Rapport de ZHPFix 2013.10.11.8 par Nicolas Coolman, Update du 11/10/2013
Fichier d'export Registre : 
Run by bertrand at 14/10/2013 09:58:50
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Recycle Bin emptied
Repair of browser shortcuts

========== Software ==========
ABSENT Uninstall Process: c:\program files (x86)\bitlord 2\bitlord-uninst.exe

========== Process memory ==========
REMOVES: Memory Process: C:\Users\bertrand\AppData\Local\Temp\Quarantine.exe
REMOVES: Memory Process: C:\Users\bertrand\AppData\Local\Facebook\Update\FacebookUpdate.exe

========== Registry keys ==========
REMOVES Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BitLord]
REMOVES:*  StartupReg: NTRedirect
REMOVES:* HKLM\Software\Classes\Interface\{db885111-f39f-4d88-9ee5-c88460b6df7b}
REMOVES: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211771193}
REMOVES: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31111111-1111-1111-1111-110211771193}
REMOVES:*  StartupReg: Cracked Steam Service
REMOVES CLSID MPSK: {808d376a-1159-11e2-b005-ac162d5de540}
REMOVES:* HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
REMOVES: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssSrv
REMOVES: HKCU\Software\Symantec
REMOVES: HKLM\Software\Wow6432Node\Symantec

========== Registry values ==========
REMOVES: {9858B37F-79C4-4E0E-A64E-760C713739BB}
REMOVES: {34255E90-B16A-410A-A992-1D9D8ADCF319}
REMOVES: {7C7E816B-B381-487A-AE56-29713CB7CB8D}
REMOVES: {864B264A-BD67-491F-9718-7C8734799DE7}
REMOVES: {B2C65D78-D423-4707-B5B5-2D3F05F47D49}
REMOVES: {3C8B0A53-3A2D-4D3B-B6C2-DE7B23313B0D}
REMOVES: {B1BF4B0D-49C4-44A6-8625-796D3B3E354E}
REMOVES: TCP Query User{132F3B55-77DD-46A9-A66E-F3029460A573}C:\users\bertrand\appdata\local\temp\rar$ex27.032\assassin's creed brotherhood\acbsp.exe
REMOVES: UDP Query User{0B9E73B3-C1B1-4D33-A0D3-DD8E3B552338}C:\users\bertrand\appdata\local\temp\rar$ex27.032\assassin's creed brotherhood\acbsp.exe
REMOVES: {E0278113-1653-496C-B874-2C872334EB49}
REMOVES: {F87EEF58-5A2D-449C-8F6C-5DDCD25277B3}
REMOVES: {1C45AF46-6738-4473-B4DB-38A452AB626D}
ABSENT value Standard Profile: FirewallRaz : 
ABSENT value Domain Profile: FirewallRaz : 
REMOVES: FirewallRaz (Domain) : {B8D7BC81-6DA3-434F-9AE6-BB4C2C694C1C}
REMOVES: FirewallRaz (Domain) : NetPres-In-TCP-NoScope
REMOVES: FirewallRaz (Domain) : NetPres-Out-TCP-NoScope
REMOVES: FirewallRaz (None) : NetPres-WSD-In-UDP
REMOVES: FirewallRaz (None) : NetPres-WSD-Out-UDP
REMOVES: FirewallRaz (Public) : NetPres-In-TCP
REMOVES: FirewallRaz (Public) : NetPres-Out-TCP
REMOVES: FirewallRaz (Private) : {EE983AEC-D3D1-4F07-A1EB-AC43D6396059}
REMOVES: FirewallRaz (Private) : {6724B096-0F2A-41E8-8AF6-9139B6F61D81}
REMOVES: FirewallRaz (Private) : {16767F38-0C02-442A-BCC4-347D61FACFD5}
REMOVES: FirewallRaz (Private) : {2E0C6C95-D085-4C04-942F-34FF4C92231F}
REMOVES: FirewallRaz (Private) : TCP Query User{E9E29719-4AB7-4830-BE2D-771CC4284F00}C:\users\bertrand\appdata\local\temp\rar$ex64.032\assassin's creed brotherhood\acbsp.exe
REMOVES: FirewallRaz (Private) : UDP Query User{2A5B6D35-51B3-47B0-A395-7263BDF580A5}C:\users\bertrand\appdata\local\temp\rar$ex64.032\assassin's creed brotherhood\acbsp.exe
REMOVES: FirewallRaz (None) : {71862E49-28DE-4247-BC05-E2705F32CA61}
REMOVES: FirewallRaz (None) : {F5E6CCB4-D83C-406B-967E-B9A2A8877E4C}
REMOVES: FirewallRaz (None) : {36DE3433-A7F4-4F08-A9AC-4C78A0D265BB}
REMOVES: FirewallRaz (None) : {6C3A3E7B-3FE0-465E-A857-2C4C87734490}
REMOVES: FirewallRaz (None) : {28066C0A-C0D8-4EB0-BFAC-91335D099C2B}
REMOVES: FirewallRaz (None) : {53578C19-C63C-4338-B49F-B71BEEABAE94}
REMOVES: FirewallRaz (Private) : {A3C190AA-561B-415E-81B8-018A7E7F672E}
REMOVES: FirewallRaz (Private) : {FEF31581-E8AC-486F-8B54-4754A1164CC9}
REMOVES: FirewallRaz (None) : {9466ED93-7C8C-419A-9CBB-8BB856558F94}
REMOVES: FirewallRaz (None) : {DC2A475F-6B54-4F92-A8B8-8F25243531E0}
REMOVES: FirewallRaz (None) : {F35BF724-9A8E-4129-8B61-BCC6F526F172}
REMOVES: FirewallRaz (None) : {903F73FC-5A6E-4675-8F2C-6709D084DF0E}
REMOVES: FirewallRaz (Private) : {2BE795F0-3FA0-4073-A06D-EDA73DC2051F}
REMOVES: FirewallRaz (Private) : {EB572691-35AA-4B37-8750-E16701137204}
REMOVES: FirewallRaz (Private) : {77BBF850-4008-4550-BEF4-C814E878DD56}
REMOVES: FirewallRaz (Private) : {7C33DEA1-14CE-4F53-8758-D89BC439E407}
REMOVES: FirewallRaz (None) : {26F74085-DF96-4F8C-9DEB-DF9F42255897}
REMOVES: FirewallRaz (None) : {83D685AA-96BF-4BB6-B3BB-C4A5229CD48C}
REMOVES: FirewallRaz (None) : {AAB66AE3-7C9C-4DA1-ACFD-BF222CD0AFBF}
REMOVES: FirewallRaz (None) : {A889C48F-26B1-4B34-9C8A-1A31F3F8DD0E}
REMOVES: FirewallRaz (None) : {C7A40817-D9AD-4B36-B201-7A35F4CE6508}
REMOVES: FirewallRaz (None) : {C484B0A5-CDD7-4287-81C8-B9F41A77CAF5}
REMOVES: FirewallRaz (None) : {BFACFFBD-187B-4D3F-BAD1-3288F6DF146A}
REMOVES: FirewallRaz (None) : {CBA89A3E-0CCB-4A88-A33D-99D3E8F52A80}
REMOVES: FirewallRaz (None) : {4D58C6E4-68AF-42AE-A60C-67A2C1C0B958}
REMOVES: FirewallRaz (None) : {3B00E187-288D-4786-B360-75E48166E8DB}
REMOVES: FirewallRaz (None) : {CE16C3E6-AAA1-4DE0-BABB-B85DAD7D16DA}
REMOVES: FirewallRaz (None) : {5C7DEF05-79C6-4C48-8A9F-C73BF8AA77FB}
REMOVES: FirewallRaz (None) : {F3E132D3-5441-405C-9057-61EFF20866EB}
REMOVES: FirewallRaz (None) : {98607775-081C-4C18-B523-3220E3CA205D}
REMOVES: FirewallRaz (None) : {3C7F4820-23DD-4759-9F4F-31902CFB8629}
REMOVES: FirewallRaz (None) : {00FAF6E7-35FC-4E17-A2C3-3CDD9FB74466}
REMOVES: FirewallRaz (None) : {C818D459-5F3D-4A0E-B6E4-06109AF3F57A}
REMOVES: FirewallRaz (None) : {F05BB7AB-8080-4FE6-96DD-B75C1A1F19BC}
REMOVES: FirewallRaz (None) : {C4D1AFE9-A11B-4CDA-8FDB-A5E8211E0B06}
REMOVES: FirewallRaz (None) : {661DD5EB-B151-4009-9595-6277897EE0EB}
REMOVES: FirewallRaz (None) : {646781FF-6158-43FB-8F80-D89BAD585B1A}
REMOVES: FirewallRaz (None) : {EE331D2E-98B9-4C07-BC02-F61CBF7064E6}
REMOVES: FirewallRaz (None) : {14C517DF-3DC4-4F6B-BFD4-A9537E256664}
REMOVES: FirewallRaz (None) : {08D903F2-AA3C-4B67-871C-D5553E1D2EE2}
REMOVES: FirewallRaz (None) : {204CFC2B-0B3B-4108-B29D-911377E70FD5}
REMOVES: FirewallRaz (None) : {234175A3-7706-4CB7-8533-6A9366199EAF}
REMOVES: FirewallRaz (None) : {C3D4291B-8121-4C86-938B-4EE6E86934BE}
REMOVES: FirewallRaz (None) : {4974573A-D3BC-4BA2-8289-C91EF24592E3}
REMOVES: FirewallRaz (None) : {BB57D50C-0115-4F6F-B166-9EBCAC243025}
REMOVES: FirewallRaz (None) : {FC8B7136-AFF5-451D-83AB-5EDBD11FE87F}
REMOVES: FirewallRaz (None) : {42E50006-0FD9-4F06-924B-4E2F8D3C4469}
REMOVES: FirewallRaz (None) : {0950837F-82A6-43B6-8D5C-13A6A11887FE}
REMOVES: FirewallRaz (None) : {A3FA96D6-4EFA-43BD-9CEC-3E7EBE321C95}
REMOVES: FirewallRaz (None) : {5FEFB418-7C18-4664-9352-48588ED845C7}
REMOVES: FirewallRaz (None) : {7B1626DC-7FAB-4D3D-B19E-5564E5AC6217}
REMOVES: FirewallRaz (None) : {3A9765AB-36B3-44BA-9C95-5CD51D999828}
REMOVES: FirewallRaz (None) : {B28ED1EA-9ED0-4B22-8AD0-2988E65CC57D}
REMOVES: FirewallRaz (None) : {72867BDD-CBED-4B0C-AA29-2D01A2450178}
REMOVES: FirewallRaz (None) : {422595D2-91CC-46AE-946E-9BC4734E4193}
REMOVES: FirewallRaz (None) : {A3DDD52B-B802-4842-9139-24945D9AA1A7}
REMOVES: FirewallRaz (None) : {23C745D5-92C9-4741-8D62-1AB22BD2E4AE}
REMOVES: FirewallRaz (None) : {EE98717D-98E2-41BC-BD26-81FB1D49933B}
REMOVES: FirewallRaz (None) : {B861ACBD-859A-462A-8CBB-8FDADE558AF1}
REMOVES: FirewallRaz (None) : {9DEF58CC-AB47-42DE-8C39-09FBF3CF955E}
REMOVES: FirewallRaz (None) : {FA7C2EA4-6E81-415D-8850-A21E93E11B5F}
REMOVES: FirewallRaz (None) : {5B2AF4D4-20AA-4E18-944C-BA59BFEAC273}
REMOVES: FirewallRaz (None) : {2B1BA7A5-080F-45D4-BCE6-EE4F5E32C28C}
REMOVES: FirewallRaz (None) : {EEE5404E-4AF6-417F-843D-C90D1F2CA950}
REMOVES: FirewallRaz (None) : {0B3A59ED-340D-44F3-A993-EB0B5D88814A}
REMOVES: FirewallRaz (None) : {991ED603-0004-4DF8-8B1C-54FC53611EC7}
REMOVES: FirewallRaz (None) : {9C9B2C6E-DF3C-48FB-B7CE-1E9AACC753C4}
REMOVES: FirewallRaz (None) : {DE217339-F210-42F3-B1A8-811EFE4089F1}
REMOVES: FirewallRaz (None) : {726F3171-C703-4FF0-87AB-76A8D663F2D8}
REMOVES: FirewallRaz (None) : {99639B6B-E752-4D28-8074-142EADFCC53F}
REMOVES: FirewallRaz (None) : {7DE319BB-3B29-4763-85A5-CA93DB285E5B}
REMOVES: FirewallRaz (None) : {388850A0-3700-4367-A896-627FBEDC1314}
REMOVES: FirewallRaz (None) : {6559B2F1-B72C-4BBF-9D22-E6489BA1FF8D}
REMOVES: FirewallRaz (None) : {2F1C3224-4D5B-4E1B-AF34-EBC992909E49}
REMOVES: FirewallRaz (None) : {D27D7992-0087-4EDC-8CEF-67632B30A494}
REMOVES: FirewallRaz (None) : {7F30E3F4-BEF1-4652-8E3B-0499999213D4}
REMOVES: FirewallRaz (None) : {B34018F2-BAEF-4BA5-B997-2DF303191CEC}
REMOVES: FirewallRaz (None) : {07911567-E4AF-4CDF-97C6-509A7EB403FB}
REMOVES: FirewallRaz (None) : {8C8A994B-9410-4CF4-8503-3BF6B665BF8C}
REMOVES: FirewallRaz (None) : {7BE5CBA8-742A-4676-A2A0-9B31242F62F1}
REMOVES: FirewallRaz (None) : {2C0316DF-BD98-4D5B-A275-5FF4CD21654E}
REMOVES: FirewallRaz (None) : {45272AE3-A9CB-4D59-AB9E-71302E280478}
REMOVES: FirewallRaz (None) : {A5E0DD03-16DA-4ED9-81A5-140D5EC43E89}
REMOVES: FirewallRaz (None) : {599ABF58-9509-402B-BC64-7EF5A84C21B8}
REMOVES: FirewallRaz (None) : {5B14DA83-8FB4-499E-B753-ACC86311668C}
REMOVES: FirewallRaz (None) : {CF6D9CC3-5333-4682-B668-70A983478141}
REMOVES: FirewallRaz (None) : {E2DB4804-6FF6-48A9-8B97-CDD7474AA3AD}
REMOVES: FirewallRaz (None) : {F51BF38A-BCEE-41BA-9A52-69B39C5BEE5A}
REMOVES: FirewallRaz (None) : {A0BBDB94-631B-4CE6-9F7F-C91FBB4CFFE8}
REMOVES: FirewallRaz (None) : {3590279A-E320-406C-BEA3-90A3D244381C}
REMOVES: FirewallRaz (None) : {14987D28-1AC7-4801-82CD-B56C14C2041B}
REMOVES: FirewallRaz (None) : {64FDDE9D-5983-4FE2-BB22-37427EBB9C32}
REMOVES: FirewallRaz (None) : {E612863B-5494-4EE0-B351-43655A46B404}
REMOVES: FirewallRaz (None) : {C07DC462-00FB-4179-AD4B-F80B5DE8EF0F}
REMOVES: FirewallRaz (None) : {C3E93041-EA96-483D-A1EA-DE8F2418346C}
REMOVES: FirewallRaz (None) : {74B2F63A-9EEC-48B7-A92D-BFA0B3AFF34F}
REMOVES: FirewallRaz (None) : {A9DBFEF1-E2B6-4E78-B8E9-2E2427FECE8E}
REMOVES: FirewallRaz (None) : {365E9FE2-BD92-4E49-AA6F-20A9EB15F935}
REMOVES: FirewallRaz (None) : {CE423650-5AD7-4362-AC89-76FB50CB4D15}
REMOVES: FirewallRaz (None) : {4600E283-0122-4F74-956E-037731FEC82B}
REMOVES: FirewallRaz (None) : {E86D66F2-591A-4A7E-936F-BD1FD06B8BE7}
REMOVES: FirewallRaz (None) : {A20CF8F8-1BF1-4A89-B003-B869B5551F11}
REMOVES: FirewallRaz (None) : {09DED43D-F979-43FC-9177-21F65D5844C2}
REMOVES: FirewallRaz (None) : {C2229AE6-20F1-4808-99EF-6C15D4D6434C}
REMOVES: FirewallRaz (None) : {DEFA097D-1C58-4749-8131-A5F09BCF2F56}
REMOVES: FirewallRaz (None) : {389AA702-4675-4696-B2FC-451EC1F76DE2}
REMOVES: FirewallRaz (None) : {B1861807-90F0-4256-B795-D483E20F1C06}
REMOVES: FirewallRaz (None) : {0059466F-84F0-461D-A637-D5C648C2D9C5}
REMOVES: FirewallRaz (None) : {91D745E8-51B8-453D-873C-6CF2EAA1C208}
REMOVES: FirewallRaz (None) : {F0B84A3D-67DD-40E3-8C23-F9A586075026}
REMOVES: FirewallRaz (None) : {E05E7967-FC66-4F2F-ACF6-9F596CC714D6}
REMOVES: FirewallRaz (None) : {0F0C133C-BC8D-4CA1-BC62-E1DD592A7A84}
REMOVES: FirewallRaz (None) : {DDDEE03F-1F76-40AC-A495-BA09C4205291}
REMOVES: FirewallRaz (None) : {D948090E-4D98-433A-8EE4-1DB7AD7E0BA7}
REMOVES: FirewallRaz (None) : {DFE1398F-BB60-42F2-93B3-951D2D527265}
REMOVES: FirewallRaz (None) : {C784EEBC-4BE2-4146-AD6D-5EA6A3E59AFB}
REMOVES: FirewallRaz (None) : {4BA35040-C759-4335-A181-483AE782E2F0}
REMOVES: FirewallRaz (None) : {14EE1D21-1BCC-417B-96C7-00A4F5E46E4D}
REMOVES: FirewallRaz (None) : {434BFB14-51C9-421E-B0FC-777EC12D9F7E}
REMOVES: FirewallRaz (None) : {FB0C9034-CBCA-41A3-821D-D39174A39578}
REMOVES: FirewallRaz (None) : {841D543E-9175-49C9-8BD8-672FCA188F7D}
REMOVES: FirewallRaz (None) : {994BAE4A-4236-45F1-8644-84C9490827A4}
REMOVES: FirewallRaz (None) : {4C0DCBEB-5261-4247-8E79-C760F5B887A0}
REMOVES: FirewallRaz (None) : {1375B4C2-23BC-4D1A-9C35-F77DAA642F92}
REMOVES: FirewallRaz (None) : {CF9CBEA0-EBEB-4813-90C7-F782C00C8312}
REMOVES: FirewallRaz (None) : {3775E8E9-64B8-4B65-9A8C-BA4D6447C3C0}
REMOVES: FirewallRaz (None) : {CE80A63B-8112-4AB9-9733-C2E8A35D2365}
REMOVES: FirewallRaz (None) : {664EE83B-C992-4A9A-B56F-F6374FC3FB65}
REMOVES: FirewallRaz (None) : {D82F1E45-B74A-4E5B-8D34-DD8292D5D9D2}
REMOVES: FirewallRaz (None) : {4724C654-CFDF-44B9-9050-A39DA5DE7A9A}
REMOVES: FirewallRaz (Public) : {14C29A5A-2DFB-4959-BC6B-E3A5DBEFA6BB}
REMOVES: FirewallRaz (Public) : {C74D6FF0-821E-4199-8F7B-3F2A605DF3BC}
REMOVES: FirewallRaz (None) : {5B2B4322-80FD-493C-A2A2-23CF1EF86208}
REMOVES: FirewallRaz (None) : {0B60913C-807A-4664-B1BA-B39C335882BC}
REMOVES: FirewallRaz (None) : {45710793-E08C-49BB-AA74-80FEA97D8D5B}
REMOVES: FirewallRaz (None) : {9325008B-2067-45DA-B902-23DAA7B60E9D}
REMOVES: FirewallRaz (None) : {397740D5-8EE1-4459-9D30-9EFAD2DC1351}
REMOVES: FirewallRaz (None) : {8E72B6AC-C062-486C-9375-99BF77455EAE}
REMOVES: FirewallRaz (None) : {2C912730-21DB-46BF-BF40-5EED62014D65}
REMOVES: FirewallRaz (None) : {DE5E2ADC-15C0-4648-907C-8A7B80DBCD82}
REMOVES: FirewallRaz (None) : {195836C3-627D-438A-ABE7-1FE163DC487F}

========== Elements of the registry data ==========
REMOVES: R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride
REMOVES: R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy

========== Folders ==========
No folders empty CLSID Local user
Deletes temporary Windows

========== Files ==========
REMOVES: c:\users\bertrand\appdata\local\google\chrome\user data\default\preferences 
REMOVES: c:\users\bertrand\appdata\roaming\bitlord_log.txt 
REMOVES: c:\users\bertrand\appdata\local\temp\wmplog00.sqm 
REMOVES: C:\Users\bertrand\Desktop\Logiciel\Sony ACID Pro 7.0.641.Keygen__a06568\Sony ACID Pro 7.0.641.Keygen\Sony ACID Pro 7.0.641.Keygen.rar
REMOVES:*** c:\users\bertrand\desktop\logiciel\sony acid pro 7.0.641.keygen__a06568\sony acid pro 7.0.641.keygen\sony acid pro 7.0.641.keygen.rar
REMOVES: C:\Users\bertrand\Downloads\Keygen Acid Pro 7.0.rar
REMOVES:*** c:\users\bertrand\downloads\keygen acid pro 7.0.rar
REMOVES:*  c:\users\bertrand\appdata\local\temp\quarantine.exe
REMOVES: c:\users\public\desktop\start the detection.lnk 
REMOVES: c:\users\bertrand\appdata\roaming\microsoft\windows\start menu\programs\teamviewer 7.lnk 
REMOVES: c:\users\bertrand\desktop\teamviewer 7.lnk 
REMOVES: c:\windows\tasks\facebookupdatetaskusers-1-5-21-948805745-1492054858-3638506696-1001core.job 
REMOVES: c:\windows\tasks\facebookupdatetaskusers-1-5-21-948805745-1492054858-3638506696-1001ua.job 
REMOVES: c:\users\bertrand\appdata\local\facebook\update\facebookupdate.exe
REMOVES Flash Cookies
Deletes temporary Windows

========== Scheduled task ==========
REMOVES: {3F2B6B1A-B1F9-49A3-B393-68C23902A960}
REMOVES: FacebookUpdateTaskUserS-1-5-21-948805745-1492054858-3638506696-1001Core
REMOVES: FacebookUpdateTaskUserS-1-5-21-948805745-1492054858-3638506696-1001UA

========== System restore ==========
No System Restore Point created


========== Summary ==========
2 : Process memory
11 : Registry keys
168 : Registry values
2 : Elements of the registry data
2 : Folders
16 : Files
1 : Software
3 : Scheduled task
1 : System restore


End of clean in 00mn 51s

========== Path to file report ==========
C:\Users\bertrand\AppData\Roaming\ZHP\ZHPFix[R1].txt - 14/10/2013 09:58:59 [15559]