~ ZHPFix v2019.3.12.31 by Nicolas Coolman (2019/02/12)
~ Run by Bourgeois (Administrator)  (20/03/2019 18:50:24)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\Bourgeois\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 17134)



---\\  SCRIPT DE L'UTILISATEUR.  (177)
Script ZHPFix
EmptyCLSID
EmptyFlash
EmptyTemp
EmptyTracing
EmptyPrefetch
EmptyProxy
UnMaskSoftware: O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}  =>.Google Inc. (Hidden)
O43 - CFD: 27/01/2019 - [] D -- C:\Users\Bourgeois\AppData\Local\OneDrive
C:\Users\Bourgeois\AppData\Local\OneDrive
HKCU\SOFTWARE\App Host Service
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\App Host Service
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O87 - FAEL: "{F98A5B1D-F70F-4AAA-AF79-0DCE765D9C09}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
O87 - FAEL: "{F15414ED-293C-47A9-968C-9030302A7BFA}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
O87 - FAEL: "{31B678F0-AC0E-427A-9066-0CDD9C56847F}" [In-None-P17-TRUE] .(...) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (.not file.)
O87 - FAEL: "{FA739251-85CD-4573-81CE-5862FF722282}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (.not file.)
O87 - FAEL: "{60A01EA1-B290-4426-B756-91C993F59ED1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (.not file.)
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\003
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\004
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\005
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\006
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\007
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\008
O4 - GS\Quicklaunch [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O4 - GS\Quicklaunch [Bourgeois]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O4 - GS\Quicklaunch [defaultuser0]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O4 - GS\Quicklaunch [WDAGUtilityAccount]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
HKCU\SOFTWARE\BitTorrent
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\BitTorrent
O43 - CFD: 05/03/2019 - [] D -- C:\Users\Bourgeois\AppData\Roaming\uTorrent
O87 - FAEL: "{FEF71B07-C9E8-4097-8E78-4F443A493353}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{6A0883FB-D340-492E-B532-CC54D042AD90}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe
O23 - Service: Intel SST Parameter Service (IntelSSTSvc) . (...) - C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe (.not file.)
SR - Auto   [00/00/0000] [       0]  Intel SST Parameter Service (IntelSSTSvc) . (...) - C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe (.not file.)
O17 - HKLM\System\CCS\Services\Tcpip\..\{e28d23ed-5315-42ae-8da9-97efc87308cc}: DhcpNameServer = 192.168.1.1 192.168.1.1  =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{e8439c41-25c5-4a18-856b-d412ad456b99}: DhcpNameServer = 192.168.1.1 192.168.1.1  =>.Local IP Adress
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SR - Auto   [18/05/2010] [  345376]  Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
[MD5.5AB58C337AC65837FE404462AD6265AB] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [345376] [PID.3800]
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}
O43 - CFD: 25/11/2017 - [] AD -- C:\Program Files\Bonjour
O43 - CFD: 25/11/2017 - [] AD -- C:\Program Files (x86)\Bonjour
O87 - FAEL: "{1958267D-1DD2-4A5F-94C5-A34CF05CA588}" [In-None-P17-TRUE] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{94549914-8F10-4F79-828D-8AA22445F7F7}" [In-None-P6-TRUE] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O90 - PUC: "BF01119B4B33B864092CD4E5A83EAF1E" [HKLM] . (.Bonjour.) -- C:\Windows\Installer\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}\Bonjour.ico
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}  =>.Google Inc. (Hidden)
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
[MD5.DF5A2FF9B46C998C9697A17BBCA32EDD] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424] [PID.46108]
[MD5.7C3107B16BE552D2DEA7C68A37820DE5] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [942416] [PID.62692]
O42 - Logiciel: Java 8 Update 181 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180181F0}
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10}
HKLM\SOFTWARE\WOW6432Node\JavaSoft
HKCU\SOFTWARE\JavaSoft
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\JavaSoft
O43 - CFD: 20/07/2018 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 07/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 20/07/2018 - [] D -- C:\Program Files (x86)\Common Files\Java
O90 - PUC: "4EA42A62D9304AC4784BF2238110180F" [HKLM] . (.Java 8 Update 181.) -- C:\Program Files (x86)\Java\jre1.8.0_181\\bin\javaws.exe
O90 - PUC: "F60730A4A66673047777F5728467D401" [HKLM] . (.Java Auto Updater.)
[MD5.0E4585720A4205E884AB245D4ACDCAAE] [WIS][2018/07/20 12:00:34] (.Oracle Corporation - Java SE Runtime Environment 8 Update 181.) -- C:\WINDOWS\Installer\8adab22c.msi  [35176448]
[MD5.B5E7E6A6AF5AB04E74486085076369A5] [WIS][2018/07/20 12:00:24] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\8adab235.msi  [765952]
O38 - TASK: {AFF6FB49-F231-455C-99E2-59F442EF8CCF} [64Bits][\Avast Software\Overseer] - (.AVAST Software - Avast Overseer.) -- C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe  [1956536] 
C:\WINDOWS\System32\Tasks\Avast Software\Overseer - (.AVAST Software.) -- C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe  [/from_scheduler:1] 
P2 - EXT FILE: (.Avast Software s.r.o - .) -- C:\Users\Bourgeois\AppData\Roaming\Mozilla\Firefox\Profiles\ekqmtiuz.default\extensions\sp@avast.com.xpi
P2 - EXT FILE: (.Avast Online Security - Avast Browser Security and Web Reputat.) -- C:\Users\Bourgeois\AppData\Roaming\Mozilla\Firefox\Profiles\ekqmtiuz.default\extensions\wrc@avast.com.xpi
HKLM\SOFTWARE\WOW6432Node\AVAST Software
HKCU\SOFTWARE\Browser Cleanup
HKU\.DEFAULT\SOFTWARE\Browser Cleanup
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Browser Cleanup
O43 - CFD: 06/09/2018 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 23/06/2018 - [] D -- C:\Users\Bourgeois\AppData\Local\AVAST Software
O87 - FAEL: "{F98A5B1D-F70F-4AAA-AF79-0DCE765D9C09}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
O87 - FAEL: "{F15414ED-293C-47A9-968C-9030302A7BFA}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
HKLM\SOFTWARE\WOW6432Node\Symantec
HKCU\SOFTWARE\Norton
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Norton
O43 - CFD: 25/11/2017 - [] D -- C:\ProgramData\Norton
O43 - CFD: 07/04/2017 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 25/11/2017 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
HKCU\SOFTWARE\Chromium
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Chromium
O43 - CFD: 05/07/2018 - [] D -- C:\Users\Bourgeois\AppData\Local\Chromium
FinScript ZHPFix
EmptyCLSID
EmptyFlash
EmptyTemp
EmptyTracing
EmptyPrefetch
EmptyProxy
UnMaskSoftware: O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}  =>.Google Inc. (Hidden)
O43 - CFD: 27/01/2019 - [] D -- C:\Users\Bourgeois\AppData\Local\OneDrive
C:\Users\Bourgeois\AppData\Local\OneDrive
HKCU\SOFTWARE\App Host Service
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\App Host Service
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O87 - FAEL: "{F98A5B1D-F70F-4AAA-AF79-0DCE765D9C09}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
O87 - FAEL: "{F15414ED-293C-47A9-968C-9030302A7BFA}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
O87 - FAEL: "{31B678F0-AC0E-427A-9066-0CDD9C56847F}" [In-None-P17-TRUE] .(...) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (.not file.)
O87 - FAEL: "{FA739251-85CD-4573-81CE-5862FF722282}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (.not file.)
O87 - FAEL: "{60A01EA1-B290-4426-B756-91C993F59ED1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (.not file.)
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\003
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\004
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\005
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\006
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\007
C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\008
O4 - GS\Quicklaunch [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O4 - GS\Quicklaunch [Bourgeois]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O4 - GS\Quicklaunch [defaultuser0]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O4 - GS\Quicklaunch [WDAGUtilityAccount]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe  
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
HKCU\SOFTWARE\BitTorrent
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\BitTorrent
O43 - CFD: 05/03/2019 - [] D -- C:\Users\Bourgeois\AppData\Roaming\uTorrent
O87 - FAEL: "{FEF71B07-C9E8-4097-8E78-4F443A493353}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{6A0883FB-D340-492E-B532-CC54D042AD90}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Bourgeois\AppData\Roaming\uTorrent\uTorrent.exe
O23 - Service: Intel SST Parameter Service (IntelSSTSvc) . (...) - C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe (.not file.)
SR - Auto   [00/00/0000] [       0]  Intel SST Parameter Service (IntelSSTSvc) . (...) - C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe (.not file.)
O17 - HKLM\System\CCS\Services\Tcpip\..\{e28d23ed-5315-42ae-8da9-97efc87308cc}: DhcpNameServer = 192.168.1.1 192.168.1.1  =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{e8439c41-25c5-4a18-856b-d412ad456b99}: DhcpNameServer = 192.168.1.1 192.168.1.1  =>.Local IP Adress
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SR - Auto   [18/05/2010] [  345376]  Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
[MD5.5AB58C337AC65837FE404462AD6265AB] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [345376] [PID.3800]
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}
O43 - CFD: 25/11/2017 - [] AD -- C:\Program Files\Bonjour
O43 - CFD: 25/11/2017 - [] AD -- C:\Program Files (x86)\Bonjour
O87 - FAEL: "{1958267D-1DD2-4A5F-94C5-A34CF05CA588}" [In-None-P17-TRUE] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{94549914-8F10-4F79-828D-8AA22445F7F7}" [In-None-P6-TRUE] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O90 - PUC: "BF01119B4B33B864092CD4E5A83EAF1E" [HKLM] . (.Bonjour.) -- C:\Windows\Installer\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}\Bonjour.ico
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}  =>.Google Inc. (Hidden)
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
[MD5.DF5A2FF9B46C998C9697A17BBCA32EDD] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424] [PID.46108]
[MD5.7C3107B16BE552D2DEA7C68A37820DE5] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [942416] [PID.62692]
O42 - Logiciel: Java 8 Update 181 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180181F0}
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10}
HKLM\SOFTWARE\WOW6432Node\JavaSoft
HKCU\SOFTWARE\JavaSoft
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\JavaSoft
O43 - CFD: 20/07/2018 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 07/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 20/07/2018 - [] D -- C:\Program Files (x86)\Common Files\Java
O90 - PUC: "4EA42A62D9304AC4784BF2238110180F" [HKLM] . (.Java 8 Update 181.) -- C:\Program Files (x86)\Java\jre1.8.0_181\\bin\javaws.exe
O90 - PUC: "F60730A4A66673047777F5728467D401" [HKLM] . (.Java Auto Updater.)
[MD5.0E4585720A4205E884AB245D4ACDCAAE] [WIS][2018/07/20 12:00:34] (.Oracle Corporation - Java SE Runtime Environment 8 Update 181.) -- C:\WINDOWS\Installer\8adab22c.msi  [35176448]
[MD5.B5E7E6A6AF5AB04E74486085076369A5] [WIS][2018/07/20 12:00:24] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\8adab235.msi  [765952]
O38 - TASK: {AFF6FB49-F231-455C-99E2-59F442EF8CCF} [64Bits][\Avast Software\Overseer] - (.AVAST Software - Avast Overseer.) -- C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe  [1956536] 
C:\WINDOWS\System32\Tasks\Avast Software\Overseer - (.AVAST Software.) -- C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe  [/from_scheduler:1] 
P2 - EXT FILE: (.Avast Software s.r.o - .) -- C:\Users\Bourgeois\AppData\Roaming\Mozilla\Firefox\Profiles\ekqmtiuz.default\extensions\sp@avast.com.xpi
P2 - EXT FILE: (.Avast Online Security - Avast Browser Security and Web Reputat.) -- C:\Users\Bourgeois\AppData\Roaming\Mozilla\Firefox\Profiles\ekqmtiuz.default\extensions\wrc@avast.com.xpi
HKLM\SOFTWARE\WOW6432Node\AVAST Software
HKCU\SOFTWARE\Browser Cleanup
HKU\.DEFAULT\SOFTWARE\Browser Cleanup
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Browser Cleanup
O43 - CFD: 06/09/2018 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 23/06/2018 - [] D -- C:\Users\Bourgeois\AppData\Local\AVAST Software
O87 - FAEL: "{F98A5B1D-F70F-4AAA-AF79-0DCE765D9C09}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
O87 - FAEL: "{F15414ED-293C-47A9-968C-9030302A7BFA}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.)
HKLM\SOFTWARE\WOW6432Node\Symantec
HKCU\SOFTWARE\Norton
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Norton
O43 - CFD: 25/11/2017 - [] D -- C:\ProgramData\Norton
O43 - CFD: 07/04/2017 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 25/11/2017 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
HKCU\SOFTWARE\Chromium
HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Chromium
O43 - CFD: 05/07/2018 - [] D -- C:\Users\Bourgeois\AppData\Local\Chromium
Fin


---\\  LOGICIEL.  (5)
DESINSTALLER : uTorrent
DESINSTALLER : {B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}
DESINSTALLER : {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
DESINSTALLER : {26A24AE4-039D-4CA4-87B4-2F32180181F0}
DESINSTALLER : {4A03706F-666A-4037-7777-5F2748764D10}


---\\  SERVICE.  (3)
ARRETÉ : HKLM\SYSTEM\CurrentControlSet\Services\IntelSSTSvc [No File found]
ABSENT Service: IntelSSTSvc [No File found]
ABSENT Service: Bonjour Service [mDNSResponder.exe]


---\\  TÂCHE PLANIFIÉE.  (2)
SUPPRIMÉ Redémarrage  Clé  Tasks^: HKLM64\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFF6FB49-F231-455C-99E2-59F442EF8CCF}
SUPPRIMÉ Redémarrage  Clé  Tasks^: HKLM64\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{AFF6FB49-F231-455C-99E2-59F442EF8CCF}


---\\  NAVIGATEUR INTERNET.  (2)
DEPLACÉ Fichier Firefox: C:\Users\Bourgeois\AppData\Roaming\Mozilla\Firefox\Profiles\ekqmtiuz.default\extensions\sp@avast.com.xpi
DEPLACÉ Fichier Firefox: C:\Users\Bourgeois\AppData\Roaming\Mozilla\Firefox\Profiles\ekqmtiuz.default\extensions\wrc@avast.com.xpi


---\\  EXPLORATEUR ( Dossiers, Fichiers ).  (20)
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\adobegc.log
SUPPRIMÉ Redémarrage  Fichier Temp^: C:\Users\BOURGE~1\AppData\Local\Temp\aria-debug-11892.log
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\aria-debug-46712.log
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\JavaDeployReg.log
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\jusched.log
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\StructuredQuery.log
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\TWAIN.LOG
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\wctAC7D.tmp
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\wctD281.tmp
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\wctE9F4.tmp
DEPLACÉ Fichier Temp: C:\Users\BOURGE~1\AppData\Local\Temp\wctEB2B.tmp
SUPPRIMÉ Dossier : C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\003
SUPPRIMÉ Dossier : C:\Users\Bourgeois\AppData\Local\Google\Chrome\User Data\Default\File System\004
DEPLACÉ Fichier  Tasks: C:\WINDOWS\System32\Tasks\Avast Software\Overseer
SUPPRIMÉ Dossier : C:\ProgramData\AVAST Software
SUPPRIMÉ Dossier : C:\Users\Bourgeois\AppData\Local\AVAST Software
SUPPRIMÉ Dossier : C:\ProgramData\Norton
SUPPRIMÉ Dossier : C:\ProgramData\NortonInstaller
SUPPRIMÉ Dossier : C:\Program Files (x86)\Common Files\Symantec Shared
SUPPRIMÉ Dossier : C:\Users\Bourgeois\AppData\Local\Chromium


---\\  REGISTRE ( Clés, Valeurs, Données ).  (53)
REMPLACÉ Donnée  Software: 1 [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}\\SystemComponent]
SUPPRIMÉ Clé: HKCU\SOFTWARE\App Host Service [App Host Service]
ABSENT Clé: HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\App Host Service
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 [WinRAR321]
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\CLSID\B41DB860-8EE4-11D2-9906-E49FADC173CA}
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 [WinRAR326]
SUPPRIMÉ Valeur  FirewallRules: {F98A5B1D-F70F-4AAA-AF79-0DCE765D9C09} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur  FirewallRules: {F15414ED-293C-47A9-968C-9030302A7BFA} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur  FirewallRules: {31B678F0-AC0E-427A-9066-0CDD9C56847F} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur  FirewallRules: {FA739251-85CD-4573-81CE-5862FF722282} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur  FirewallRules: {60A01EA1-B290-4426-B756-91C993F59ED1} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
ABSENT Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
ABSENT Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
ABSENT Clé: HKCU\SOFTWARE\BitTorrent
ABSENT Clé: HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\BitTorrent
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{FEF71B07-C9E8-4097-8E78-4F443A493353}]
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{6A0883FB-D340-492E-B532-CC54D042AD90}]
ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\IntelSSTSvc
REMPLACÉ Donnée  TCPIP: 192.168.1.1 192.168.1.1  [HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{e28d23ed-5315-42ae-8da9-97efc87308cc}\\DhcpNameServer]
REMPLACÉ Donnée  TCPIP: 192.168.1.1 192.168.1.1  [HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{e8439c41-25c5-4a18-856b-d412ad456b99}\\DhcpNameServer]
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{1958267D-1DD2-4A5F-94C5-A34CF05CA588}]
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{94549914-8F10-4F79-828D-8AA22445F7F7}]
ABSENT Clé Product: HKLM64\Software\Classes\Installer\Products\BF01119B4B33B864092CD4E5A83EAF1E
ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\JavaSoft
ABSENT Clé: HKCU\SOFTWARE\JavaSoft
ABSENT Clé: HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\JavaSoft
ABSENT Clé Product: HKLM64\Software\Classes\Installer\Products\4EA42A62D9304AC4784BF2238110180F
ABSENT Clé Product: HKLM64\Software\Classes\Installer\Products\F60730A4A66673047777F5728467D401
SUPPRIMÉ Clé: HKLM\SOFTWARE\WOW6432Node\AVAST Software [AVAST Software]
SUPPRIMÉ Clé: HKCU\SOFTWARE\Browser Cleanup [Browser Cleanup]
SUPPRIMÉ Clé: HKU\.DEFAULT\SOFTWARE\Browser Cleanup [Browser Cleanup]
ABSENT Clé: HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Browser Cleanup
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{F98A5B1D-F70F-4AAA-AF79-0DCE765D9C09}]
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{F15414ED-293C-47A9-968C-9030302A7BFA}]
SUPPRIMÉ Clé: HKLM\SOFTWARE\WOW6432Node\Symantec [Symantec]
SUPPRIMÉ Clé: HKCU\SOFTWARE\Norton [Norton]
ABSENT Clé: HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Norton
SUPPRIMÉ Clé: HKCU\SOFTWARE\Chromium [Chromium]
ABSENT Clé: HKU\S-1-5-21-3611040453-387096441-847862599-1001\SOFTWARE\Chromium
ABSENT Clé: HKCU\SOFTWARE\App Host Service
ABSENT Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
ABSENT Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{31B678F0-AC0E-427A-9066-0CDD9C56847F}]
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{FA739251-85CD-4573-81CE-5862FF722282}]
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{60A01EA1-B290-4426-B756-91C993F59ED1}]
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\AVAST Software
ABSENT Clé: HKCU\SOFTWARE\Browser Cleanup
ABSENT Clé: HKU\.DEFAULT\SOFTWARE\Browser Cleanup
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\Symantec
ABSENT Clé: HKCU\SOFTWARE\Norton
ABSENT Clé: HKCU\SOFTWARE\Chromium
~ EmptyProxy: Aucune modification.


---\\  COMMANDE.  (8)
~ EmptyCSID: Dossiers CLSID vides supprimés  (0)
~ EmptyFlash: Dossier FlashPlayer vide.
~ EmptyTemp: Dossier Local temp partiellement vidé  (11)
~ EmptyTracing: Clés tracing supprimées (12)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (317)
~ EmptyTemp: Dossier Local temp partiellement vidé  (1)
~ EmptyTracing: Clés tracing supprimées (6)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (0)


---\\  NON TRAITÉ.  (4)
[MD5.5AB58C337AC65837FE404462AD6265AB] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe 
[MD5.DF5A2FF9B46C998C9697A17BBCA32EDD] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 
[MD5.7C3107B16BE552D2DEA7C68A37820DE5] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe 
FinScript ZHPFix

~ Le système a été redémarré.

***** ~ Fin de rapport terminé en 00h00mn57s