RÃ©sultats de correction de Farbar Recovery Scan Tool (x64) Version: 17.03.2019
ExÃ©cutÃ© par my (21-03-2019 18:47:10) Run:5
ExÃ©cutÃ© depuis C:\Users\my\Desktop
Profils chargÃ©s: my (Profils disponibles: my & DefaultAppPool)
Mode d'amorÃ§age: Normal
==============================================

fixlist contenu:
*****************
Start
CreateRestorePoint:
CloseProcesses: 
HKU\S-1-5-21-947223558-577044925-3974102329-1000\...\Run: [DesktopSnowOK] => "C:\Users\my\Desktop\DesktopSnowOK\DesktopSnowOK.exe" -bg
CHR StartupUrls: Profile 2 -> "hxxps://www.google.fr/","hxxps://outlook.live.com/mail/inbox/id/AQMkADAwATM3ZmYAZS05MGQ5LTQ5NGQtMDACLTAwCgBGAAADtUwwkQ9ol0WGflerMgG3ZQcAJjXITBFVf0qohpmeDdgXFQAAAgEMAAAAJjXITBFVf0qohpmeDdgXFQACP7wdZwAAAA%3D%3D","hxxps://www.facebook.com/","hxxps://mail.yahoo.com/d/folders/1"
CHR HKU\S-1-5-21-947223558-577044925-3974102329-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx
2019-03-17 15:57 - 2019-03-17 15:57 - 002434048 _____ (Farbar) C:\Users\my\Downloads\FRST64 (1).exe
2019-03-17 15:54 - 2019-03-17 15:54 - 002434048 _____ (Farbar) C:\Users\my\Documents\FRST64.exe
2019-03-17 15:51 - 2019-03-17 15:52 - 002434048 _____ (Farbar) C:\Users\my\Downloads\FRST64.exe
2019-03-01 06:35 - 2019-03-01 06:35 - 000070390 _____ C:\ProgramData\hva.1551418387.bdinstall.bin
2019-03-01 06:35 - 2019-03-01 06:35 - 000003384 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_6F2980EE6088481484E6D8285516CD07
2019-03-01 06:35 - 2019-03-01 06:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner
2019-03-01 06:34 - 2019-03-01 06:35 - 000000000 ____D C:\Program Files\Bitdefender Home Scanner
2019-03-01 06:34 - 2019-03-01 06:34 - 000040305 _____ C:\ProgramData\hva.uninstall.1551418400.bdinstall.bin
2019-02-20 06:29 - 2019-02-20 06:29 - 000072776 _____ C:\ProgramData\agent.update.1550640551.bdinstall.v2.bin
2019-02-19 18:31 - 2019-02-19 18:31 - 000000000 ____D C:\ProgramData\Bitdefender Home Scanner
2019-02-19 18:29 - 2019-02-20 06:29 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-02-19 18:29 - 2019-02-19 18:29 - 000105048 _____ C:\ProgramData\agent.1550597390.bdinstall.v2.bin
2019-02-19 18:29 - 2019-02-19 18:29 - 000000000 ____D C:\ProgramData\Bitdefender Agent
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner\Bitdefender Home Scanner.lnk -> C:\Program Files\Bitdefender Home Scanner\hvaui.exe (Bitdefender)
Task: {47CD67F4-A74E-4D9A-95D0-968698498940} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {6E417EF9-F7BF-4C5D-BCF1-6A99D0C3801C} - System32\Tasks\Open URL by RoboForm => C:\WINDOWS\system32\rundll32.exe url.dll,FileProtocolHandler "hxxps://www.roboform.com/uninstall.html?aaa=KICMKJNMLJLJNMLJKMOJCNLMPMGMJJCNLMKMOMLMCNGMJMKMOJCNGMOMKJPMHMKMKJHMLMGMKJJJJNJICMHMCNKMCNLMFMOMOMCNNMHMKMCNOMIMOMMMLMFMPMCNPMCNOMIMOMMMLMCNNMJNPICMPMFMFMPMJNHICMEKMICNJJCKJNBJCMCJGIJNKJCMJNNICMJNDJCMJJNIJNMJCMPMFMPMFMPMJNFICMN (l'Ã©lÃ©ment de donnÃ©es a 26 caractÃ¨res en plus).
Task: {FF43AA2E-742F-4D68-AF28-5E7CF35348F1} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [UDP Query User{B35FAA83-9AF4-47C3-9844-B81061466C08}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe Pas de fichier
FirewallRules: [TCP Query User{4C9B8BE1-045A-471A-8F05-AA0FCB2D4263}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe Pas de fichier
FirewallRules: [{4CC9B260-A618-47F2-8E48-11DEC84CE40B}] => (Allow) C:\Program Files\Bitdefender Home Scanner\hvasrv.exe Pas de fichier
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
CMD: netsh winsock reset
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f
Reg: REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f
Reg: REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f
C:\Users\my\Desktop\DesktopSnowOK
C:\Program Files\AVAST Software
C:\Program Files\Common Files\AVAST Software
cmd: type C:\Users\my\Documents\e-anim-edidget-beta\!run.bat
EmptyTemp:
End

*****************

Le Point de restauration a Ã©tÃ© crÃ©Ã© avec succÃ¨s.
Processus fermÃ© avec succÃ¨s.
"HKU\S-1-5-21-947223558-577044925-3974102329-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DesktopSnowOK" => non trouvÃ©(e)
"Chrome StartupUrls" => non trouvÃ©(e)
HKU\S-1-5-21-947223558-577044925-3974102329-1000\SOFTWARE\Google\Chrome\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo => non trouvÃ©(e)
"C:\Users\my\Downloads\FRST64 (1).exe" => non trouvÃ©(e)
"C:\Users\my\Documents\FRST64.exe" => non trouvÃ©(e)
"C:\Users\my\Downloads\FRST64.exe" => non trouvÃ©(e)
"C:\ProgramData\hva.1551418387.bdinstall.bin" => non trouvÃ©(e)
"C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_6F2980EE6088481484E6D8285516CD07" => non trouvÃ©(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner" => non trouvÃ©(e)
"C:\Program Files\Bitdefender Home Scanner" => non trouvÃ©(e)
"C:\ProgramData\hva.uninstall.1551418400.bdinstall.bin" => non trouvÃ©(e)
"C:\ProgramData\agent.update.1550640551.bdinstall.v2.bin" => non trouvÃ©(e)
"C:\ProgramData\Bitdefender Home Scanner" => non trouvÃ©(e)
"C:\Program Files\Bitdefender Agent" => non trouvÃ©(e)
"C:\ProgramData\agent.1550597390.bdinstall.v2.bin" => non trouvÃ©(e)
"C:\ProgramData\Bitdefender Agent" => non trouvÃ©(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Home Scanner\Bitdefender Home Scanner.lnk" => non trouvÃ©(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47CD67F4-A74E-4D9A-95D0-968698498940}" => non trouvÃ©(e)
"C:\WINDOWS\System32\Tasks\Avast Software\Overseer" => non trouvÃ©(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => non trouvÃ©(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E417EF9-F7BF-4C5D-BCF1-6A99D0C3801C}" => non trouvÃ©(e)
"C:\WINDOWS\System32\Tasks\Open URL by RoboForm" => non trouvÃ©(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Open URL by RoboForm" => non trouvÃ©(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF43AA2E-742F-4D68-AF28-5E7CF35348F1}" => non trouvÃ©(e)
"C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => non trouvÃ©(e)
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => non trouvÃ©(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B35FAA83-9AF4-47C3-9844-B81061466C08}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe" => non trouvÃ©(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4C9B8BE1-045A-471A-8F05-AA0FCB2D4263}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe" => non trouvÃ©(e)
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4CC9B260-A618-47F2-8E48-11DEC84CE40B}" => non trouvÃ©(e)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) => Erreur: Pas de correction automatique trouvÃ©e pour cet Ã©lÃ©ment.

========= netsh winsock reset =========


Le catalogue Winsock a âtâ râinitialisâ correctement.
Vous devez redâmarrer l'ordinateur afin de finaliser la râinitialisation.


========= Fin de CMD: =========


========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V Enable /T REG_SZ /D n /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction" /V OptimizeComplete /T REG_SZ /D no /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /V PowerdownAfterShutdown /T REG_SZ /D 1 /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management" /V ClearPageFileAtShutdown /T REG_DWORD /D 0 /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V MenuShowDelay /T REG_SZ /D 400 /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V WaitToKillAppTimeout /T REG_SZ /D 1200 /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V HungAppTimeout /T REG_SZ /D 1200 /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_CURRENT_USER\Control Panel\Desktop" /V AutoEndTasks /T REG_SZ /D 1 /f =========

L'opâration a râussi.


========= Fin de Reg: =========


========= REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control" /V WaitToKillServiceTimeout /T REG_SZ /D 1200 /f =========

L'opâration a râussi.


========= Fin de Reg: =========

"C:\Users\my\Desktop\DesktopSnowOK" => non trouvÃ©(e)
"C:\Program Files\AVAST Software" => non trouvÃ©(e)
"C:\Program Files\Common Files\AVAST Software" => non trouvÃ©(e)

========= type C:\Users\my\Documents\e-anim-edidget-beta\!run.bat =========

@echo off

rem set varinst = (`type %cd%\doc\install.txt`)

set /p JRE= < jre.txt
 
if exist "eanim.ini" goto labelexist
echo .
echo .
echo .
echo .
echo Preparation de l'installation du programme : Edidget.
echo il reunit le programme d'animation E-Anim 
echo           et la construction de gadgets
echo .
echo L'ecran va rester noir durant quelques secondes. 
echo Je vais devoir vous faire patienter...
icacls "%cd%" /GRANT Utilisateurs:(OI)(CI)(F)

rem
rem --------------------------------------------------------
rem                    1er demarrage 
rem --------------------------------------------------------
rem
echo .
echo Demarrage de E-anim
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun
del "run_ok.txt"
IF Exist "eanim.ini" goto fin2
goto errormessage
rem
rem --------------------------------------------------------
rem                   2eme demarrage 
rem --------------------------------------------------------
:labelexist

:javaeanim
IF Exist "run_ok.txt" goto runok
IF exist "runTest.txt" goto runtest
rem
rem cree le fichier de test au 1er passage du 2eme demarrage
echo "e-anim en test" >runtest.txt
goto runok
:runtest
IF Exist "run_ok.txt" goto runok
rem
echo 2eme passage du 2eme demarrage le fichier run_ok n'existe pas -> bascule en java version 8
pause
copy "jre_win.txt" "jre.txt"
set /p JRE= < jre.txt
rem ... et l'affichage du play se fera dans le navigateur
set /p eanimini= < eanim.ini
set eanimini=%eanimini:play_in_frame=play_in_navigator%
echo %eanimini% > eanim.ini
:runok

rem start /B  
%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3

%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3

%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3

%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3

%JRE% -Xms64m -Xmx1024m -classpath "";jna_WindowUtils.jar;jna-3.2.4.jar;swt.jar -Djava.library.path=PhAnim/Flash; EanimRun %1 %2
if Exist "start_ok.txt" goto fin3
del "run_ok.txt"
:fin3
del "start_ok.txt"
IF Exist "eanim.ini" goto fin2
goto errormessage
rem
rem --------------------------------------------------------
rem                   Message d'erreur 
rem --------------------------------------------------------
:errormessage
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .
echo .     ******************************************************************
echo .     *                                                                *
echo .     *           IMPORTANT : E-Anim fonctionne avec Java.             *
echo .     *                                                                *
echo .     ******************************************************************
echo .
echo .
echo .     ******************************************************************
echo .     *                                                                *
echo .     *          Cliquez sur une touche pour installer Java            *
echo .     *                                                                *
echo .     ******************************************************************
echo .
echo .
echo .
echo .
pause
explorer "http://www.java.com/fr/download/"
:fin2

========= Fin de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14742490 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 43426651 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 6794 B
NetworkService => 0 B
my => 504043 B
DefaultAppPool => 0 B

RecycleBin => 3750988204 B
EmptyTemp: => 3.6 GB donnÃ©es temporaires supprimÃ©es.

================================


Le systÃ¨me a dÃ» redÃ©marrer.

==== Fin de Fixlog 18:49:53 ====