Fix result of Farbar Recovery Scan Tool (x64) Version: 23-09-2020 Ran by pc (23-09-2020 19:33:01) Run:1 Running from Q:\Telechargement Loaded Profiles: pc Boot Mode: Normal ============================================== fixlist content: ***************** CreateRestorepoint: CloseProcesses: HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-2303088868-1164163706-16838710-1001\...\Run: [Discord] => C:\Users\pc\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-2303088868-1164163706-16838710-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [2075816 2020-09-11] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.102\Installer\chrmstp.exe [2020-09-10] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\85.1.14.81\Installer\chrmstp.exe [2020-09-15] (Brave Software, Inc. -> Brave Software, Inc.) Task: {5EC8746C-FC24-436E-8615-6B9871132370} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157376 2020-06-01] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {698E4BA6-665E-40D7-8519-DA82340D588B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157376 2020-06-01] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {961A3370-6482-40DD-BCF1-7B3463FFC11E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-22] (Google Inc -> Google Inc.) Task: {A8AA5A4C-50C1-4D06-A731-C0A11EE67E85} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-22] (Google Inc -> Google Inc.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X] C:\WINDOWS\Installer\5757c469.msi C:\ProgramData\regid.1991-06.com.microsoft C:\END C:\WINDOWS\SECOH-QAD.dll C:\WINDOWS\SECOH-QAD.exe C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe C:\Program Files\KMSpico ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File AlternateDataStreams: C:\Users\pc\Application Data:6699d3ee8dd9cf775caae782c8f44f03 [394] AlternateDataStreams: C:\Users\pc\Application Data:90624d432577ede0f0806e688bced42f [394] AlternateDataStreams: C:\Users\pc\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394] AlternateDataStreams: C:\Users\pc\AppData\Roaming:90624d432577ede0f0806e688bced42f [394] Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer" /V SmartScreenEnabled /T REG_SZ /D RequireAdmin /f cmd: cscript %windir%\system32\slmgr.vbs /dli cmd: netsh advfirewall reset cmd: ipconfig /flushdns Hosts: RemoveProxy: EmptyTemp: ***************** Restore point was successfully created. Processes closed successfully. "HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor" => removed successfully "HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => removed successfully "HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => removed successfully "HKU\S-1-5-21-2303088868-1164163706-16838710-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Discord" => not found "HKU\S-1-5-21-2303088868-1164163706-16838710-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Application Restart #1" => removed successfully HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => not found HKLM\Software\Microsoft\Active Setup\Installed Components\{AFE6A462-C574-4B8A-AF43-4CC60DF4563B} => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5EC8746C-FC24-436E-8615-6B9871132370}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5EC8746C-FC24-436E-8615-6B9871132370}" => removed successfully C:\WINDOWS\System32\Tasks\BraveSoftwareUpdateTaskMachineCore => moved successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskMachineCore" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{698E4BA6-665E-40D7-8519-DA82340D588B}" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{698E4BA6-665E-40D7-8519-DA82340D588B}" => removed successfully C:\WINDOWS\System32\Tasks\BraveSoftwareUpdateTaskMachineUA => moved successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskMachineUA" => removed successfully "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{961A3370-6482-40DD-BCF1-7B3463FFC11E}" => not found "C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8AA5A4C-50C1-4D06-A731-C0A11EE67E85}" => not found "C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully HKLM\System\CurrentControlSet\Services\BRDriver64_1_3_3_E02B25FC => removed successfully BRDriver64_1_3_3_E02B25FC => service removed successfully C:\WINDOWS\Installer\5757c469.msi => moved successfully C:\ProgramData\regid.1991-06.com.microsoft => moved successfully "C:\END" => not found "C:\WINDOWS\SECOH-QAD.dll" => not found "C:\WINDOWS\SECOH-QAD.exe" => not found "C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe" => not found "C:\Program Files\KMSpico" => not found HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxDTCM => removed successfully C:\Users\pc\Application Data => ":6699d3ee8dd9cf775caae782c8f44f03" ADS removed successfully C:\Users\pc\Application Data => ":90624d432577ede0f0806e688bced42f" ADS removed successfully "C:\Users\pc\AppData\Roaming" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found. "C:\Users\pc\AppData\Roaming" => ":90624d432577ede0f0806e688bced42f" ADS not found. ========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer" /V SmartScreenEnabled /T REG_SZ /D RequireAdmin /f ========= L'op‚ration a r‚ussi. ========= End of Reg: ========= ========= cscript %windir%\system32\slmgr.vbs /dli ========= Microsoft (R) Windows Script Host Version 5.812 Copyright (C) Microsoft Corporation. Tous droits r‚serv‚s. Name: Windows(R), Professional edition Description: Windows(R) Operating System, RETAIL channel Partial Product Key: 3V66T License Status: Licensed ========= End of CMD: ========= ========= netsh advfirewall reset ========= Ok. ========= End of CMD: ========= ========= ipconfig /flushdns ========= Configuration IP de Windows Cache de r‚solution DNS vid‚. ========= End of CMD: ========= C:\Windows\System32\Drivers\etc\hosts => moved successfully Hosts restored successfully. ========= RemoveProxy: ========= "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully "HKU\S-1-5-21-2303088868-1164163706-16838710-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully "HKU\S-1-5-21-2303088868-1164163706-16838710-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully ========= End of RemoveProxy: ========= =========== EmptyTemp: ========== BITS transfer queue => 9199616 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 64056092 B Java, Flash, Steam htmlcache => 399861424 B Windows/system/drivers => 248673 B Edge => 3350228 B Chrome => 24958371 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 6656 B Users => 6656 B ProgramData => 6656 B Public => 6656 B systemprofile => 6656 B systemprofile32 => 6656 B LocalService => 74372 B NetworkService => 84698 B pc => 30391203 B RecycleBin => 0 B EmptyTemp: => 507.6 MB temporary data Removed. ================================ The system needed a reboot. ==== End of Fixlog 19:33:50 ====