RÃ©sultats de correction de Farbar Recovery Scan Tool (x64) Version: 23.08.2018
ExÃ©cutÃ© par Flack (03-09-2018 17:18:35) Run:1
ExÃ©cutÃ© depuis C:\Users\Flack\Desktop\Antivirus
Profils chargÃ©s: Flack (Profils disponibles: Flack)
Mode d'amorÃ§age: Normal
==============================================

fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe
HKU\S-1-5-21-160875040-2460750998-3874181850-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
HKU\S-1-5-21-160875040-2460750998-3874181850-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvÃ©(e)>
S2 KMSEmulator; "C:\ProgramData\KMSAuto\bin\KMSSS.exe" -Port 1688 -PWin RandomKMSPID -PO14 RandomKMSPID -PO15 RandomKMSPID -AI 43200 -RI 43200 KillProcessOnPort -Log -IP [X]
DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}
DeleteKey: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{209DD571-31F0-466E-9F02-373431EE67B0}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{AE9B4B71-2422-400E-908B-3D0BBC9872D0}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{F3539EA2-3B76-4276-97A8-60C97F9D8459}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{6B5B6D68-E2A9-4EF6-B78D-5ACDF60EE9FC}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C92EF9E6-7CD4-40B7-BEA0-AAB4EB87324D}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{61BB0E49-2A1C-4490-A608-2A425FE33979}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{2F7852EB-A931-40B4-8911-5FA7518729D7}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{AA29AAE1-E519-424F-9571-BF815E46C33E}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{A24F77AC-466C-49FB-A73A-C7AD1978504C}C:\program files (x86)\tmnationsforever\tmforever.exe
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{1A232681-60DA-42BF-9018-293EF4DCEFD5}C:\program files (x86)\tmnationsforever\tmforever.exe
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{87EBF51E-5E9A-426E-BE54-B5A2FC6AE6F0}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6F38EC15-845B-4596-B8E6-70E4E92D2480}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{3A6E23DE-7781-497F-AA96-EABFAE794911}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{3666DA8A-DE7B-4753-8CB2-3441890E08B3}
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{071501EC-8697-408E-A026-89ECEF4857F7}
DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|GoogleChromeAutoLaunch_D205AF2BCEEA44D7D19A9688AE069361
DeleteValue: HKEY_USERS\S-1-5-21-160875040-2460750998-3874181850-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|GoogleChromeAutoLaunch_D205AF2BCEEA44D7D19A9688AE069361
DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}
DeleteKey: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
C:\Users\Flack\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Flack\AppData\Local\Google\Chrome\User Data\Default\File System\Plugins
2018-08-31 14:54 - 2018-08-31 14:54 - 001906040 _____ (Oracle Corporation) C:\Users\Flack\AppData\Local\Temp\jre-8u181-windows-au.exe
CustomCLSID: HKU\S-1-5-21-160875040-2460750998-3874181850-1001_Classes\CLSID\{23066764-9BDD-4FBD-8B1F-F4547CF2684F}\InprocServer32 -> C:\Users\Flack\AppData\Local\Microsoft\OneDrive\18.070.0405.0002\amd64\FileSyncShell64.dll => Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Pas de fichier
Task: {45DE95EC-8E6E-43B5-8EF6-F15B95B989A1} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
EmptyTemp:

*****************

Le Point de restauration a Ã©tÃ© crÃ©Ã© avec succÃ¨s.
Processus fermÃ© avec succÃ¨s.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe => restaurÃ©(es) avec succÃ¨s
"HKU\S-1-5-21-160875040-2460750998-3874181850-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => supprimÃ©(es) avec succÃ¨s
"HKU\S-1-5-21-160875040-2460750998-3874181850-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner" => supprimÃ©(es) avec succÃ¨s
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => supprimÃ©(es) avec succÃ¨s
"HKLM\System\CurrentControlSet\Services\KMSEmulator" => supprimÃ©(es) avec succÃ¨s
KMSEmulator => service supprimÃ©(es) avec succÃ¨s
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32" => supprimÃ©(es) avec succÃ¨s
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} => non trouvÃ©(e)
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32" => supprimÃ©(es) avec succÃ¨s
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} => non trouvÃ©(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{209DD571-31F0-466E-9F02-373431EE67B0}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AE9B4B71-2422-400E-908B-3D0BBC9872D0}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F3539EA2-3B76-4276-97A8-60C97F9D8459}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6B5B6D68-E2A9-4EF6-B78D-5ACDF60EE9FC}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C92EF9E6-7CD4-40B7-BEA0-AAB4EB87324D}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{61BB0E49-2A1C-4490-A608-2A425FE33979}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2F7852EB-A931-40B4-8911-5FA7518729D7}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AA29AAE1-E519-424F-9571-BF815E46C33E}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A24F77AC-466C-49FB-A73A-C7AD1978504C}C:\program files (x86)\tmnationsforever\tmforever.exe" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1A232681-60DA-42BF-9018-293EF4DCEFD5}C:\program files (x86)\tmnationsforever\tmforever.exe" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{87EBF51E-5E9A-426E-BE54-B5A2FC6AE6F0}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F38EC15-845B-4596-B8E6-70E4E92D2480}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3A6E23DE-7781-497F-AA96-EABFAE794911}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3666DA8A-DE7B-4753-8CB2-3441890E08B3}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{071501EC-8697-408E-A026-89ECEF4857F7}" => supprimÃ©(es) avec succÃ¨s
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\GoogleChromeAutoLaunch_D205AF2BCEEA44D7D19A9688AE069361" => supprimÃ©(es) avec succÃ¨s
"HKEY_USERS\S-1-5-21-160875040-2460750998-3874181850-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\GoogleChromeAutoLaunch_D205AF2BCEEA44D7D19A9688AE069361" => non trouvÃ©(e)
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 => non trouvÃ©(e)
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} => non trouvÃ©(e)
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 => non trouvÃ©(e)
C:\Users\Flack\AppData\Local\Google\Chrome\User Data\Default\File System\000 => dÃ©placÃ©(es) avec succÃ¨s
C:\Users\Flack\AppData\Local\Google\Chrome\User Data\Default\File System\Plugins => dÃ©placÃ©(es) avec succÃ¨s
C:\Users\Flack\AppData\Local\Temp\jre-8u181-windows-au.exe => dÃ©placÃ©(es) avec succÃ¨s
"HKU\S-1-5-21-160875040-2460750998-3874181850-1001_Classes\CLSID\{23066764-9BDD-4FBD-8B1F-F4547CF2684F}" => supprimÃ©(es) avec succÃ¨s
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => supprimÃ©(es) avec succÃ¨s
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => non trouvÃ©(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45DE95EC-8E6E-43B5-8EF6-F15B95B989A1}" => supprimÃ©(es) avec succÃ¨s
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45DE95EC-8E6E-43B5-8EF6-F15B95B989A1}" => supprimÃ©(es) avec succÃ¨s
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => non trouvÃ©(e)
C:\ProgramData\Reprise => ":wupeogjxldtlfudivq`qsp`27hfm" ADS supprimÃ©(es) avec succÃ¨s

=========== EmptyTemp: ==========

BITS transfer queue => 8151040 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 70247391 B
Java, Flash, Steam htmlcache => 28309573 B
Windows/system/drivers => 17504126 B
Edge => 31027303 B
Chrome => 741156970 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 14200 B
LocalService => 0 B
NetworkService => 18892 B
NetworkService => 0 B
Flack => 20812721 B

RecycleBin => 106569 B
EmptyTemp: => 874.9 MB donnÃ©es temporaires supprimÃ©es.

================================


Le systÃ¨me a dÃ» redÃ©marrer.

==== Fin de Fixlog 17:22:59 ====