Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPFix 2017.06.13.1 par Nicolas Coolman, Update du 13/06/2017
Fichier d'export Registre :
Run by DrSergioO at 8/9/2018 9:53:57 PM
High Elevated Privileges : OK
Windows 7 Ultimate Edition, 64-bit Service Pack 1 (Build 7601)
Recycle Bin emptied (02mn AMs)
Prefetcher emptied
========== Registry values ==========
ABSENT value Standard Profile: FirewallRaz :
ABSENT value Domain Profile: FirewallRaz :
REMOVES: FirewallRaz (Public) : TCP Query User{B0F0AF9E-0B5C-4970-ADAC-E894A4ACC4DD}C:\users\drsergioo\appdata\local\temp\siinst.exe
REMOVES: FirewallRaz (Public) : UDP Query User{BAD70AC9-20A2-498C-BDE9-184FBB296CC8}C:\users\drsergioo\appdata\local\temp\siinst.exe
REMOVES: FirewallRaz (Public) : TCP Query User{D86360ED-DDD8-4B00-A1E3-E2E4BA506B9A}F:\computer programmes\mtk_usb_all_1.0.1\mtk usb driver v1.01\driver_auto_installer_v5.1524\driver_auto_installer_v5.1524.exe
REMOVES: FirewallRaz (Public) : UDP Query User{74440E25-E263-48EC-8AB2-82DBDBD2F43F}F:\computer programmes\mtk_usb_all_1.0.1\mtk usb driver v1.01\driver_auto_installer_v5.1524\driver_auto_installer_v5.1524.exe
REMOVES: FirewallRaz (Public) : TCP Query User{32755ECC-4D8A-462F-94BB-0790CF4941B6}C:\users\drsergioo\appdata\local\temp\uwoha.exe
REMOVES: FirewallRaz (Public) : UDP Query User{F872B4BF-DBB0-400C-BED9-BA792A82B678}C:\users\drsergioo\appdata\local\temp\uwoha.exe
REMOVES: FirewallRaz (Public) : TCP Query User{A664D160-8F60-44FD-A97E-FC123C2CAFBF}C:\users\drsergioo\downloads\programs\reiboot.exe
REMOVES: FirewallRaz (Public) : UDP Query User{0A149D7C-B41D-435A-AF33-2FB27ED0D313}C:\users\drsergioo\downloads\programs\reiboot.exe
REMOVES: FirewallRaz (Public) : TCP Query User{BE04F975-6CF8-475F-B2B2-A1DD5B8D86F6}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgflashtool2014.exe
REMOVES: FirewallRaz (Public) : UDP Query User{635EC045-4339-48FC-BA12-87A16559D3B8}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgflashtool2014.exe
REMOVES: FirewallRaz (Public) : TCP Query User{4056A574-DB0C-4A71-9CCF-897FE5058CC5}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgusercstool.exe
REMOVES: FirewallRaz (Public) : UDP Query User{11A55E4C-55DC-46C1-B89D-700C1B326D4A}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgusercstool.exe
REMOVES: FirewallRaz (Public) : TCP Query User{40A5D431-1D0D-4884-AE06-4913FC05E7BA}C:\users\drsergioo\desktop\shortcut virus remover v3\shortcut virus remover v3.1.exe
REMOVES: FirewallRaz (Public) : UDP Query User{0DBEC0E4-D8DD-48F4-924D-D81F0418EE88}C:\users\drsergioo\desktop\shortcut virus remover v3\shortcut virus remover v3.1.exe
REMOVES: FirewallRaz (Public) : TCP Query User{3B48F95F-AE86-47DC-88DE-2076E2BF28B9}C:\program files (x86)\win\msn.exe
REMOVES: FirewallRaz (Public) : UDP Query User{BC713173-487C-4B2D-9272-E8213683769D}C:\program files (x86)\win\msn.exe
REMOVES: {28415CF0-612E-4567-87BA-EA8FF679BFB4}
REMOVES: {58B714D6-43FA-43CE-809A-540F13B5F0BC}
========== Folders ==========
Deletes temporary Windows (53)
REMOVES Flash Cookies (0)
========== Files ==========
Deletes temporary Windows (365) (44,164,082 octets)
REMOVES Flash Cookies (0) (0 octets)
========== Other ==========
NON-TREATY C: \ Windows \ AutoKMS \ AutoKMS.exe
NON-TREATY C: \ Windows \ System32 \ Tasks \ AutoKMS
NON-TREATY C: \ ProgramData \ Tencent
NON-TREATY C: \ Program Files (x86) \ Common Files \ Tencent
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Roaming \ Tencent
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ AdvinstAnalytics
NON-TREATY [HKLM \ Software \ Classes \ * \ ShellEx \ ContextMenuHandlers \ Cover Designer]
NON-TREATY [HKLM \ Software \ Classes \ CLSID \ {73FCA462-9BD5-4065-A73F-A8E5F6904EF7}]
NON-TREATY [HKLM \ Software \ Classes \ * \ ShellEx \ ContextMenuHandlers \ WinRAR32]
NON-TREATY [HKLM \ Software \ Classes \ CLSID \ {B41DB860-8EE4-11D2-9906-E49FADC173CA}]
NON-TREATY [HKLM \ Software \ Classes \ Folder \ ShellEx \ ContextMenuHandlers \ WinRAR32]
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Roaming \ Tencent \ QQPhoneManager \ Components \ QQDownload \ Tencentdl.exe
NON-TREATY C: \ Program Files (x86) \ Common Files \ Tencent \ qqdownload \ 125 \ tencentdl.exe
NON-TREATY C: \ Windows \ Installer \ 6fe9ca.msp
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 000
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 001
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 002
NON-TREATY C : \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 003
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 004
NON-TREATY TestSigning is set. Check for possible unsigned driver with ZHPFix TestSigningFix command.
NON-TREATY [MD5 .4C585337E2432E1DF6DC76E9953ABE4A] [WIS] [2013/12/21 10:58:56] (.adobe Systems, Incorporated.) - C: \ Windows \ Installer \ 6fe9ca.msp [19,824,640]
NON-TREATY .Ahead Corporation O90 - PUC: "7394F260951854B5974EFB5E2003A4B2" [HKLM]. (.CCC Help Hungarian.) - C: \ Windows \ Installer \ {062F4937-8159-5B45-79E4-BFE502304A2B} \ ARPPRODUCTICON.exe
NON-TREATY .ATI Technologies O90 - PUC: "AE2750C7C6A8F0538ECF218745C53AB0" [HKLM] . (.Cc Help Danish.) - C: \ Windows \ Installer \ {7C0572EA-8A6C-350F-E8FC-1278545CA30B} \ ARPPRODUCTICON.exe
NON-TREATY .Western Digital Technologies O90 - PUC: "C173E5AD3336A8D3394AF65D2BB0CCE6" [HKLM]. (.Microsoft Visual C ++ 2010 x64 Redistributable - 10.0.30319.)
NON-TREATY O87 - FAEL : "UDP Query User {BAD70AC9-20A2-498C-BDE9-184FBB296CC8} C: \ users \ drsergio \ appdata \ local \ temp \ siinst.exe" [In-None-P17-TRUE]. (...) - C: \ users \ drsergio \ appdata \ local \ temp \ siinst.exe (.not file.)
NON-TREATY - SBI: SearchScopes [HKCU] [64Bits] {C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://maktoob.search.yahoo.com/ Yahoo! Inc.
NON-TREATY O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ {5DB20C79-5EAD-494F-8C51-39F02FA8EBD9}: DhcpNameServer
========== Summary ==========
20 : Registry values
2 : Folders
2 : Files
27 : Other
End of clean in 04mn AMs
========== Path to file report ==========
C:\Users\DrSergioO\AppData\Roaming\ZHP\ZHPFix[R1].txt - 8/9/2018 9:54:00 PM [6410]
Fichier d'export Registre :
Run by DrSergioO at 8/9/2018 9:53:57 PM
High Elevated Privileges : OK
Windows 7 Ultimate Edition, 64-bit Service Pack 1 (Build 7601)
Recycle Bin emptied (02mn AMs)
Prefetcher emptied
========== Registry values ==========
ABSENT value Standard Profile: FirewallRaz :
ABSENT value Domain Profile: FirewallRaz :
REMOVES: FirewallRaz (Public) : TCP Query User{B0F0AF9E-0B5C-4970-ADAC-E894A4ACC4DD}C:\users\drsergioo\appdata\local\temp\siinst.exe
REMOVES: FirewallRaz (Public) : UDP Query User{BAD70AC9-20A2-498C-BDE9-184FBB296CC8}C:\users\drsergioo\appdata\local\temp\siinst.exe
REMOVES: FirewallRaz (Public) : TCP Query User{D86360ED-DDD8-4B00-A1E3-E2E4BA506B9A}F:\computer programmes\mtk_usb_all_1.0.1\mtk usb driver v1.01\driver_auto_installer_v5.1524\driver_auto_installer_v5.1524.exe
REMOVES: FirewallRaz (Public) : UDP Query User{74440E25-E263-48EC-8AB2-82DBDBD2F43F}F:\computer programmes\mtk_usb_all_1.0.1\mtk usb driver v1.01\driver_auto_installer_v5.1524\driver_auto_installer_v5.1524.exe
REMOVES: FirewallRaz (Public) : TCP Query User{32755ECC-4D8A-462F-94BB-0790CF4941B6}C:\users\drsergioo\appdata\local\temp\uwoha.exe
REMOVES: FirewallRaz (Public) : UDP Query User{F872B4BF-DBB0-400C-BED9-BA792A82B678}C:\users\drsergioo\appdata\local\temp\uwoha.exe
REMOVES: FirewallRaz (Public) : TCP Query User{A664D160-8F60-44FD-A97E-FC123C2CAFBF}C:\users\drsergioo\downloads\programs\reiboot.exe
REMOVES: FirewallRaz (Public) : UDP Query User{0A149D7C-B41D-435A-AF33-2FB27ED0D313}C:\users\drsergioo\downloads\programs\reiboot.exe
REMOVES: FirewallRaz (Public) : TCP Query User{BE04F975-6CF8-475F-B2B2-A1DD5B8D86F6}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgflashtool2014.exe
REMOVES: FirewallRaz (Public) : UDP Query User{635EC045-4339-48FC-BA12-87A16559D3B8}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgflashtool2014.exe
REMOVES: FirewallRaz (Public) : TCP Query User{4056A574-DB0C-4A71-9CCF-897FE5058CC5}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgusercstool.exe
REMOVES: FirewallRaz (Public) : UDP Query User{11A55E4C-55DC-46C1-B89D-700C1B326D4A}C:\users\drsergioo\appdata\local\temp\rar$exa3032.32813\lg flash tool 2014\lgusercstool.exe
REMOVES: FirewallRaz (Public) : TCP Query User{40A5D431-1D0D-4884-AE06-4913FC05E7BA}C:\users\drsergioo\desktop\shortcut virus remover v3\shortcut virus remover v3.1.exe
REMOVES: FirewallRaz (Public) : UDP Query User{0DBEC0E4-D8DD-48F4-924D-D81F0418EE88}C:\users\drsergioo\desktop\shortcut virus remover v3\shortcut virus remover v3.1.exe
REMOVES: FirewallRaz (Public) : TCP Query User{3B48F95F-AE86-47DC-88DE-2076E2BF28B9}C:\program files (x86)\win\msn.exe
REMOVES: FirewallRaz (Public) : UDP Query User{BC713173-487C-4B2D-9272-E8213683769D}C:\program files (x86)\win\msn.exe
REMOVES: {28415CF0-612E-4567-87BA-EA8FF679BFB4}
REMOVES: {58B714D6-43FA-43CE-809A-540F13B5F0BC}
========== Folders ==========
Deletes temporary Windows (53)
REMOVES Flash Cookies (0)
========== Files ==========
Deletes temporary Windows (365) (44,164,082 octets)
REMOVES Flash Cookies (0) (0 octets)
========== Other ==========
NON-TREATY C: \ Windows \ AutoKMS \ AutoKMS.exe
NON-TREATY C: \ Windows \ System32 \ Tasks \ AutoKMS
NON-TREATY C: \ ProgramData \ Tencent
NON-TREATY C: \ Program Files (x86) \ Common Files \ Tencent
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Roaming \ Tencent
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ AdvinstAnalytics
NON-TREATY [HKLM \ Software \ Classes \ * \ ShellEx \ ContextMenuHandlers \ Cover Designer]
NON-TREATY [HKLM \ Software \ Classes \ CLSID \ {73FCA462-9BD5-4065-A73F-A8E5F6904EF7}]
NON-TREATY [HKLM \ Software \ Classes \ * \ ShellEx \ ContextMenuHandlers \ WinRAR32]
NON-TREATY [HKLM \ Software \ Classes \ CLSID \ {B41DB860-8EE4-11D2-9906-E49FADC173CA}]
NON-TREATY [HKLM \ Software \ Classes \ Folder \ ShellEx \ ContextMenuHandlers \ WinRAR32]
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Roaming \ Tencent \ QQPhoneManager \ Components \ QQDownload \ Tencentdl.exe
NON-TREATY C: \ Program Files (x86) \ Common Files \ Tencent \ qqdownload \ 125 \ tencentdl.exe
NON-TREATY C: \ Windows \ Installer \ 6fe9ca.msp
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 000
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 001
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 002
NON-TREATY C : \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 003
NON-TREATY C: \ Users \ DrSergioO \ AppData \ Local \ Google \ Chrome \ User Data \ Default \ File System \ 004
NON-TREATY TestSigning is set. Check for possible unsigned driver with ZHPFix TestSigningFix command.
NON-TREATY [MD5 .4C585337E2432E1DF6DC76E9953ABE4A] [WIS] [2013/12/21 10:58:56] (.adobe Systems, Incorporated.) - C: \ Windows \ Installer \ 6fe9ca.msp [19,824,640]
NON-TREATY .Ahead Corporation O90 - PUC: "7394F260951854B5974EFB5E2003A4B2" [HKLM]. (.CCC Help Hungarian.) - C: \ Windows \ Installer \ {062F4937-8159-5B45-79E4-BFE502304A2B} \ ARPPRODUCTICON.exe
NON-TREATY .ATI Technologies O90 - PUC: "AE2750C7C6A8F0538ECF218745C53AB0" [HKLM] . (.Cc Help Danish.) - C: \ Windows \ Installer \ {7C0572EA-8A6C-350F-E8FC-1278545CA30B} \ ARPPRODUCTICON.exe
NON-TREATY .Western Digital Technologies O90 - PUC: "C173E5AD3336A8D3394AF65D2BB0CCE6" [HKLM]. (.Microsoft Visual C ++ 2010 x64 Redistributable - 10.0.30319.)
NON-TREATY O87 - FAEL : "UDP Query User {BAD70AC9-20A2-498C-BDE9-184FBB296CC8} C: \ users \ drsergio \ appdata \ local \ temp \ siinst.exe" [In-None-P17-TRUE]. (...) - C: \ users \ drsergio \ appdata \ local \ temp \ siinst.exe (.not file.)
NON-TREATY - SBI: SearchScopes [HKCU] [64Bits] {C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://maktoob.search.yahoo.com/ Yahoo! Inc.
NON-TREATY O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ {5DB20C79-5EAD-494F-8C51-39F02FA8EBD9}: DhcpNameServer
========== Summary ==========
20 : Registry values
2 : Folders
2 : Files
27 : Other
End of clean in 04mn AMs
========== Path to file report ==========
C:\Users\DrSergioO\AppData\Roaming\ZHP\ZHPFix[R1].txt - 8/9/2018 9:54:00 PM [6410]