cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPFix v2018.12.26.211 by Nicolas Coolman (2018/12/26)
~ Run by Muriel (Administrator) (01/01/2019 20:34:28)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\Muriel\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)



---\\ SCRIPT DE L'UTILISATEUR. (90)
Script ZHPFix
EmptyCLSID
Emptytemp
EmptyFlash
O4 - HKLM\..\Run: [WindowsDefender] . (. - .) -- C:\Program Files\Windows Defender\MSASCuiL.exe (.Not File.)
O2 - BHO: (no name) [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} (.Orphan.)
O108 - CMH1: Atheros [64Bits] - {B8952421-0E55-400B-94A6-FA858FC0A39F} . (.Orphan.)
O108 - CMH1: McCtxMenuFrmWrk [64Bits] - {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} . (.Orphan.)
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH2: McCtxMenuFrmWrk [64Bits] - {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} . (.Orphan.)
O108 - CMH6: McCtxMenuFrmWrk [64Bits] - {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} . (.Orphan.)
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O87 - FAEL: "{6F97EBE8-8990-44D9-91CD-4337E77F07ED}" [In-None-P6-TRUE] .(...) -- E:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "{65E02058-63F0-44C6-83AA-751926011FEB}" [In-None-P17-TRUE] .(...) -- E:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
[MD5.9A90F75504F5C7736959925773C5F4B7] [WIS][2016/10/01 02:09:50] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\246817b2.msp [75145216]
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Atheros
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\McCtxMenuFrmWrk
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\McCtxMenuFrmWrk
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\McCtxMenuFrmWrk
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
C:\WINDOWS\Installer\246817b2.msp
O23 - Service: Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.)
SR - Demand [00/00/0000] [ 0] Qualcomm Atheros Virtual Bl (AthBTPort) . (...) - C:\WINDOWS\System32\DRIVERS\btath_flt.sys (.not file.)
SR - Demand [00/00/0000] [ 0] Bluetooth A2DP Audio Driver (BTATH_A2DP) . (...) - C:\WINDOWS\System32\drivers\btath_a2dp.sys (.not file.)
SR - Demand [00/00/0000] [ 0] Qualcomm Atheros Bluetooth (btath_avdt) . (...) - C:\WINDOWS\System32\drivers\btath_avdt.sys (.not file.)
SR - Demand [00/00/0000] [ 0] Qualcomm Atheros Bluetooth B (BTATH_BUS) . (...) - C:\WINDOWS\System32\drivers\btath_bus.sys (.not file.)
SR - Demand [00/00/0000] [ 0] Bluetooth HCRP Server driver (BTATH_HCRP) . (...) - C:\WINDOWS\System32\drivers\btath_hcrp.sys (.not file.)
SR - Demand [00/00/0000] [ 0] Bluetooth LWFLT Device (BTATH_LWFLT) . (...) - C:\WINDOWS\System32\DRIVERS\btath_lwflt.sys (.not file.)
SR - Demand [00/00/0000] [ 0] Bluetooth AVRCP Device (BTATH_RCP) . (...) - C:\WINDOWS\System32\drivers\btath_rcp.sys (.not file.)
SR - Demand [00/00/0000] [ 0] BtFilter (BtFilter) . (...) - C:\WINDOWS\System32\DRIVERS\btfilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] MBAMSwissArmy (MBAMSwissArmy) . (...) - C:\WINDOWS\System32\Drivers\mbamswissarmy.sys (.not file.)
SR - Demand [00/00/0000] [ 0] McAfee Inc. (mfeavfk01) . (...) - \Device\mfeavfk01.sys (.not file.)
SR - Demand [00/00/0000] [ 0] McAfee Process Start Notification Service (mfesapsn) . (...) - C:\Program Files\McAfee\WebAdvisor\mfesapsn.sys (.not file.)
SR - Auto [00/00/0000] [ 0] Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.)
O4 - HKLM\..\Run: [WindowsDefender] . (. - .) -- C:\Program Files\Windows Defender\MSASCuiL.exe (.Not File.)
O23 - Service: McAfee AP Service (McAPExe) . (.McAfee, Inc. - McAfee Access Protection.) - C:\Program Files\Common Files\McAfee\VSCore_18_9\mcapexe.exe
SR - Demand [04/10/2018] [ 77120] McAfee Inc. cfwids (cfwids) . (.McAfee, LLC.) - C:\WINDOWS\System32\drivers\cfwids.sys
SR - Demand [03/10/2018] [ 235784] McAfee Inc. HipShieldK (HipShieldK) . (.McAfee, Inc..) - C:\WINDOWS\System32\drivers\HipShieldK.sys
SR - Auto [26/10/2018] [ 736048] McAfee AP Service (McAPExe) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\VSCore_18_9\mcapexe.exe
SR - Demand [04/10/2018] [ 508736] McAfee Inc. mfeaack (mfeaack) . (.McAfee, LLC.) - C:\WINDOWS\System32\drivers\mfeaack.sys
SR - Demand [00/00/0000] [ 0] McAfee Inc. (mfeavfk01) . (...) - \Device\mfeavfk01.sys (.not file.)
SR - Boot [04/10/2018] [ 85632] McAfee Inc. mfeelamk (mfeelamk) . (.McAfee, LLC.) - C:\WINDOWS\System32\drivers\mfeelamk.sys
SR - Demand [04/10/2018] [ 515392] McAfee Inc. mfefirek (mfefirek) . (.McAfee, LLC.) - C:\WINDOWS\System32\drivers\mfefirek.sys
SR - Demand [02/10/2018] [ 560944] McAfee LLC. mfencbdc (mfencbdc) . (.McAfee LLC..) - C:\WINDOWS\System32\DRIVERS\mfencbdc.sys
SR - Demand [02/10/2018] [ 108840] McAfee LLC. mfencrk (mfencrk) . (.McAfee LLC..) - C:\WINDOWS\System32\DRIVERS\mfencrk.sys
SR - Demand [04/10/2018] [ 117568] McAfee Inc. mfeplk (mfeplk) . (.McAfee, LLC.) - C:\WINDOWS\System32\drivers\mfeplk.sys
SR - Demand [00/00/0000] [ 0] McAfee Process Start Notification Service (mfesapsn) . (...) - C:\Program Files\McAfee\WebAdvisor\mfesapsn.sys (.not file.)
SS - Demand [27/08/2018] [ 499576] McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, LLC.) - C:\WINDOWS\system32\mfevtps.exe
SR - Boot [04/10/2018] [ 253760] McAfee Inc. mfewfpk (mfewfpk) . (.McAfee, LLC.) - C:\WINDOWS\System32\drivers\mfewfpk.sys
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (.McAfee Total Protection MIME Plugin.) -- c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL
HKLM\SOFTWARE\McAfee
HKLM\SOFTWARE\McAfee.com
HKLM\SOFTWARE\McAfee.logging
HKLM\SOFTWARE\McAfeeRemediation
HKLM\SOFTWARE\WOW6432Node\McAfee
HKLM\SOFTWARE\WOW6432Node\McAfee NGI
HKCU\SOFTWARE\McAfee
HKU\.DEFAULT\SOFTWARE\McAfee
O43 - CFD: 24/09/2017 - [] D -- C:\Program Files\McAfee.com
O43 - CFD: 16/12/2018 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 16/12/2018 - [] D -- C:\Program Files (x86)\Common Files\McAfee
O58 - SDL:2018/10/04 13:57:26 A . (.McAfee, LLC - McAfee Personal Firewall IDS Plugin.) -- C:\WINDOWS\System32\drivers\cfwids.sys [77120]
O58 - SDL:2018/10/03 12:45:52 A . (.McAfee, Inc. - McAfee HIP IPS Driver.) -- C:\WINDOWS\System32\drivers\HipShieldK.sys [235784]
O58 - SDL:2018/10/04 13:57:26 A . (.McAfee, LLC - McAfee Arbitrary Access Control Driver.) -- C:\WINDOWS\System32\drivers\mfeaack.sys [508736]
O58 - SDL:2018/10/02 22:39:34 A . (.McAfee LLC. - McAfee Driver Cleaning Driver.) -- C:\WINDOWS\System32\drivers\mfeclnrk.sys [31024]
O58 - SDL:2018/10/04 13:57:26 A . (.McAfee, LLC - McAfee ELAM Driver.) -- C:\WINDOWS\System32\drivers\mfeelamk.sys [85632]
O58 - SDL:2018/10/04 13:57:26 A . (.McAfee, LLC - McAfee Core Firewall Engine Driver.) -- C:\WINDOWS\System32\drivers\mfefirek.sys [515392]
O58 - SDL:2018/10/02 22:39:34 A . (.McAfee LLC. - Event Driver.) -- C:\WINDOWS\System32\drivers\mfencbdc.sys [560944]
O58 - SDL:2018/10/02 22:39:34 A . (.McAfee LLC. - Detection driver.) -- C:\WINDOWS\System32\drivers\mfencrk.sys [108840]
O58 - SDL:2018/10/04 13:57:26 A . (.McAfee, LLC - AAC Protected Launch Plugin Driver.) -- C:\WINDOWS\System32\drivers\mfeplk.sys [117568]
O58 - SDL:2018/10/04 13:57:26 A . (.McAfee, LLC - Anti-Virus Mini-Firewall Driver.) -- C:\WINDOWS\System32\drivers\mfewfpk.sys [253760]
G2 - GCE: Preference [Muriel][User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com
G2 - GCE: Preference [Muriel][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda]
G2 - GCE: Preference [Muriel][User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\WOW6432Node\Google
HKCU\SOFTWARE\Google
O43 - CFD: 08/10/2014 - [] D -- C:\Program Files\Google Play Music
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Muriel\AppData\Local\Google
HKCU\SOFTWARE\ZebHelpProcess Helper
cmd: ipconfig /flushdns
cmd: netsh winsock reset
cmd: netsh advfirewall reset
cmd: Netsh advfirewall set allprofiles state on




---\\ LOGICIEL. (0)


---\\ SERVICE. (5)
ARRETÉ : HKLM\SYSTEM\CurrentControlSet\Services\SAService [No File found]
ABSENT Service: SAService [No File found]
ABSENT Service: McAPExe [mcapexe.exe]
ABSENT Service: mfeavfk01 [No File found]
ABSENT Service: mfesapsn [No File found]


---\\ TÂCHE PLANIFIÉE. (0)


---\\ NAVIGATEUR INTERNET. (2)
SUPPRIMÉ Dossier Chrome: C:\Users\Muriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
SUPPRIMÉ Dossier Chrome: C:\Users\Muriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\


---\\ EXPLORATEUR ( Dossiers, Fichiers ). (27)
DEPLACÉ Fichier Temp: C:\Users\Muriel\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\Muriel\AppData\Local\Temp\JavaDeployReg.log
DEPLACÉ Fichier Temp: C:\Users\Muriel\AppData\Local\Temp\jusched.log
DEPLACÉ Fichier Temp: C:\Users\Muriel\AppData\Local\Temp\MSIc3eef.LOG
DEPLACÉ Fichier Temp: C:\Users\Muriel\AppData\Local\Temp\MSId701c.LOG
DEPLACÉ Fichier Temp: C:\Users\Muriel\AppData\Local\Temp\TWAIN.LOG
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Muriel\AppData\Local\Temp\~DF598E455A9D654C92.TMP
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Muriel\AppData\Local\Temp\~DFF65807BEAC70920A.TMP
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Muriel\AppData\Local\Temp\~nsuA.tmp
DEPLACÉ Fichier Windows Installer: C:\WINDOWS\Installer\246817b2.msp
DEPLACÉ Fichier Service: C:\Program Files\Common Files\McAfee\VSCore_18_9\mcapexe.exe
DEPLACÉ Fichier Service: C:\WINDOWS\System32\drivers\cfwids.sys
DEPLACÉ Fichier Service: C:\WINDOWS\System32\drivers\HipShieldK.sys
DEPLACÉ Fichier Service: C:\WINDOWS\System32\drivers\mfeaack.sys
DEPLACÉ Fichier Service: C:\WINDOWS\System32\drivers\mfeelamk.sys
DEPLACÉ Fichier Service: C:\WINDOWS\System32\drivers\mfefirek.sys
DEPLACÉ Fichier Service: C:\WINDOWS\System32\DRIVERS\mfencbdc.sys
DEPLACÉ Fichier Service: C:\WINDOWS\System32\DRIVERS\mfencrk.sys
DEPLACÉ Fichier Service: C:\WINDOWS\System32\drivers\mfeplk.sys
DEPLACÉ Fichier Service: C:\WINDOWS\system32\mfevtps.exe
DEPLACÉ Fichier Service: C:\WINDOWS\System32\drivers\mfewfpk.sys
SUPPRIMÉ Dossier : C:\Program Files\McAfee.com
SUPPRIMÉ Dossier : C:\ProgramData\McAfee
SUPPRIMÉ Dossier : C:\Program Files (x86)\Common Files\McAfee
SUPPRIMÉ Dossier : C:\Program Files\Google Play Music
SUPPRIMÉ Dossier : C:\Program Files (x86)\Google
SUPPRIMÉ Dossier : C:\Users\Muriel\AppData\Local\Google


---\\ REGISTRE ( Clés, Valeurs, Données ). (39)
ABSENT Valeur Run: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files\Windows Defender\MSASCuiL.exe (.Not File.)]
SUPPRIMÉ Clé BHO: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} [{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\Atheros [Atheros1]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\McCtxMenuFrmWrk [McCtxMenuFrmWrk1]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 [WinRAR321]
SUPPRIMÉ Clé CMH: HKLM64\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\McCtxMenuFrmWrk [McCtxMenuFrmWrk2]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\McCtxMenuFrmWrk [McCtxMenuFrmWrk6]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 [WinRAR326]
SUPPRIMÉ Valeur FirewallRules: {6F97EBE8-8990-44D9-91CD-4337E77F07ED} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {65E02058-63F0-44C6-83AA-751926011FEB} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Clé: HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} [{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
SUPPRIMÉ Clé: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} [{B41DB860-8EE4-11D2-9906-E49FADC173CA}]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\AthBTPort [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\BTATH_A2DP [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\btath_avdt [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\BTATH_BUS [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\BTATH_HCRP [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\BTATH_LWFLT [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\BTATH_RCP [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\BtFilter [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissArmy [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfeavfk01 [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfesapsn [No File found]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\cfwids [cfwids.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\HipShieldK [HipShieldK.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfeaack [mfeaack.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfeelamk [mfeelamk.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfefirek [mfefirek.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfencbdc [mfencbdc.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfencrk [mfencrk.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfeplk [mfeplk.sys]
SUPPRIMÉ Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\mfewfpk [mfewfpk.sys]
SUPPRIMÉ Clé: HKLM\SOFTWARE\McAfee [McAfee]
SUPPRIMÉ Clé: HKLM\SOFTWARE\WOW6432Node\McAfee NGI [McAfee NGI]
SUPPRIMÉ Clé: HKCU\SOFTWARE\McAfee [McAfee]
SUPPRIMÉ Clé: HKU\.DEFAULT\SOFTWARE\McAfee [McAfee]
SUPPRIMÉ Clé: HKLM\SOFTWARE\Google [Google]
SUPPRIMÉ Clé: HKCU\SOFTWARE\Google [Google]
SUPPRIMÉ Clé: HKCU\SOFTWARE\ZebHelpProcess Helper [ZebHelpProcess Helper]


---\\ COMMANDE. (7)
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
~ EmptyTemp: Dossier Local temp partiellement vidé (9)
~ EmptyFlash: Dossier FlashPlayer vide.
~ Command spéciale exécutée avec succès: ipconfig /flushdns
~ Command spéciale exécutée avec succès: netsh winsock reset
~ Command spéciale exécutée avec succès: netsh advfirewall reset
~ Command spéciale exécutée avec succès: Netsh advfirewall set allprofiles state on


---\\ NON TRAITÉ. (0)

~ Le système a été redémarré.

***** ~ Fin de rapport terminé en 00h01mn34s

Publicité


Signaler le contenu de ce document

Publicité