Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 29-03-2020
Exécuté par Morgan (02-04-2020 14:55:46) Run:1
Exécuté depuis C:\Users\DeaDP\Desktop
Profils chargés: Morgan (Profils disponibles: defaultuser0 & Morgan)
Mode d'amorçage: Normal
==============================================

fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2020-03-31]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Pas de fichier)
StartRegEdit:
Windows Registry Editor Version 5.00
[-HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains
[-HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains
[-HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\microsoft.com\*.update]
"http"=dword:00000002
"https"=dword:00000002
EndRegEdit:
DeleteKey: HKCU\Software\undefined
DeleteKey: HKU\S-1-5-21-481486774-555776090-1048937002-1001\SOFTWARE\undefined
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{84EB4409-C2EC-47D5-B517-07922BCD52B6}D:\jeux\overwatch ptr\overwatch test\_ptr_\overwatch.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{A75A70CD-2F6D-4A16-A937-7D0F9CCCFF0A}D:\jeux\overwatch ptr\overwatch test\_ptr_\overwatch.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{44FEEA8D-0AF3-419B-90EF-D085AEEE49C9}D:\jeux\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{66D52F95-690C-4BA3-A385-E51BE1B6A8D9}D:\jeux\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{F9073EA6-2EF2-4415-A7C4-1639F13FC852}D:\jeux\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{21AB611E-1AB2-4654-A93E-48DD4889B648}D:\jeux\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{8123D4C8-86AB-4A22-BD59-DA8AAF47A023}D:\jeux\overwatch\overwatch.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{5AC3079E-E38B-42C8-9B14-DEB751AE69F4}D:\jeux\overwatch\overwatch.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{B7425339-8DD5-4E4E-AA40-1815748FAD20}C:\users\deadp\appdata\roaming\spotify\spotify.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{6A0B8F5C-1C5A-4E5E-B9E2-BF18C1B62BD2}C:\users\deadp\appdata\roaming\spotify\spotify.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{B2FDF2E8-11E2-4E28-9716-4E976E897FEF}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{16418E95-117F-465B-83F7-A817A9BE4FF2}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{091D685E-D24F-4A8A-8AEA-A718BF182106}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{955189F4-533C-4C87-82B3-324B863B116B}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{5F2BAA75-105B-4371-994C-AFBBB5DF8002}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C3EABB93-D16A-4CB1-AB26-5E3AB8928BDB}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{A1131402-A86B-4143-9565-0E5B9AD0BEA7}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{72C37D2A-F4EE-45AB-B44A-F77697099C27}D:\jeux\unreal tournament\binaries\ut3.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{11252721-6F2E-4F10-BCFD-46DC620D5A34}D:\jeux\unreal tournament\binaries\ut3.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{D70D29BB-4351-44EA-A46E-F75E9FEA375D}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6F3F2539-FF8C-41B1-AAD6-528C57A66AE4}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{16AA87ED-01FD-459F-A584-E7EA07734590}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{27C45407-F717-4776-A213-3BB547495241}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{D1322927-2BD2-49E9-8F3C-7845C7FDE731}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{08D3ABEF-2ED7-4612-A417-954B77364213}"
DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}
DeleteKey: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\001
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\003
DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|AvastBrowserAutoLaunch_67B720E822DB3EA0AB9B777FC0792C97
DeleteValue: HKEY_USERS\S-1-5-21-481486774-555776090-1048937002-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|AvastBrowserAutoLaunch_67B720E822DB3EA0AB9B777FC0792C97
DeleteKey: HKU\S-1-5-21-481486774-555776090-1048937002-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
DeleteKey: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
DeleteValue: HKU\S-1-5-21-481486774-555776090-1048937002-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings|nladljmabboanhihfkjacnnkgjhnokhj
CHR Notifications: Default -> hxxps://fr.softonic.com; hxxps://www.facebook.com; hxxps://www.youtube.com
CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms}
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Pas de fichier
AlternateDataStreams: C:\Users\Public\AppData:CSM [476]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482]
EmptyTemp:

*****************

Erreur: (0) Impossible de créer un point de restauration.
Processus fermé avec succès.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk => déplacé(es) avec succès
"ShortcutTarget: $McRebootA5E6DEAA56$.lnk ->  (Pas de fichier)" => non trouvé(e)
Registre ====> L'op�ration a r�ussi.
HKCU\Software\undefined => supprimé(es) avec succès
HKU\S-1-5-21-481486774-555776090-1048937002-1001\SOFTWARE\undefined => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{84EB4409-C2EC-47D5-B517-07922BCD52B6}D:\jeux\overwatch ptr\overwatch test\_ptr_\overwatch.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A75A70CD-2F6D-4A16-A937-7D0F9CCCFF0A}D:\jeux\overwatch ptr\overwatch test\_ptr_\overwatch.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{44FEEA8D-0AF3-419B-90EF-D085AEEE49C9}D:\jeux\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{66D52F95-690C-4BA3-A385-E51BE1B6A8D9}D:\jeux\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F9073EA6-2EF2-4415-A7C4-1639F13FC852}D:\jeux\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{21AB611E-1AB2-4654-A93E-48DD4889B648}D:\jeux\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8123D4C8-86AB-4A22-BD59-DA8AAF47A023}D:\jeux\overwatch\overwatch.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5AC3079E-E38B-42C8-9B14-DEB751AE69F4}D:\jeux\overwatch\overwatch.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B7425339-8DD5-4E4E-AA40-1815748FAD20}C:\users\deadp\appdata\roaming\spotify\spotify.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6A0B8F5C-1C5A-4E5E-B9E2-BF18C1B62BD2}C:\users\deadp\appdata\roaming\spotify\spotify.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B2FDF2E8-11E2-4E28-9716-4E976E897FEF}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{16418E95-117F-465B-83F7-A817A9BE4FF2}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{091D685E-D24F-4A8A-8AEA-A718BF182106}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{955189F4-533C-4C87-82B3-324B863B116B}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5F2BAA75-105B-4371-994C-AFBBB5DF8002}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C3EABB93-D16A-4CB1-AB26-5E3AB8928BDB}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A1131402-A86B-4143-9565-0E5B9AD0BEA7}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{72C37D2A-F4EE-45AB-B44A-F77697099C27}D:\jeux\unreal tournament\binaries\ut3.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{11252721-6F2E-4F10-BCFD-46DC620D5A34}D:\jeux\unreal tournament\binaries\ut3.exe"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D70D29BB-4351-44EA-A46E-F75E9FEA375D}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F3F2539-FF8C-41B1-AAD6-528C57A66AE4}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{16AA87ED-01FD-459F-A584-E7EA07734590}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{27C45407-F717-4776-A213-3BB547495241}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D1322927-2BD2-49E9-8F3C-7845C7FDE731}"" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{08D3ABEF-2ED7-4612-A417-954B77364213}"" => non trouvé(e)
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 => supprimé(es) avec succès
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} => non trouvé(e)
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 => supprimé(es) avec succès
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\000 => déplacé(es) avec succès
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\001 => déplacé(es) avec succès
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\002 => déplacé(es) avec succès
C:\Users\DeaDP\AppData\Local\Google\Chrome\User Data\Default\File System\003 => déplacé(es) avec succès
"HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\AvastBrowserAutoLaunch_67B720E822DB3EA0AB9B777FC0792C97" => supprimé(es) avec succès
"HKEY_USERS\S-1-5-21-481486774-555776090-1048937002-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\AvastBrowserAutoLaunch_67B720E822DB3EA0AB9B777FC0792C97" => non trouvé(e)
HKU\S-1-5-21-481486774-555776090-1048937002-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com => non trouvé(e)
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com => non trouvé(e)
"HKU\S-1-5-21-481486774-555776090-1048937002-1001\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings\\nladljmabboanhihfkjacnnkgjhnokhj" => supprimé(es) avec succès
"Chrome Notifications" => supprimé(es) avec succès
"Chrome DefaultSearchURL" => supprimé(es) avec succès
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nladljmabboanhihfkjacnnkgjhnokhj => supprimé(es) avec succès
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => supprimé(es) avec succès
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => supprimé(es) avec succès
C:\Users\Public\AppData => ":CSM" ADS supprimé(es) avec succès
C:\Users\Public\Shared Files => ":VersionCache" ADS supprimé(es) avec succès

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 87354628 B
Java, Flash, Steam htmlcache => 182475140 B
Windows/system/drivers => 93636383 B
Edge => 3814180 B
Chrome => 450372447 B
Firefox => 0 B
Opera => 458767609 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 171368 B
defaultuser0 => 171368 B
DeaDP => 96822834 B

RecycleBin => 760462 B
EmptyTemp: => 1.3 GB données temporaires supprimées.

================================


Le système a dû redémarrer.

==== Fin de Fixlog 14:58:50 ====