Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Exécuté par my (21-03-2019 18:47:10) Run:5
Exécuté depuis C:\Users\my\Desktop
Profils chargés: my (Profils disponibles: my & DefaultAppPool)
Mode d'amorçage: Normal
==============================================
fixlist contenu:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-947223558-577044925-3974102329-1000\...\Run: [DesktopSnowOK] => "C:\Users\my\Desktop\DesktopSnowOK\DesktopSnowOK.exe" -bg
CHR StartupUrls: Profile 2 -> "hxxps://www.google.fr/","hxxps://outlook.live.com/mail/inbox/id/AQMkADAwATM3ZmYAZS05MGQ5LTQ5NGQtMDACLTAwCgBGAAADtUwwkQ9ol0WGflerMgG3ZQcAJjXITBFVf0qohpmeDdgXFQAAAgEMAAAAJjXITBFVf0qohpmeDdgXFQACP7wdZwAAAA%3D%3D","hxxps://www.facebook.com/","hxxps://mail.yahoo.com/d/folders/1"
CHR HKU\S-1-5-21-947223558-577044925-3974102329-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx
2019-03-17 15:57 - 2019-03-17 15:57 - 002434048 _____ (Farbar) C:\Users\my\Downloads\FRST64 (1).exe
2019-03-17 15:54 - 2019-03-17 15:54 - 002434048 _____ (Farbar) C:\Users\my\Documents\FRST64.exe
2019-03-17 15:51 - 2019-03-17 15:52 - 002434048 _____ (Farbar) C:\Users\my\Downloads\FRST64.exe
2019-03-01 06:35 - 2019-03-01 06:35 - 000070390 _____ C:\ProgramData\hva.1551418387.bdinstall.bin
2019-03-01 06:35 - 2019-03-01 06:35 - 000003384 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_6F2980EE6088481484E6D8285516CD07
2019-03-01 06:35 - 2019-03-01 06:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner
2019-03-01 06:34 - 2019-03-01 06:35 - 000000000 ____D C:\Program Files\Bitdefender Home Scanner
2019-03-01 06:34 - 2019-03-01 06:34 - 000040305 _____ C:\ProgramData\hva.uninstall.1551418400.bdinstall.bin
2019-02-20 06:29 - 2019-02-20 06:29 - 000072776 _____ C:\ProgramData\agent.update.1550640551.bdinstall.v2.bin
2019-02-19 18:31 - 2019-02-19 18:31 - 000000000 ____D C:\ProgramData\Bitdefender Home Scanner
2019-02-19 18:29 - 2019-02-20 06:29 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-02-19 18:29 - 2019-02-19 18:29 - 000105048 _____ C:\ProgramData\agent.1550597390.bdinstall.v2.bin
2019-02-19 18:29 - 2019-02-19 18:29 - 000000000 ____D C:\ProgramData\Bitdefender Agent
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner\Bitdefender Home Scanner.lnk -> C:\Program Files\Bitdefender Home Scanner\hvaui.exe (Bitdefender)
Task: {47CD67F4-A74E-4D9A-95D0-968698498940} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {6E417EF9-F7BF-4C5D-BCF1-6A99D0C3801C} - System32\Tasks\Open URL by RoboForm => C:\WINDOWS\system32\rundll32.exe url.dll,FileProtocolHandler "hxxps://www.roboform.com/uninstall.html?aaa=KICMKJNMLJLJNMLJKMOJCNLMPMGMJJCNLMKMOMLMCNGMJMKMOJCNGMOMKJPMHMKMKJHMLMGMKJJJJNJICMHMCNKMCNLMFMOMOMCNNMHMKMCNOMIMOMMMLMFMPMCNPMCNOMIMOMMMLMCNNMJNPICMPMFMFMPMJNHICMEKMICNJJCKJNBJCMCJGIJNKJCMJNNICMJNDJCMJJNIJNMJCMPMFMPMFMPMJNFICMN (l'élément de données a 26 caractères en plus).
Task: {FF43AA2E-742F-4D68-AF28-5E7CF35348F1} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [UDP Query User{B35FAA83-9AF4-47C3-9844-B81061466C08}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe Pas de fichier
FirewallRules: [TCP Query User{4C9B8BE1-045A-471A-8F05-AA0FCB2D4263}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe Pas de fichier
FirewallRules: [{4CC9B260-A618-47F2-8E48-11DEC84CE40B}] => (Allow) C:\Program Files\Bitdefender Home Scanner\hvasrv.exe Pas de fichier
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
CMD: netsh winsock reset
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f
C:\Users\my\Desktop\DesktopSnowOK
C:\Program Files\AVAST Software
C:\Program Files\Common Files\AVAST Software
cmd: type C:\Users\my\Documents\e-anim-edidget-beta\!run.bat
EmptyTemp:
End
*****************
Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
"HKU\S-1-5-21-947223558-577044925-3974102329-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DesktopSnowOK" => non trouvé(e)
"Chrome StartupUrls" => non trouvé(e)
HKU\S-1-5-21-947223558-577044925-3974102329-1000\SOFTWARE\Google\Chrome\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo => non trouvé(e)
"C:\Users\my\Downloads\FRST64 (1).exe" => non trouvé(e)
"C:\Users\my\Documents\FRST64.exe" => non trouvé(e)
"C:\Users\my\Downloads\FRST64.exe" => non trouvé(e)
"C:\ProgramData\hva.1551418387.bdinstall.bin" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_6F2980EE6088481484E6D8285516CD07" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner" => non trouvé(e)
"C:\Program Files\Bitdefender Home Scanner" => non trouvé(e)
"C:\ProgramData\hva.uninstall.1551418400.bdinstall.bin" => non trouvé(e)
"C:\ProgramData\agent.update.1550640551.bdinstall.v2.bin" => non trouvé(e)
"C:\ProgramData\Bitdefender Home Scanner" => non trouvé(e)
"C:\Program Files\Bitdefender Agent" => non trouvé(e)
"C:\ProgramData\agent.1550597390.bdinstall.v2.bin" => non trouvé(e)
"C:\ProgramData\Bitdefender Agent" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner\Bitdefender Home Scanner.lnk" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47CD67F4-A74E-4D9A-95D0-968698498940}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Avast Software\Overseer" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E417EF9-F7BF-4C5D-BCF1-6A99D0C3801C}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Open URL by RoboForm" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Open URL by RoboForm" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF43AA2E-742F-4D68-AF28-5E7CF35348F1}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B35FAA83-9AF4-47C3-9844-B81061466C08}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4C9B8BE1-045A-471A-8F05-AA0FCB2D4263}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4CC9B260-A618-47F2-8E48-11DEC84CE40B}" => non trouvé(e)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) => Erreur: Pas de correction automatique trouvée pour cet élément.
========= netsh winsock reset =========
Le catalogue Winsock a ‚t‚ r‚initialis‚ correctement.
Vous devez red‚marrer l'ordinateur afin de finaliser la r‚initialisation.
========= Fin de CMD: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
"C:\Users\my\Desktop\DesktopSnowOK" => non trouvé(e)
"C:\Program Files\AVAST Software" => non trouvé(e)
"C:\Program Files\Common Files\AVAST Software" => non trouvé(e)
========= type C:\Users\my\Documents\e-anim-edidget-beta\!run.bat =========
@echo off
rem set varinst = (`type %cd%\doc\install.txt`)
set /p JRE= < jre.txt
if exist "eanim.ini" goto labelexist
echo .
echo .
echo .
echo .
echo Preparation de l'installation du programme : Edidget.
echo il reunit le programme d'animation E-Anim
echo et la construction de gadgets
echo .
echo L'ecran va rester noir durant quelques secondes.
echo Je vais devoir vous faire patienter...
icacls "%cd%" /GRANT Utilisateurs:(OI)(CI)(F)
rem
rem --------------------------------------------------------
rem 1er demarrage
rem --------------------------------------------------------
rem
echo .
echo Demarrage de E-anim
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun
del "run_ok.txt"
IF Exist "eanim.ini" goto fin2
goto errormessage
rem
rem --------------------------------------------------------
rem 2eme demarrage
rem --------------------------------------------------------
:labelexist
:javaeanim
IF Exist "run_ok.txt" goto runok
IF exist "runTest.txt" goto runtest
rem
rem cree le fichier de test au 1er passage du 2eme demarrage
echo "e-anim en test" >runtest.txt
goto runok
:runtest
IF Exist "run_ok.txt" goto runok
rem
echo 2eme passage du 2eme demarrage le fichier run_ok n'existe pas -> bascule en java version 8
pause
copy "jre_win.txt" "jre.txt"
set /p JRE= < jre.txt
rem ... et l'affichage du play se fera dans le navigateur
set /p eanimini= < eanim.ini
set eanimini=%eanimini:play_in_frame=play_in_navigator%
echo %eanimini% > eanim.ini
:runok
rem start /B
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
del "run_ok.txt"
:fin3
del "start_ok.txt"
IF Exist "eanim.ini" goto fin2
goto errormessage
rem
rem --------------------------------------------------------
rem Message d'erreur
rem --------------------------------------------------------
:errormessage
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo . ******************************************************************
echo . * *
echo . * IMPORTANT : E-Anim fonctionne avec Java. *
echo . * *
echo . ******************************************************************
echo .
echo .
echo . ******************************************************************
echo . * *
echo . * Cliquez sur une touche pour installer Java *
echo . * *
echo . ******************************************************************
echo .
echo .
echo .
echo .
pause
explorer "http://www.java.com/fr/download/"
:fin2
========= Fin de CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14742490 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 43426651 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 6794 B
NetworkService => 0 B
my => 504043 B
DefaultAppPool => 0 B
RecycleBin => 3750988204 B
EmptyTemp: => 3.6 GB données temporaires supprimées.
================================
Le système a dû redémarrer.
==== Fin de Fixlog 18:49:53 ====
Exécuté par my (21-03-2019 18:47:10) Run:5
Exécuté depuis C:\Users\my\Desktop
Profils chargés: my (Profils disponibles: my & DefaultAppPool)
Mode d'amorçage: Normal
==============================================
fixlist contenu:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-947223558-577044925-3974102329-1000\...\Run: [DesktopSnowOK] => "C:\Users\my\Desktop\DesktopSnowOK\DesktopSnowOK.exe" -bg
CHR StartupUrls: Profile 2 -> "hxxps://www.google.fr/","hxxps://outlook.live.com/mail/inbox/id/AQMkADAwATM3ZmYAZS05MGQ5LTQ5NGQtMDACLTAwCgBGAAADtUwwkQ9ol0WGflerMgG3ZQcAJjXITBFVf0qohpmeDdgXFQAAAgEMAAAAJjXITBFVf0qohpmeDdgXFQACP7wdZwAAAA%3D%3D","hxxps://www.facebook.com/","hxxps://mail.yahoo.com/d/folders/1"
CHR HKU\S-1-5-21-947223558-577044925-3974102329-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx
2019-03-17 15:57 - 2019-03-17 15:57 - 002434048 _____ (Farbar) C:\Users\my\Downloads\FRST64 (1).exe
2019-03-17 15:54 - 2019-03-17 15:54 - 002434048 _____ (Farbar) C:\Users\my\Documents\FRST64.exe
2019-03-17 15:51 - 2019-03-17 15:52 - 002434048 _____ (Farbar) C:\Users\my\Downloads\FRST64.exe
2019-03-01 06:35 - 2019-03-01 06:35 - 000070390 _____ C:\ProgramData\hva.1551418387.bdinstall.bin
2019-03-01 06:35 - 2019-03-01 06:35 - 000003384 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_6F2980EE6088481484E6D8285516CD07
2019-03-01 06:35 - 2019-03-01 06:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner
2019-03-01 06:34 - 2019-03-01 06:35 - 000000000 ____D C:\Program Files\Bitdefender Home Scanner
2019-03-01 06:34 - 2019-03-01 06:34 - 000040305 _____ C:\ProgramData\hva.uninstall.1551418400.bdinstall.bin
2019-02-20 06:29 - 2019-02-20 06:29 - 000072776 _____ C:\ProgramData\agent.update.1550640551.bdinstall.v2.bin
2019-02-19 18:31 - 2019-02-19 18:31 - 000000000 ____D C:\ProgramData\Bitdefender Home Scanner
2019-02-19 18:29 - 2019-02-20 06:29 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-02-19 18:29 - 2019-02-19 18:29 - 000105048 _____ C:\ProgramData\agent.1550597390.bdinstall.v2.bin
2019-02-19 18:29 - 2019-02-19 18:29 - 000000000 ____D C:\ProgramData\Bitdefender Agent
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner\Bitdefender Home Scanner.lnk -> C:\Program Files\Bitdefender Home Scanner\hvaui.exe (Bitdefender)
Task: {47CD67F4-A74E-4D9A-95D0-968698498940} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {6E417EF9-F7BF-4C5D-BCF1-6A99D0C3801C} - System32\Tasks\Open URL by RoboForm => C:\WINDOWS\system32\rundll32.exe url.dll,FileProtocolHandler "hxxps://www.roboform.com/uninstall.html?aaa=KICMKJNMLJLJNMLJKMOJCNLMPMGMJJCNLMKMOMLMCNGMJMKMOJCNGMOMKJPMHMKMKJHMLMGMKJJJJNJICMHMCNKMCNLMFMOMOMCNNMHMKMCNOMIMOMMMLMFMPMCNPMCNOMIMOMMMLMCNNMJNPICMPMFMFMPMJNHICMEKMICNJJCKJNBJCMCJGIJNKJCMJNNICMJNDJCMJJNIJNMJCMPMFMPMFMPMJNFICMN (l'élément de données a 26 caractères en plus).
Task: {FF43AA2E-742F-4D68-AF28-5E7CF35348F1} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [UDP Query User{B35FAA83-9AF4-47C3-9844-B81061466C08}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe Pas de fichier
FirewallRules: [TCP Query User{4C9B8BE1-045A-471A-8F05-AA0FCB2D4263}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe Pas de fichier
FirewallRules: [{4CC9B260-A618-47F2-8E48-11DEC84CE40B}] => (Allow) C:\Program Files\Bitdefender Home Scanner\hvasrv.exe Pas de fichier
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
CMD: netsh winsock reset
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f
C:\Users\my\Desktop\DesktopSnowOK
C:\Program Files\AVAST Software
C:\Program Files\Common Files\AVAST Software
cmd: type C:\Users\my\Documents\e-anim-edidget-beta\!run.bat
EmptyTemp:
End
*****************
Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
"HKU\S-1-5-21-947223558-577044925-3974102329-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DesktopSnowOK" => non trouvé(e)
"Chrome StartupUrls" => non trouvé(e)
HKU\S-1-5-21-947223558-577044925-3974102329-1000\SOFTWARE\Google\Chrome\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo => non trouvé(e)
"C:\Users\my\Downloads\FRST64 (1).exe" => non trouvé(e)
"C:\Users\my\Documents\FRST64.exe" => non trouvé(e)
"C:\Users\my\Downloads\FRST64.exe" => non trouvé(e)
"C:\ProgramData\hva.1551418387.bdinstall.bin" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_6F2980EE6088481484E6D8285516CD07" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner" => non trouvé(e)
"C:\Program Files\Bitdefender Home Scanner" => non trouvé(e)
"C:\ProgramData\hva.uninstall.1551418400.bdinstall.bin" => non trouvé(e)
"C:\ProgramData\agent.update.1550640551.bdinstall.v2.bin" => non trouvé(e)
"C:\ProgramData\Bitdefender Home Scanner" => non trouvé(e)
"C:\Program Files\Bitdefender Agent" => non trouvé(e)
"C:\ProgramData\agent.1550597390.bdinstall.v2.bin" => non trouvé(e)
"C:\ProgramData\Bitdefender Agent" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner\Bitdefender Home Scanner.lnk" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47CD67F4-A74E-4D9A-95D0-968698498940}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Avast Software\Overseer" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E417EF9-F7BF-4C5D-BCF1-6A99D0C3801C}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Open URL by RoboForm" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Open URL by RoboForm" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF43AA2E-742F-4D68-AF28-5E7CF35348F1}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => non trouvé(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B35FAA83-9AF4-47C3-9844-B81061466C08}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4C9B8BE1-045A-471A-8F05-AA0FCB2D4263}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe" => non trouvé(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4CC9B260-A618-47F2-8E48-11DEC84CE40B}" => non trouvé(e)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) => Erreur: Pas de correction automatique trouvée pour cet élément.
========= netsh winsock reset =========
Le catalogue Winsock a ‚t‚ r‚initialis‚ correctement.
Vous devez red‚marrer l'ordinateur afin de finaliser la r‚initialisation.
========= Fin de CMD: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
========= REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f =========
L'op‚ration a r‚ussi.
========= Fin de Reg: =========
"C:\Users\my\Desktop\DesktopSnowOK" => non trouvé(e)
"C:\Program Files\AVAST Software" => non trouvé(e)
"C:\Program Files\Common Files\AVAST Software" => non trouvé(e)
========= type C:\Users\my\Documents\e-anim-edidget-beta\!run.bat =========
@echo off
rem set varinst = (`type %cd%\doc\install.txt`)
set /p JRE= < jre.txt
if exist "eanim.ini" goto labelexist
echo .
echo .
echo .
echo .
echo Preparation de l'installation du programme : Edidget.
echo il reunit le programme d'animation E-Anim
echo et la construction de gadgets
echo .
echo L'ecran va rester noir durant quelques secondes.
echo Je vais devoir vous faire patienter...
icacls "%cd%" /GRANT Utilisateurs:(OI)(CI)(F)
rem
rem --------------------------------------------------------
rem 1er demarrage
rem --------------------------------------------------------
rem
echo .
echo Demarrage de E-anim
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun
del "run_ok.txt"
IF Exist "eanim.ini" goto fin2
goto errormessage
rem
rem --------------------------------------------------------
rem 2eme demarrage
rem --------------------------------------------------------
:labelexist
:javaeanim
IF Exist "run_ok.txt" goto runok
IF exist "runTest.txt" goto runtest
rem
rem cree le fichier de test au 1er passage du 2eme demarrage
echo "e-anim en test" >runtest.txt
goto runok
:runtest
IF Exist "run_ok.txt" goto runok
rem
echo 2eme passage du 2eme demarrage le fichier run_ok n'existe pas -> bascule en java version 8
pause
copy "jre_win.txt" "jre.txt"
set /p JRE= < jre.txt
rem ... et l'affichage du play se fera dans le navigateur
set /p eanimini= < eanim.ini
set eanimini=%eanimini:play_in_frame=play_in_navigator%
echo %eanimini% > eanim.ini
:runok
rem start /B
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
del "run_ok.txt"
:fin3
del "start_ok.txt"
IF Exist "eanim.ini" goto fin2
goto errormessage
rem
rem --------------------------------------------------------
rem Message d'erreur
rem --------------------------------------------------------
:errormessage
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo . ******************************************************************
echo . * *
echo . * IMPORTANT : E-Anim fonctionne avec Java. *
echo . * *
echo . ******************************************************************
echo .
echo .
echo . ******************************************************************
echo . * *
echo . * Cliquez sur une touche pour installer Java *
echo . * *
echo . ******************************************************************
echo .
echo .
echo .
echo .
pause
explorer "http://www.java.com/fr/download/"
:fin2
========= Fin de CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14742490 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 43426651 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 6794 B
NetworkService => 0 B
my => 504043 B
DefaultAppPool => 0 B
RecycleBin => 3750988204 B
EmptyTemp: => 3.6 GB données temporaires supprimées.
================================
Le système a dû redémarrer.
==== Fin de Fixlog 18:49:53 ====