Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPFix 2015.10.19.9 par Nicolas Coolman, Update du 19/10/2015
Fichier d'export Registre :
Run by libya at 23/11/2016 02:49:16 AM
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Recycle Bin emptied (11mn AMs)
Prefetcher emptied
========== Registry keys ==========
REMOVES:* HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS
REMOVES: HKLM\SOFTWARE\Wow6432Node\Baidu
REMOVES: HKCU\SOFTWARE\Baidu
REMOVES: HKLM\SOFTWARE\Wow6432Node\Avira
========== Registry values ==========
ABSENT value Standard Profile: FirewallRaz :
ABSENT value Domain Profile: FirewallRaz :
REMOVES: FirewallRaz (Private) : TCP Query User{F4FF3028-6696-4A67-B3E8-89CFD7C6F121}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Private) : UDP Query User{6BA5E890-7845-4A03-A501-9FC4C99C2DD2}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Public) : TCP Query User{71F6A80C-E76F-472E-BC6E-A9C81FCB362D}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Public) : UDP Query User{DCB761DA-85DF-4449-BF1F-6CAC53C2EE09}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Private) : TCP Query User{6058C0A3-EFA1-4254-98E9-FEFFBDD9209E}J:\ÇáÚÇÈ\r.g. mechanics\blur\blur.exe
REMOVES: FirewallRaz (Private) : UDP Query User{1B1F7A7F-F87A-4FF7-BD43-4EA473B30C9C}J:\ÇáÚÇÈ\r.g. mechanics\blur\blur.exe
REMOVES: FirewallRaz (None) : {3E80D980-E46D-4E55-BAF1-B42BE954CE26}
REMOVES: FirewallRaz (None) : {2986C547-2176-494C-A187-1DFDDE729F6F}
REMOVES: FirewallRaz (None) : {3A603868-7123-4224-B0A8-6A2C96788918}
REMOVES: FirewallRaz (None) : {378824D0-4437-4B7F-94DE-CD5BBFE889FC}
REMOVES: FirewallRaz (None) : {8D3897CE-7E12-4837-AB77-0CFC066DAC92}
REMOVES: FirewallRaz (None) : {1465E0B1-8BCC-4273-A35F-7670DBAE20C0}
REMOVES: FirewallRaz (Private) : {20B2B713-01CB-4CA5-A1CB-25F7B55382DD}
REMOVES: FirewallRaz (Private) : {7B29F3F7-C485-4815-86AA-A30AAE35F038}
REMOVES: FirewallRaz (Public) : {6EEA8F12-2978-4FFB-88E8-76E70DE2FA64}
REMOVES: FirewallRaz (Public) : {670573ED-3117-4E56-97DB-B5DD99BC9E00}
REMOVES: FirewallRaz (Public) : {9DCA166A-EFA1-4DB8-A43B-6C43DD99DF9F}
REMOVES: FirewallRaz (Public) : {729C103C-CFE5-4320-BBAF-707E8B410177}
REMOVES: FirewallRaz (Public) : {34270811-3F9C-4121-8DEC-F756B4E5520F}
REMOVES: FirewallRaz (Public) : TCP Query User{4954AC18-15F1-4A82-9D59-CF492396BA4B}C:\users\libya\downloads\call.of.duty.black.ops.iii.hotfix-reloaded.www.gamestorrents.com\blackops3.exe
REMOVES: FirewallRaz (Public) : UDP Query User{11AD8515-D200-4C6E-9101-103F0F28E376}C:\users\libya\downloads\call.of.duty.black.ops.iii.hotfix-reloaded.www.gamestorrents.com\blackops3.exe
REMOVES: FirewallRaz (Public) : {CBAF4C82-33E3-4DB5-BE1D-5CEC9DF50884}
REMOVES: FirewallRaz (Public) : {584222C5-D197-4988-892F-AD2068D843AE}
REMOVES: FirewallRaz (Private) : TCP Query User{E030EE04-284F-428F-8BF5-70FA86006340}C:\vuze\azureus.exe
REMOVES: FirewallRaz (Private) : UDP Query User{E68742C9-6EA2-4968-AE0F-28970736906E}C:\vuze\azureus.exe
========== Preferences browser ==========
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://i.imgur.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://platform.twitter.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://store2.up-00.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.google-analytics.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
REMOVES Chrome Site: http://www.startimes.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://apis.google.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://ssl.gstatic.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://stats.g.doubleclick.net
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.google.com.ly
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.gstatic.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
ABSENT Chrome Site: http://www.google.com
========== Folders ==========
Deletes temporary Windows (11)
REMOVES Flash Cookies (0)
REMOVES: C:\ProgramData\Baidu
REMOVES: C:\Users\libya\AppData\Roaming\Baidu
========== Files ==========
Deletes temporary Windows (114) (7,964,854 octets)
REMOVES Flash Cookies (0) (0 octets)
REMOVES Reboot: c:\windows\system32\tasks\{67a5107d-ce2b-4736-8a64-53b9c33cca9d}
REMOVES Reboot: c:\windows\system32\drivers\212a173d.sys
REMOVES Reboot: c:\windows\system32\drivers\243e44f8.sys
REMOVES Reboot: c:\windows\system32\drivers\2822240a.sys
REMOVES Reboot: c:\windows\system32\drivers\290971ef.sys
REMOVES Reboot: c:\windows\system32\drivers\2a53731c.sys
REMOVES Reboot: c:\windows\system32\drivers\2e8c4edb.sys
REMOVES Reboot: c:\windows\system32\drivers\30813fde.sys
REMOVES Reboot: c:\windows\system32\drivers\32c60061.sys
REMOVES Reboot: c:\windows\system32\drivers\34ab5b95.sys
REMOVES Reboot: c:\windows\system32\drivers\390a1ff1.sys
REMOVES Reboot: c:\windows\system32\drivers\3b63589d.sys
REMOVES Reboot: c:\windows\system32\drivers\42584dcf.sys
REMOVES Reboot: c:\windows\system32\drivers\4415585b.sys
REMOVES Reboot: c:\windows\system32\drivers\44eb71cf.sys
REMOVES Reboot: c:\windows\system32\drivers\480b168e.sys
REMOVES Reboot: c:\windows\system32\drivers\48230029.sys
REMOVES Reboot: c:\windows\system32\drivers\48be4ad7.sys
REMOVES Reboot: c:\windows\system32\drivers\48c36547.sys
REMOVES Reboot: c:\windows\system32\drivers\48f52fc1.sys
REMOVES Reboot: c:\windows\system32\drivers\4a2411cf.sys
REMOVES Reboot: c:\windows\system32\drivers\4a596eb8.sys
REMOVES Reboot: c:\windows\system32\drivers\4a600a42.sys
REMOVES Reboot: c:\windows\system32\drivers\4a74612a.sys
REMOVES Reboot: c:\windows\system32\drivers\4c4b1807.sys
REMOVES Reboot: c:\windows\system32\drivers\50567b53.sys
REMOVES Reboot: c:\windows\system32\drivers\538245b4.sys
REMOVES Reboot: c:\windows\system32\drivers\542718f1.sys
REMOVES Reboot: c:\windows\system32\drivers\5501476a.sys
REMOVES Reboot: c:\windows\system32\drivers\56890d65.sys
REMOVES Reboot: c:\windows\system32\drivers\59a21508.sys
REMOVES Reboot: c:\windows\system32\drivers\59f2145a.sys
REMOVES Reboot: c:\windows\system32\drivers\60ba11d4.sys
REMOVES Reboot: c:\windows\system32\drivers\644b1b6a.sys
REMOVES Reboot: c:\windows\system32\drivers\64c8421b.sys
REMOVES Reboot: c:\windows\system32\drivers\67d27fc1.sys
REMOVES Reboot: c:\windows\system32\drivers\6f6f3525.sys
REMOVES Reboot: c:\windows\system32\drivers\708b1b2f.sys
REMOVES Reboot: c:\windows\system32\drivers\71231fc8.sys
REMOVES Reboot: c:\windows\system32\drivers\74a2533e.sys
REMOVES Reboot: c:\windows\system32\drivers\74c77ae7.sys
REMOVES Reboot: c:\windows\system32\drivers\7927253a.sys
REMOVES Reboot: c:\windows\system32\drivers\7e3d3459.sys
REMOVES Reboot: c:\windows\system32\drivers\7f0a406c.sys
REMOVES Reboot: c:\windows\system32\drivers\7fbb365e.sys
REMOVES Reboot: c:\windows\system32\drivers\7fe6643f.sys
========== Scheduled task ==========
REMOVES: {3C55CADD-402D-4120-A19F-75A5DD59B8FB}
REMOVES: {3CD7BE18-513D-413E-B89E-4E2D02ADBB88}
REMOVES: {3D74406A-30F0-4085-9A36-AB453625FFD5}
REMOVES: {424B3B6B-EC7F-4D0C-8E90-A41187DD80C0}
REMOVES: {6BC21B73-77D6-444D-96B9-39131E260690}
REMOVES: {6F3A74AA-827E-4087-9A5E-A9492E9EEBF4}
REMOVES: {84464346-0E7F-4DF3-BB4D-E79DF29C2D5B}
REMOVES: {B809AFCC-E669-42E2-9914-7B87A8C96F6E}
REMOVES: {D26782F4-E782-4280-9152-12696EBD9BAE}
REMOVES: {D46C2A35-3B33-4D52-9065-0C08FAC422A1}
REMOVES: {F1B2CBEA-5BBD-401A-9175-E92074862F5A}
========== Other ==========
NON-TREATY [HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS]
NON-TREATY Read more at http://www.cjoint.com/c/FKwxgkMhFOY#KzoL9Ao0gPxzOU3L.99
========== Summary ==========
4 : Registry keys
27 : Registry values
4 : Folders
48 : Files
22 : Preferences browser
11 : Scheduled task
2 : Other
End of clean in 18mn AMs
========== Path to file report ==========
C:\Users\libya\AppData\Roaming\ZHP\ZHPFix[R1].txt - 23/11/2016 02:49:27 AM [8690]
Fichier d'export Registre :
Run by libya at 23/11/2016 02:49:16 AM
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Recycle Bin emptied (11mn AMs)
Prefetcher emptied
========== Registry keys ==========
REMOVES:* HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS
REMOVES: HKLM\SOFTWARE\Wow6432Node\Baidu
REMOVES: HKCU\SOFTWARE\Baidu
REMOVES: HKLM\SOFTWARE\Wow6432Node\Avira
========== Registry values ==========
ABSENT value Standard Profile: FirewallRaz :
ABSENT value Domain Profile: FirewallRaz :
REMOVES: FirewallRaz (Private) : TCP Query User{F4FF3028-6696-4A67-B3E8-89CFD7C6F121}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Private) : UDP Query User{6BA5E890-7845-4A03-A501-9FC4C99C2DD2}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Public) : TCP Query User{71F6A80C-E76F-472E-BC6E-A9C81FCB362D}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Public) : UDP Query User{DCB761DA-85DF-4449-BF1F-6CAC53C2EE09}C:\program files (x86)\freetime\formatfactory\formatfactory.exe
REMOVES: FirewallRaz (Private) : TCP Query User{6058C0A3-EFA1-4254-98E9-FEFFBDD9209E}J:\ÇáÚÇÈ\r.g. mechanics\blur\blur.exe
REMOVES: FirewallRaz (Private) : UDP Query User{1B1F7A7F-F87A-4FF7-BD43-4EA473B30C9C}J:\ÇáÚÇÈ\r.g. mechanics\blur\blur.exe
REMOVES: FirewallRaz (None) : {3E80D980-E46D-4E55-BAF1-B42BE954CE26}
REMOVES: FirewallRaz (None) : {2986C547-2176-494C-A187-1DFDDE729F6F}
REMOVES: FirewallRaz (None) : {3A603868-7123-4224-B0A8-6A2C96788918}
REMOVES: FirewallRaz (None) : {378824D0-4437-4B7F-94DE-CD5BBFE889FC}
REMOVES: FirewallRaz (None) : {8D3897CE-7E12-4837-AB77-0CFC066DAC92}
REMOVES: FirewallRaz (None) : {1465E0B1-8BCC-4273-A35F-7670DBAE20C0}
REMOVES: FirewallRaz (Private) : {20B2B713-01CB-4CA5-A1CB-25F7B55382DD}
REMOVES: FirewallRaz (Private) : {7B29F3F7-C485-4815-86AA-A30AAE35F038}
REMOVES: FirewallRaz (Public) : {6EEA8F12-2978-4FFB-88E8-76E70DE2FA64}
REMOVES: FirewallRaz (Public) : {670573ED-3117-4E56-97DB-B5DD99BC9E00}
REMOVES: FirewallRaz (Public) : {9DCA166A-EFA1-4DB8-A43B-6C43DD99DF9F}
REMOVES: FirewallRaz (Public) : {729C103C-CFE5-4320-BBAF-707E8B410177}
REMOVES: FirewallRaz (Public) : {34270811-3F9C-4121-8DEC-F756B4E5520F}
REMOVES: FirewallRaz (Public) : TCP Query User{4954AC18-15F1-4A82-9D59-CF492396BA4B}C:\users\libya\downloads\call.of.duty.black.ops.iii.hotfix-reloaded.www.gamestorrents.com\blackops3.exe
REMOVES: FirewallRaz (Public) : UDP Query User{11AD8515-D200-4C6E-9101-103F0F28E376}C:\users\libya\downloads\call.of.duty.black.ops.iii.hotfix-reloaded.www.gamestorrents.com\blackops3.exe
REMOVES: FirewallRaz (Public) : {CBAF4C82-33E3-4DB5-BE1D-5CEC9DF50884}
REMOVES: FirewallRaz (Public) : {584222C5-D197-4988-892F-AD2068D843AE}
REMOVES: FirewallRaz (Private) : TCP Query User{E030EE04-284F-428F-8BF5-70FA86006340}C:\vuze\azureus.exe
REMOVES: FirewallRaz (Private) : UDP Query User{E68742C9-6EA2-4968-AE0F-28970736906E}C:\vuze\azureus.exe
========== Preferences browser ==========
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://i.imgur.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://platform.twitter.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://store2.up-00.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.google-analytics.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
REMOVES Chrome Site: http://www.startimes.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://apis.google.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://ssl.gstatic.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://stats.g.doubleclick.net
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.google.com.ly
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.gstatic.com
NOW Chrome File: C:\Users\libya\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
ABSENT Chrome Site: http://www.google.com
========== Folders ==========
Deletes temporary Windows (11)
REMOVES Flash Cookies (0)
REMOVES: C:\ProgramData\Baidu
REMOVES: C:\Users\libya\AppData\Roaming\Baidu
========== Files ==========
Deletes temporary Windows (114) (7,964,854 octets)
REMOVES Flash Cookies (0) (0 octets)
REMOVES Reboot: c:\windows\system32\tasks\{67a5107d-ce2b-4736-8a64-53b9c33cca9d}
REMOVES Reboot: c:\windows\system32\drivers\212a173d.sys
REMOVES Reboot: c:\windows\system32\drivers\243e44f8.sys
REMOVES Reboot: c:\windows\system32\drivers\2822240a.sys
REMOVES Reboot: c:\windows\system32\drivers\290971ef.sys
REMOVES Reboot: c:\windows\system32\drivers\2a53731c.sys
REMOVES Reboot: c:\windows\system32\drivers\2e8c4edb.sys
REMOVES Reboot: c:\windows\system32\drivers\30813fde.sys
REMOVES Reboot: c:\windows\system32\drivers\32c60061.sys
REMOVES Reboot: c:\windows\system32\drivers\34ab5b95.sys
REMOVES Reboot: c:\windows\system32\drivers\390a1ff1.sys
REMOVES Reboot: c:\windows\system32\drivers\3b63589d.sys
REMOVES Reboot: c:\windows\system32\drivers\42584dcf.sys
REMOVES Reboot: c:\windows\system32\drivers\4415585b.sys
REMOVES Reboot: c:\windows\system32\drivers\44eb71cf.sys
REMOVES Reboot: c:\windows\system32\drivers\480b168e.sys
REMOVES Reboot: c:\windows\system32\drivers\48230029.sys
REMOVES Reboot: c:\windows\system32\drivers\48be4ad7.sys
REMOVES Reboot: c:\windows\system32\drivers\48c36547.sys
REMOVES Reboot: c:\windows\system32\drivers\48f52fc1.sys
REMOVES Reboot: c:\windows\system32\drivers\4a2411cf.sys
REMOVES Reboot: c:\windows\system32\drivers\4a596eb8.sys
REMOVES Reboot: c:\windows\system32\drivers\4a600a42.sys
REMOVES Reboot: c:\windows\system32\drivers\4a74612a.sys
REMOVES Reboot: c:\windows\system32\drivers\4c4b1807.sys
REMOVES Reboot: c:\windows\system32\drivers\50567b53.sys
REMOVES Reboot: c:\windows\system32\drivers\538245b4.sys
REMOVES Reboot: c:\windows\system32\drivers\542718f1.sys
REMOVES Reboot: c:\windows\system32\drivers\5501476a.sys
REMOVES Reboot: c:\windows\system32\drivers\56890d65.sys
REMOVES Reboot: c:\windows\system32\drivers\59a21508.sys
REMOVES Reboot: c:\windows\system32\drivers\59f2145a.sys
REMOVES Reboot: c:\windows\system32\drivers\60ba11d4.sys
REMOVES Reboot: c:\windows\system32\drivers\644b1b6a.sys
REMOVES Reboot: c:\windows\system32\drivers\64c8421b.sys
REMOVES Reboot: c:\windows\system32\drivers\67d27fc1.sys
REMOVES Reboot: c:\windows\system32\drivers\6f6f3525.sys
REMOVES Reboot: c:\windows\system32\drivers\708b1b2f.sys
REMOVES Reboot: c:\windows\system32\drivers\71231fc8.sys
REMOVES Reboot: c:\windows\system32\drivers\74a2533e.sys
REMOVES Reboot: c:\windows\system32\drivers\74c77ae7.sys
REMOVES Reboot: c:\windows\system32\drivers\7927253a.sys
REMOVES Reboot: c:\windows\system32\drivers\7e3d3459.sys
REMOVES Reboot: c:\windows\system32\drivers\7f0a406c.sys
REMOVES Reboot: c:\windows\system32\drivers\7fbb365e.sys
REMOVES Reboot: c:\windows\system32\drivers\7fe6643f.sys
========== Scheduled task ==========
REMOVES: {3C55CADD-402D-4120-A19F-75A5DD59B8FB}
REMOVES: {3CD7BE18-513D-413E-B89E-4E2D02ADBB88}
REMOVES: {3D74406A-30F0-4085-9A36-AB453625FFD5}
REMOVES: {424B3B6B-EC7F-4D0C-8E90-A41187DD80C0}
REMOVES: {6BC21B73-77D6-444D-96B9-39131E260690}
REMOVES: {6F3A74AA-827E-4087-9A5E-A9492E9EEBF4}
REMOVES: {84464346-0E7F-4DF3-BB4D-E79DF29C2D5B}
REMOVES: {B809AFCC-E669-42E2-9914-7B87A8C96F6E}
REMOVES: {D26782F4-E782-4280-9152-12696EBD9BAE}
REMOVES: {D46C2A35-3B33-4D52-9065-0C08FAC422A1}
REMOVES: {F1B2CBEA-5BBD-401A-9175-E92074862F5A}
========== Other ==========
NON-TREATY [HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS]
NON-TREATY Read more at http://www.cjoint.com/c/FKwxgkMhFOY#KzoL9Ao0gPxzOU3L.99
========== Summary ==========
4 : Registry keys
27 : Registry values
4 : Folders
48 : Files
22 : Preferences browser
11 : Scheduled task
2 : Other
End of clean in 18mn AMs
========== Path to file report ==========
C:\Users\libya\AppData\Roaming\ZHP\ZHPFix[R1].txt - 23/11/2016 02:49:27 AM [8690]