3OZ914MNQYJLP] => "C:\Program Files\CUDX55L094\CUDX55L09.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [4IWFHVV4ITBLQG8] => "C:\Program Files\1U06BE6WO2\1U06BE6WO.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [JK70VFFWCMTFJ4J] => "C:\Program Files\0RUXIJ0IF6\0RUXIJ0IF.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [RM6VHA3T7E5AEH7] => "C:\Program Files\P2P9SJYMXI\P2P9SJYMX.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [616BZ65IX5WZUQ6] => "C:\Program Files\TH2WOICB37\TH2WOICB3.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [A3V93YVLMP7W79C] => "C:\Program Files\QL0YEP3OLB\QL0YEP3OL.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [HDYNUC2S68OSD4R] => "C:\Program Files\NRMYDA8ZSM\NRMYDA8ZS.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [428946] => "C:\Users\Julien\AppData\Roaming\anyoigvsigp\ymddhzx5uo0.exe" /VERYSILENT
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [8554975] => "C:\Users\Julien\AppData\Roaming\bssycnec05i\qmheoe1pl2a.exe" /VERYSILENT
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [1C9BBRC6M5R8SAQ] => "C:\Program Files\VVR7S1UCDI\VVR7S1UCD.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [6PP649IFWRXIPIH] => "C:\Program Files\OB66NLQC54\OB66NLQC5.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] () [Fichier non signé]
Startup: C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\enim.lnk [2019-03-26]
ShortcutTarget: enim.lnk -> C:\Program Files (x86)\Befuddled\Deserter.exe (Pas de fichier)
Startup: C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\enimenim.lnk [2019-03-26]
ShortcutTarget: enimenim.lnk -> C:\Program Files (x86)\harpoon\Maltreated.exe (Pas de fichier)
GroupPolicy\User: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\...\Run: [Palates] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM\...\Run: [Shakespearian] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM\...\Run: [Gaffer] => "C:\Program Files (x86)\Gula\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
Task: {0370B830-499A-4C1B-94E3-434A7FD9B0C9} - System32\Tasks\tamtam => C:\Program Files (x86)\Befuddled\Deserter.exe
Task: {6249F8AE-4003-49ED-B190-8AE93B84A931} - System32\Tasks\{8AA400D3-BE6E-4CD9-8A89-AEBD7BA52CB5} => C:\ProgramData\4962558042768306232\watchdog.exe <==== ATTENTION
Task: {BDD15186-091C-4002-9819-479C07E4B605} - System32\Tasks\headbanging_miscellanyheadbanging_miscellany => C:\Program Files (x86)\Gula\Deserter.exe
Task: {FBCD3292-2DF2-4E2D-83AE-D67D790DA435} - System32\Tasks\margarine moneymakermargarine moneymaker => C:\Program Files (x86)\Gula\Maltreated.exe
EmptyTemp:
RemoveProxy:
Hosts:
Reboot:
End:

Ferme le bloc-note, retourne sur FRST et clique sur le bouton "Corriger / Fix"
Un redémarrage sera peut-être nécessaire et automatique.
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur.
(L'ordinateur peut redémarrer tout seul, si le rapport de correction ne s'ouvre pas, cherche un fichier fixlog.txt qui se trouve dans le même dossier que FRST)


2) réinitialiser les navigateurs:
==================================
Réinitialise tes navigateurs et/ou re-paramètre manuellement tes navigateurs WEB ( page de démarrage, moteur de recherche, etc ) mais aussi supprimer/désactiver les extensions inutiles/parasites.
Pour t'aider à effectuer ce ménage, clique ci-dessous sur le nom du navigateur WEB que tu utilises :
* Réinitialiser et réparer Mozilla Firefox
* Réinitialiser et réparer Google Chrome
(Ne pas utiliser Zeok)

3)
Faire un nettoyage Malwarebytes Anti-Malware (MBAM ) version gratuite

4)
Refais un scan FRST et donne les nouveaux rapports via pjjoint

[DOSTO]

Voici la copie du fichier note qui délivré après correction et redémarrage de l'ordinateur.

Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 08-03-2020
Exécuté par Julien (09-03-2020 17:36:40) Run:1
Exécuté depuis C:\Users\Julien\OneDrive\Escritorio\FRST
Profils chargés: Julien (Profils disponibles: Julien)
Mode d'amorçage: Normal
==============================================

fixlist contenu:
*****************
Start:
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [Mccollum] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM-x32\...\Run: [Coldness] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM-x32\...\Run: [Sandbank] => "C:\Program Files (x86)\Gula\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26812208 2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [49803112 2018-09-21] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [TAV] => C:\Program Files\Translated - TAV\TAV\TAV.exe [67574624 2019-07-29] ("Translated srl" -> Translated SRL)
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Blunting] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Nangle] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Abstain] => "C:\Program Files (x86)\Gula\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Haar] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Itochu] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [melanoma] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [YXXY3EI21FFWTQB] => "C:\Program Files\9V70UB890C\9V70UB890.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [OZELSOT9QFPMESO] => "C:\Program Files\6JLEI1L9IV\6JLEI1L9I.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [V8ZWEANN7UXKL81] => "C:\Program Files\4JSOQAGYZ2\4JSOQAGYZ.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [ZFRHJCW087072RU] => "C:\Program Files\5LSLKKSNSO\5LSLKKSNS.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [6C3OZ914MNQYJLP] => "C:\Program Files\CUDX55L094\CUDX55L09.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [4IWFHVV4ITBLQG8] => "C:\Program Files\1U06BE6WO2\1U06BE6WO.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [JK70VFFWCMTFJ4J] => "C:\Program Files\0RUXIJ0IF6\0RUXIJ0IF.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [RM6VHA3T7E5AEH7] => "C:\Program Files\P2P9SJYMXI\P2P9SJYMX.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [616BZ65IX5WZUQ6] => "C:\Program Files\TH2WOICB37\TH2WOICB3.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [A3V93YVLMP7W79C] => "C:\Program Files\QL0YEP3OLB\QL0YEP3OL.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [HDYNUC2S68OSD4R] => "C:\Program Files\NRMYDA8ZSM\NRMYDA8ZS.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [428946] => "C:\Users\Julien\AppData\Roaming\anyoigvsigp\ymddhzx5uo0.exe" /VERYSILENT
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [8554975] => "C:\Users\Julien\AppData\Roaming\bssycnec05i\qmheoe1pl2a.exe" /VERYSILENT
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [1C9BBRC6M5R8SAQ] => "C:\Program Files\VVR7S1UCDI\VVR7S1UCD.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [6PP649IFWRXIPIH] => "C:\Program Files\OB66NLQC54\OB66NLQC5.exe"
HKU\S-1-5-21-1187549229-541575396-2510669273-1000\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] () [Fichier non signé]
Startup: C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\enim.lnk [2019-03-26]
ShortcutTarget: enim.lnk -> C:\Program Files (x86)\Befuddled\Deserter.exe (Pas de fichier)
Startup: C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\enimenim.lnk [2019-03-26]
ShortcutTarget: enimenim.lnk -> C:\Program Files (x86)\harpoon\Maltreated.exe (Pas de fichier)
GroupPolicy\User: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\...\Run: [Palates] => "C:\Program Files (x86)\Befuddled\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM\...\Run: [Shakespearian] => "C:\Program Files (x86)\harpoon\Maltreated.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
HKLM\...\Run: [Gaffer] => "C:\Program Files (x86)\Gula\Deserter.exe" uvkhauwuvkhauwuvkhauwuvkhau.uvkhauruvkhaumuvkhauwuvkhau.uvkhaupuvkhauwuvkhau/uvkhaupg2t0t1t9tuvkhau0c3c2pg6pguvkhauthtmRvcdkwuvkhauSED24ApgnjuvkhaubD74
Task: {0370B830-499A-4C1B-94E3-434A7FD9B0C9} - System32\Tasks\tamtam => C:\Program Files (x86)\Befuddled\Deserter.exe
Task: {6249F8AE-4003-49ED-B190-8AE93B84A931} - System32\Tasks\{8AA400D3-BE6E-4CD9-8A89-AEBD7BA52CB5} => C:\ProgramData\4962558042768306232\watchdog.exe <==== ATTENTION
Task: {BDD15186-091C-4002-9819-479C07E4B605} - System32\Tasks\headbanging_miscellanyheadbanging_miscellany => C:\Program Files (x86)\Gula\Deserter.exe
Task: {FBCD3292-2DF2-4E2D-83AE-D67D790DA435} - System32\Tasks\margarine moneymakermargarine moneymaker => C:\Program Files (x86)\Gula\Maltreated.exe
EmptyTemp:
RemoveProxy:
Hosts:
Reboot:
End:
*****************

Processus fermé avec succès.
Erreur: (0) Impossible de créer un point de restauration.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Mccollum" => supprimé(es) avec succès
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Coldness" => supprimé(es) avec succès
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Sandbank" => supprimé(es) avec succès
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => supprimé(es) avec succès
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Lync" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Skype for Desktop" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\TAV" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Blunting" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Nangle" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Abstain" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Haar" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Itochu" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\melanoma" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\YXXY3EI21FFWTQB" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\OZELSOT9QFPMESO" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\V8ZWEANN7UXKL81" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ZFRHJCW087072RU" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\6C3OZ914MNQYJLP" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\4IWFHVV4ITBLQG8" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\JK70VFFWCMTFJ4J" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\RM6VHA3T7E5AEH7" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\616BZ65IX5WZUQ6" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\A3V93YVLMP7W79C" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\HDYNUC2S68OSD4R" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\428946" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\8554975" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\1C9BBRC6M5R8SAQ" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\6PP649IFWRXIPIH" => non trouvé(e)
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Xvid" => non trouvé(e)
C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\enim.lnk => déplacé(es) avec succès
"C:\Program Files (x86)\Befuddled\Deserter.exe" => non trouvé(e)
C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\enimenim.lnk => déplacé(es) avec succès
"C:\Program Files (x86)\harpoon\Maltreated.exe" => non trouvé(e)
C:\Windows\system32\GroupPolicy\User => déplacé(es) avec succès
C:\Windows\system32\GroupPolicy\GPT.ini => déplacé(es) avec succès
HKLM\SOFTWARE\Policies\Google => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Palates" => non trouvé(e)
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Shakespearian" => non trouvé(e)
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Gaffer" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0370B830-499A-4C1B-94E3-434A7FD9B0C9}" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0370B830-499A-4C1B-94E3-434A7FD9B0C9}" => supprimé(es) avec succès
C:\Windows\System32\Tasks\tamtam => déplacé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\tamtam" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6249F8AE-4003-49ED-B190-8AE93B84A931}" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6249F8AE-4003-49ED-B190-8AE93B84A931}" => supprimé(es) avec succès
C:\Windows\System32\Tasks\{8AA400D3-BE6E-4CD9-8A89-AEBD7BA52CB5} => déplacé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8AA400D3-BE6E-4CD9-8A89-AEBD7BA52CB5}" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BDD15186-091C-4002-9819-479C07E4B605}" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDD15186-091C-4002-9819-479C07E4B605}" => supprimé(es) avec succès
C:\Windows\System32\Tasks\headbanging_miscellanyheadbanging_miscellany => déplacé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\headbanging_miscellanyheadbanging_miscellany" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FBCD3292-2DF2-4E2D-83AE-D67D790DA435}" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBCD3292-2DF2-4E2D-83AE-D67D790DA435}" => supprimé(es) avec succès
C:\Windows\System32\Tasks\margarine moneymakermargarine moneymaker => déplacé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\margarine moneymakermargarine moneymaker" => supprimé(es) avec succès

========= RemoveProxy: =========

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => supprimé(es) avec succès
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => supprimé(es) avec succès
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => supprimé(es) avec succès
"HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => supprimé(es) avec succès


========= Fin de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => déplacé(es) avec succès
Hosts restauré(es) avec succès.

[DOSTO]

Et voici les liens des nouveaux rapports FRST
- https://pjjoint.malekal.com/files.php?i ... c6l9m10k11
- https://pjjoint.malekal.com/files.php?i ... j5m13s1411
- https://pjjoint.malekal.com/files.php?i ... 15w14v14r6

Merci encore pour ton aide

[Malekal_morte]

Réinstalle proprement Google Chrome, en suivant exactement cette procédure : Réparer et réinstaller proprement Chrome

[angelique]

Bonjour/Bonsoir


Un dernier coup de nettoyage , ça m'a piqué les Yeux les clefs de registre


Télécharge à coté de FRST.EXE , PAS AILLEURS !!!!! le fichier fixlist.txt en pièce jointe en bas du message.

➯ Relance FRST(clic droit exécuter en tant qu'administrateur) et clic sur le bouton corriger/fix
Un redémarrage peut être nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message avec ton commentaire.

/!\ Ce script a été établi pour cet utilisateur, il ne doit, en aucun cas, être appliqué sur un autre système, au risque de provoquer de graves dysfonctionnements et endommager Windows /!\

[DOSTO]

À suivre, le résultat de l'analyse. J'ai finalement pu installer Chrome.

Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 08-03-2020
Exécuté par Julien (09-03-2020 22:24:19) Run:2
Exécuté depuis C:\Users\Julien\OneDrive\Escritorio\FRST
Profils chargés: Julien (Profils disponibles: Julien)
Mode d'amorçage: Normal
==============================================

fixlist contenu:
*****************
CreateRestorePoint:
Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Gaffer" /f
Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Palates" /f
Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Shakespearian" /f
Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Sandbank" /f
Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Mccollum" /f
Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Coldness" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enim.lnk" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enimenim.lnk" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "utweb" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Lync" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TAV" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "kype for Desktop" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "JK70VFFWCMTFJ4J" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "4IWFHVV4ITBLQG8" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6C3OZ914MNQYJLP" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "ZFRHJCW087072RU" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "V8ZWEANN7UXKL81" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "OZELSOT9QFPMESO" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "YXXY3EI21FFWTQB" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "428946" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "melanoma" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Haar" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Abstain" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Blunting" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Itochu" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "angle" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6PP649IFWRXIPIH" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "1C9BBRC6M5R8SAQ" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "HDYNUC2S68OSD4R" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "616BZ65IX5WZUQ6" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "RM6VHA3T7E5AEH7" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "AdobeBridge" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TunnelBear" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enim.lnk" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enimenim.lnk" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "utweb" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Lync" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TAV" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "kype for Desktop" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "JK70VFFWCMTFJ4J" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "4IWFHVV4ITBLQG8" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6C3OZ914MNQYJLP" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "ZFRHJCW087072RU" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "V8ZWEANN7UXKL81" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "OZELSOT9QFPMESO" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "YXXY3EI21FFWTQB" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "428946" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "melanoma" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Haar" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Abstain" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Blunting" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Itochu" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "angle" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6PP649IFWRXIPIH" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "1C9BBRC6M5R8SAQ" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "HDYNUC2S68OSD4R" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "616BZ65IX5WZUQ6" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "RM6VHA3T7E5AEH7" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "AdobeBridge" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TunnelBear" /f
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f
FirewallRules: [{368904F2-3D9A-471A-96FB-A2670560E0FA}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe Pas de fichier
FirewallRules: [{4E186EB4-ECF0-4A38-9EA7-131013318316}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe Pas de fichier
FirewallRules: [{D906894C-192F-46AE-B38C-7462EC86FCAF}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe Pas de fichier
FirewallRules: [{10500500-D3D0-41EE-8341-1211A77C3787}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe Pas de fichier
FirewallRules: [{07D0AF4F-A8D2-4329-9C74-CC649E5701BF}] => (Allow) C:\Program Files (x86)\Befuddled\Deserter.exe Pas de fichier
FirewallRules: [{505CB5BD-E676-4CE3-A1D9-D14CBE2446B1}] => (Allow) C:\Program Files (x86)\Gula\Deserter.exe Pas de fichier
FirewallRules: [{E37C80F9-07E1-472E-B392-AC7604966BF9}] => (Allow) C:\Program Files (x86)\harpoon\Maltreated.exe Pas de fichier
FirewallRules: [{D4A462C8-7944-4078-89C9-8D3DCB13CA9F}] => (Allow) C:\Program Files (x86)\Gula\Maltreated.exe Pas de fichier
FirewallRules: [{87590787-6C95-4C05-97A0-A5723068D90B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe Pas de fichier
FirewallRules: [{A5BD2029-042C-4A8A-BD24-2317F8D1404D}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe Pas de fichier
Task: {92AB7EA3-F662-4E78-ADB8-7D15FC5DA375} - System32\Tasks\referingrefering => C:\Program Files (x86)\Segal\hynde.exe
2020-03-09 18:29 - 2019-03-26 17:31 - 000000000 ___DC C:\Program Files\ZmE3NGJkYWUwMDUwODk3
EmptyTemp:


*****************

Erreur: (0) Impossible de créer un point de restauration.

========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Gaffer" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Palates" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Shakespearian" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Sandbank" /f =========

Erreurÿ: Erreurÿ: le systŠme n'a pas trouv‚ la cl‚ ou la valeur de Registre sp‚cifi‚e.


========= Fin de Reg: =========


========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Mccollum" /f =========

Erreurÿ: Erreurÿ: le systŠme n'a pas trouv‚ la cl‚ ou la valeur de Registre sp‚cifi‚e.


========= Fin de Reg: =========


========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Coldness" /f =========

Erreurÿ: Erreurÿ: le systŠme n'a pas trouv‚ la cl‚ ou la valeur de Registre sp‚cifi‚e.


========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enim.lnk" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enimenim.lnk" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "utweb" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Lync" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TAV" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "kype for Desktop" /f =========

Erreurÿ: Erreurÿ: le systŠme n'a pas trouv‚ la cl‚ ou la valeur de Registre sp‚cifi‚e.


========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "JK70VFFWCMTFJ4J" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "4IWFHVV4ITBLQG8" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6C3OZ914MNQYJLP" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "ZFRHJCW087072RU" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "V8ZWEANN7UXKL81" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "OZELSOT9QFPMESO" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "YXXY3EI21FFWTQB" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "428946" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "melanoma" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Haar" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Abstain" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Blunting" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Itochu" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "angle" /f =========

Erreurÿ: Erreurÿ: le systŠme n'a pas trouv‚ la cl‚ ou la valeur de Registre sp‚cifi‚e.


========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6PP649IFWRXIPIH" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "1C9BBRC6M5R8SAQ" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "HDYNUC2S68OSD4R" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "616BZ65IX5WZUQ6" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "RM6VHA3T7E5AEH7" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "AdobeBridge" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TunnelBear" /f =========

L'op‚ration a r‚ussi.



========= Fin de Reg: =========


========= reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f =========

Erreurÿ: Erreurÿ: le systŠme n'a pas trouv‚ la cl‚ ou la valeur de Registre sp‚cifi‚e.


========= Fin de Reg: =========

Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enim.lnk" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder /v "enimenim.lnk" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "utweb" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Lync" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TAV" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "kype for Desktop" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "JK70VFFWCMTFJ4J" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "4IWFHVV4ITBLQG8" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6C3OZ914MNQYJLP" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "ZFRHJCW087072RU" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "V8ZWEANN7UXKL81" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "OZELSOT9QFPMESO" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "YXXY3EI21FFWTQB" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "428946" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "melanoma" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Haar" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Abstain" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Blunting" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "Itochu" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "angle" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "6PP649IFWRXIPIH" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "1C9BBRC6M5R8SAQ" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "HDYNUC2S68OSD4R" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "616BZ65IX5WZUQ6" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "RM6VHA3T7E5AEH7" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "AdobeBridge" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "TunnelBear" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
Reg: reg delete HKU\S-1-5-21-1187549229-541575396-2510669273-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03092020183041049\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run /v "A3V93YVLMP7W79C" /f => Erreur ({ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}): Pas de correction automatique trouvée pour cet élément.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{368904F2-3D9A-471A-96FB-A2670560E0FA}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E186EB4-ECF0-4A38-9EA7-131013318316}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D906894C-192F-46AE-B38C-7462EC86FCAF}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{10500500-D3D0-41EE-8341-1211A77C3787}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07D0AF4F-A8D2-4329-9C74-CC649E5701BF}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{505CB5BD-E676-4CE3-A1D9-D14CBE2446B1}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E37C80F9-07E1-472E-B392-AC7604966BF9}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D4A462C8-7944-4078-89C9-8D3DCB13CA9F}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{87590787-6C95-4C05-97A0-A5723068D90B}" => supprimé(es) avec succès
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A5BD2029-042C-4A8A-BD24-2317F8D1404D}" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{92AB7EA3-F662-4E78-ADB8-7D15FC5DA375}" => supprimé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92AB7EA3-F662-4E78-ADB8-7D15FC5DA375}" => supprimé(es) avec succès
C:\Windows\System32\Tasks\referingrefering => déplacé(es) avec succès
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\referingrefering" => supprimé(es) avec succès
C:\Program Files\ZmE3NGJkYWUwMDUwODk3 => déplacé(es) avec succès

=========== EmptyTemp: ==========

BITS transfer queue => 17850368 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13880107 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1142389 B
Edge => 0 B
Chrome => 26634775 B
Firefox => 127264694 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 25530 B
Julien => 295596 B

RecycleBin => 0 B
EmptyTemp: => 178.4 MB données temporaires supprimées.

================================


Le système a dû redémarrer.

==== Fin de Fixlog 22:26:09 ====

[Malekal_morte]

Réinstalle proprement Google Chrome, en suivant exactement cette procédure : Réparer et réinstaller proprement Chrome

Tu as pu réinstaller Chrome ?

[DOSTO]

Oui, je te remercie. Problème résolu.

[Malekal_morte]

Parfait =)

Enfin pour protéger ton PC : Comment protéger son PC des virus et des pirates ?