Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 30-10-2019 01
Exécuté par Delpierre (31-10-2019 11:28:39) Run:1
Exécuté depuis C:\Users\Delpierre\Desktop
Profils chargés: Delpierre (Profils disponibles: Delpierre)
Mode d'amorçage: Normal
==============================================

fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
ExportKey: HKLM\SOFTWARE\WOW6432Node\Applogon
Folder: C:\ProgramData\Key-Base
DeleteKey: HKLM\SOFTWARE\Wow6432Node\IObit\Advanced SystemCare
DeleteKey: HKLM\SOFTWARE\IObit\Advanced SystemCare
DeleteKey: HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME
DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
DeleteKey: HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
DeleteKey: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
DeleteKey: HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
C:\ProgramData\IObit\Advanced SystemCare
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\winkey.exe
DeleteValue: HKU\S-1-5-21-2284664720-1759453377-4265254117-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
DeleteValue: HKU\S-1-5-21-2284664720-1759453377-4265254117-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\winkey.exe
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\AdvancedSystemCareService12
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\iobit_monitor_server
DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
DeleteKey: HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
DeleteKey: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
DeleteKey: HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Advanced SystemCare
DeleteKey: HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
DeleteKey: HKCU\SOFTWARE\Emjysoft
DeleteKey: HKU\S-1-5-21-2284664720-1759453377-4265254117-1001\SOFTWARE\Emjysoft
C:\Users\Delpierre\AppData\Roaming\Emjysoft
DeleteKey: HKCU\SOFTWARE\Meltytech
DeleteKey: HKU\S-1-5-21-2284664720-1759453377-4265254117-1001\SOFTWARE\Meltytech
C:\Users\Delpierre\AppData\Local\Meltytech
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {00BA663C-AF10-425C-8BA9-1375A33B8C42} - System32\Tasks\{710F6701-3A2C-4503-969F-AF133690B9C7} => C:\Windows\system32\pcalua.exe -a "C:\Users\Delpierre\Downloads\DDU\DDU v18.0.0.8\Display Driver Uninstaller.exe" -d "C:\Users\Delpierre\Downloads\DDU\DDU v18.0.0.8"
Task: {622B9DBB-4CA8-4DE8-B945-58D3CE71111E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-06] (Google Inc -> Google Inc.)
Task: {9F10788B-0D38-4C21-B6E4-6662C64E59D1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-06] (Google Inc -> Google Inc.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh] - hxxps://clients2.google.com/service/update2/crx
S2 AdvancedSystemCareService12; "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe" [X]
U1 aswbdisk; pas de ImagePath
S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [X]
U3 iswSvc; pas de ImagePath
U4 npcap_wifi; pas de ImagePath
2019-10-30 18:30 - 2019-10-31 09:18 - 000000000 ____D C:\Users\Delpierre\Desktop\FRST-OlderVersion
2019-10-30 23:08 - 2018-10-12 14:17 - 000000000 ____D C:\Program Files (x86)\IObit
2019-10-30 22:52 - 2018-10-12 14:17 - 000000000 ____D C:\Users\Delpierre\AppData\Roaming\IObit
2019-10-30 22:52 - 2018-10-12 14:17 - 000000000 ____D C:\ProgramData\IObit
2019-10-30 22:51 - 2018-10-12 14:18 - 000000000 ____D C:\Users\Delpierre\AppData\LocalLow\IObit
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\alsace en hiver.pps.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Boccaccio.jpg.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Enculitude-pps (1)112.pps.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Il tocco dell'amore.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Le grec.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Le peintre des étoiles.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Les moulins de mon coeur.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Let it happen.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Lovely love de Paris.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Magdalena.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Man of the world.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Margarita GB.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Margarita.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Maria D.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Maria.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Mary was an only child.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Maybe someday.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Nabucco.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\No more boleros.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Ojos que no ven.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\One way wind.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Reverie.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Seniors u00E9lu00E9ment u00E9conomique indispensable.pps.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Sometimes when we touch.doc.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Office\Récents\Sous-bois ._._._._._._.une merveille 11.pps.lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Uninstall Programs (2).lnk
C:\Users\Delpierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Uninstall Programs (3).lnk
C:\Windows\Temp\ *.*
C:\Users\Delpierre\Appdata\Local\Temp\ *.*
C:\Windows\SoftwareDistribution\Download\ *

*****************

Le Point de restauration a été créé avec succès.

==== Fin de Fixlog 11:29:22 ====