Rapport de ZHPFix 2014.8.3.6 par Nicolas Coolman, Update du 03/08/2014
Fichier d'export Registre : 
Run by aymannew at 10/09/2014 02:00:23 ă
High Elevated Privileges : OK
Windows XP Professional Service Pack 2 (Build 2600)

Recycle Bin emptied (:2mn  Ős)
Repair of browser shortcuts

========== Software ==========
REMOVES: Easy Wi-Fi

========== State services ==========
HWDEVICESERVICE.EXE Stopped
MBR Stopped

========== Registry keys ==========
REMOVES: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E3454E14-72BD-45D6-95D8-BB553FD583C6}]
REMOVES: HKCU\Software\Toggle
REMOVES: HKCU\Software\Smartbar
REMOVES: HKCU\Software\YourFileDownloader
REMOVES: HKLM\Software\Vittalia
REMOVES: HKLM\Software\YourFileDownloader
REMOVES: HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
REMOVES CLSID MPSK: {ebd11d50-9f05-11e3-8a04-0016d4ea0c06}
REMOVES CLSID MPSK: {1cec0e04-740a-122d-8a4f-0016d4ea0c06}
REMOVES CLSID MPSK: {4d299847-067b-11e3-8903-867415d5f08c}
REMOVES CLSID MPSK: {4d29984a-067b-11e3-8903-82ad8f748beb}
REMOVES CLSID MPSK: {7c3811e4-0e7b-11e3-891e-0016d4ea0c06}
REMOVES CLSID MPSK: {964fef36-0767-11e3-8908-0008c9b11aa2}
REMOVES CLSID MPSK: {9a57dff4-a1e4-11e3-8a05-0016d4ea0c06}
REMOVES CLSID MPSK: {9a57dff7-a1e4-11e3-8a05-0016d4ea0c06}
REMOVES CLSID MPSK: {b26b8e32-a4d8-11e3-8a0f-0016d4ea0c06}
REMOVES CLSID MPSK: {e86edd9f-0db9-11e3-891a-0016d4ea0c06}
REMOVES CLSID MPSK: {eb2aaf17-759d-122d-8a5b-0016d4ea0c06}
REMOVES CLSID MPSK: {fdf53110-7422-122d-8a51-0016d4ea0c06}
REMOVES: SearchScopes :{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
REMOVES: [HKLM\SOFTWARE\Classes\CLSID\{01E04581-4EEE-11D0-BFE9-00AA005B4383}]
REMOVES: [HKLM\SOFTWARE\Classes\CLSID\{0E5CBF21-D15F-11D0-8301-00AA005B4383}]
REMOVES: Service: tepsrv

========== Registry values ==========
REMOVES MWPS Value: undockwithoutlogon
REMOVES RunValue: RDO89
REMOVES: Toolbar: {01E04581-4EEE-11D0-BFE9-00AA005B4383}
REMOVES: Toolbar: {0E5CBF21-D15F-11D0-8301-00AA005B4383}
No value present in the exception of registry key (FirewallRaz)
ProxyFix : Proxy configuration successfully removed
REMOVES ProxyServer Value
REMOVES ProxyEnable Value
REMOVES EnableHttp1_1 Value
REMOVES ProxyHttp1.1 Value
REMOVES ProxyOverride Value

========== Elements of the registry data ==========
REMOVES TCPIP: NameServer = 
REMOVES TCPIP: DhcpNameServer = 196.29.164.30 172.19.12.11
REMOVES: R1 Search Page = http://www.sweet-page.com/web/?type=ds&ts=1404983986&from=cor&uid=ST980812ASX_5LY37PEP&q={searchTerms}
REMOVES: StartMenuInternet: C:\Documents and Settings\aymannew\Local Settings\Application Data\Google\Chrome\Application\chrome.exe 
REMOVES: R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy
REMOVES: R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1
REMOVES Desktop Component: My Current Home Page
REMOVES O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\aymannew\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
REMOVES O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\aymannew\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

========== Folders ==========
REMOVES: C:\Program Files\Internet Audio Mix
REMOVES: C:\Program Files\RBC Audio
REMOVES: C:\Program Files\YourFileDownloader Updater
REMOVES: C:\Documents and Settings\All Users\Application Data\pI3_lic_file
REMOVES: C:\Documents and Settings\aymannew\Application Data\RDO89
REMOVES: C:\Program Files\SiteLookup
REMOVES: C:\Program Files\YourFileDownloader
REMOVES: C:\Documents and Settings\aymannew\Application Data\iSafe
REMOVES: C:\Documents and Settings\aymannew\Application Data\sweet-page
Deletes temporary Windows (97)
REMOVES Flash Cookies (8)

========== Files ==========
REMOVES: c:\windows\system32\oestore.dll
REMOVES: c:\windows\easydrv5_20140905_170709.ed5log
REMOVES: c:\windows\easydrv5_20140905_170955.ed5log
REMOVES: c:\windows\easydrv5_20140908_075525.ed5log
REMOVES: c:\windows\system32\drivers\ncgen.sys
REMOVES: c:\windows\prefetch\yet_another_cleaner_sk.exe-2a4cc537.pf
REMOVES: c:\windows\modemlog_hdaudio soft data fax modem with smartcp.txt
REMOVES Reboot: f:\autorun.exe
REMOVES: c:\documents and settings\aymannew\local settings\application data\microsoft\wallpaper1.bmp
REMOVES: c:\windows\system32\sprestrt.exe
REMOVES: c:\program files\acesoft\tracks eraser pro\tepsrv.exe
Deletes temporary Windows (499) (226,962,958 octets)
REMOVES Flash Cookies (0) (0 octets)

========== Scheduled task ==========
REMOVES: At1

========== System restore ==========
The system successfully created restore point

========== Other ==========
NON-TREATY [MD5.0ADD38B9EC46282AA28A116583CB1BC5] - (.No owner - DCSHOST.) -- C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe   [323584] [PID.1444]
NON-TREATY Written by ad13,http://ad13.geekstog
NON-TREATY Windows Genuine Advantage : KO


========== Summary ==========
23 : Registry keys
11 : Registry values
9 : Elements of the registry data
11 : Folders
13 : Files
1 : Software
2 : State services
1 : Scheduled task
1 : System restore
3 : Other


End of clean in :4mn  Ős

========== Path to file report ==========
C:\Documents and Settings\aymannew\Application Data\ZHP\ZHPFix[R1].txt - 04/01/1980 04:09:01 Ő [2511]
C:\Documents and Settings\aymannew\Application Data\ZHP\ZHPFix[R2].txt - 10/09/2014 02:01:45 ă [5432]