cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPFix v2018.12.26.211 by Nicolas Coolman (2018/12/26)
~ Run by mi (Administrator) (02/01/2019 00:20:40)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\toshiba\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)



---\\ SCRIPT DE L'UTILISATEUR. (127)
Script ZHPFix
EmptyCLSID
Emptytemp
EmptyFlash
UnMaskSoftware: O42 - Logiciel: Ad-Aware Web Companion - (.Lavasoft.) [HKLM][64Bits] -- {AEC923AC-C3BE-4A7C-8CEB-6822C888CF2E}
UnMaskSoftware: O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. (Hidden)
UnMaskSoftware: O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc. (Hidden)
UnMaskSoftware: O42 - Logiciel: LavasoftTcpService - (.Lavasoft.) [HKLM][64Bits] -- {5916A24B-59A4-4FDB-9753-499CB1F65362} =>.Lavasoft (Hidden)
P2 - EXT FILE: (.FVD - New Tab Page Replacement with 3D Speed.) -- C:\Users\toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\swfcpab1.default-1391083468735-1529354854834\extensions\pavel.sherbakov@gmail.com.xpi
O43 - CFD: 15/05/2015 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\LavasoftTcpService
O90 - PUC: "B42A61954A95BDF4793594C91B6F3526" [HKLM] . (.LavasoftTcpService.) -- C:\WINDOWS\Installer\{5916A24B-59A4-4FDB-9753-499CB1F65362}\ARPPRODUCTICON.exe
C:\Program Files (x86)\FolderChangesView.exe
C:\Program Files (x86)\imageGrab_42fr.exe
C:\Program Files (x86)\Linkz.exe
C:\Program Files (x86)\WinScan2PDF.exe
C:\Users\toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\swfcpab1.default-1391083468735-1529354854834\extensions\pavel.sherbakov@gmail.com.xpi
C:\WINDOWS\Installer\{5916A24B-59A4-4FDB-9753-499CB1F65362}\ARPPRODUCTICON.exe
HKLM\SOFTWARE\Wow6432Node\Classes\Installer\Products\B42A61954A95BDF4793594C91B6F3526
HKLM\SOFTWARE\Wow6432Node\Classes\Installer\Features\B42A61954A95BDF4793594C91B6F3526
O2 - BHO: (no name) [64Bits] - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} (.Orphan.)
HKLM\SOFTWARE\IObit\RealTimeProtector
HKLM\SOFTWARE\WOW6432Node\SlimWare Utilities Inc
O108 - CMH1: PDFArchitect3_PDFManagerExt [64Bits] - {7519DD38-AA6F-4250-8E81-F1576DA1A05E} . (.Orphan.)
O108 - CMH1: PDFArchitectExtension [64Bits] - {DBDB3433-0E01-40CE-A026-D9F54FAC3CA9} . (.Orphan.)
O108 - CMH1: TuneUp Shredder Shell Extension [64Bits] - {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} . (.Orphan.)
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH4: TuneUp Disk Space Explorer Shell Extension [64Bits] - {4838CD50-7E5D-4811-9B17-C47A85539F28} . (.Orphan.)
O108 - CMH4: TuneUp Shredder Shell Extension [64Bits] - {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} . (.Orphan.)
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
[MD5.339631DF934AFC2BE35E2B27A6F7DB06] [WIS][2016/11/03 08:25:06] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\17a0451a.msp [1642496]
[MD5.4D64DE5B41C39FA6192C22CBCD826FBA] [WIS][2016/10/10 08:29:03] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\1875a1.msp [36499456]
[MD5.C233BD1DB45AF8BACD0F3C0D8A646740] [WIS][2016/05/19 04:30:11] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\1fda28ab.msp [1429504]
[MD5.BD4423645209FA4CE380C43C1633F4E4] [WIS][2016/07/12 04:25:29] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\20efd24e.msp [39538688]
[MD5.08615067E75539285F388EF4B41D669E] [WIS][2016/01/12 04:19:17] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\22cd4d3a.msp [46080000]
[MD5.49E13AC54D99DDA556E25BC1BF5DC4BE] [WIS][2015/09/30 23:07:56] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\24f4700b.msp [52576256]
[MD5.307FCA5A8C1EDF5A94F46095589379CE] [WIS][2016/03/08 04:45:31] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\281dd23d.msp [2719744]
[MD5.775A31DA0A4D38B773E97B1F54F138A4] [WIS][2015/10/29 08:48:55] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\3e9502ef.msp [52572160]
[MD5.557170C4FCC0754B372A5FC174735242] [WIS][2016/06/02 05:48:41] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\3f5855a3.msp [2772992]
[MD5.F9FD1AB516C661D9938213AA661350B7] [WIS][2016/08/02 12:49:06] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\61549bae.msp [1511424]
[MD5.25F86D2EE0FAB79D6DCA727411962C32] [WIS][2016/02/16 13:48:12] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\6c1a417.msp [9687040]
[MD5.D2315820CBF3F165769574F4F57F9D59] [WIS][2015/11/25 10:42:23] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\911e549.msp [212992]
[MD5.50A28B22FFDE4D837B145DB7A22E94C5] [WIS][2016/05/10 04:20:29] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\dc37e06.msp [58986496]
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}
HKLM\Software\Classes\CLSID\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities
HKLM\Software\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}
HKLM\Software\Wow6432Node\Classes\CLSID\{B3C418F8-922B-4faf-915E-59BC14448CF7}
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities 3
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\PDFArchitect3_PDFManagerExt
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\PDFArchitectExtension
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\TuneUp Shredder Shell Extension
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\TuneUp Disk Space Explorer Shell Extension
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\TuneUp Shredder Shell Extension
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Glary Utilities
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Glary Utilities 3
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
HKLM\Software\Classes\Drive\shellex\ContextMenuHandlers\Glary Utilities
HKLM\Software\Classes\Drive\shellex\ContextMenuHandlers\Glary Utilities 3
C:\WINDOWS\Installer\17a0451a.msp
C:\WINDOWS\Installer\1875a1.msp
C:\WINDOWS\Installer\1fda28ab.msp
C:\WINDOWS\Installer\20efd24e.msp
C:\WINDOWS\Installer\22cd4d3a.msp
C:\WINDOWS\Installer\24f4700b.msp
C:\WINDOWS\Installer\281dd23d.msp
C:\WINDOWS\Installer\3e9502ef.msp
C:\WINDOWS\Installer\3f5855a3.msp
C:\WINDOWS\Installer\61549bae.msp
C:\WINDOWS\Installer\6c1a417.msp
C:\WINDOWS\Installer\911e549.msp
C:\WINDOWS\Installer\dc37e06.msp
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\001
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\002
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\003
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\004
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\005
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\006
C:\Users\toshiba\AppData\Local\Google\Chrome\User Data\Default\File System\007
HKLM\SOFTWARE\IObit\RealTimeProtector
O3 - Toolbar: 0x86989D756F0C9844BAB64A5F47C6C72F - [HKCU]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (...) -- (.not file.)
O3 - Toolbar: 0xE3EFEB7F196B494398D2FFB09D4B49CA0024060000 - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.)
O3 - Toolbar: 0x00 - [HKLM]{2DFF3579-5AA7-45B9-9328-1D38EA230861} . (...) -- (.not file.)
O3 - Toolbar: 0x00 - [HKLM]{23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} . (...) -- (.not file.)
O108 - CMH1: Glary Utilities [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (...) -- C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll (.not file.)
O108 - CMH1: Glary Utilities 3 [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (...) -- C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll (.not file.)
O108 - CMH6: Glary Utilities [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (...) -- C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll (.not file.)
O108 - CMH6: Glary Utilities 3 [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (...) -- C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll (.not file.)
O108 - CMH7: Glary Utilities [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (...) -- C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll (.not file.)
O108 - CMH7: Glary Utilities 3 [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (...) -- C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll (.not file.)
HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
HKLM\SOFTWARE\IObit\RealTimeProtector
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\WOW6432Node\ADSRemoval
HKLM\SOFTWARE\WOW6432Node\IObit
O43 - CFD: 26/01/2014 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 23/03/2017 - [] D -- C:\ProgramData\IObit
O43 - CFD: 27/01/2014 - [] D -- C:\Users\toshiba\AppData\Roaming\IObit
O43 - CFD: 25/01/2014 - [] D -- C:\Users\toshiba\AppData\LocalLow\ADSRemoval
O43 - CFD: 05/06/2015 - [] D -- C:\Users\toshiba\AppData\LocalLow\IObit
HKLM\SOFTWARE\IObit\RealTimeProtector
HKLM\SOFTWARE\Norton
HKCU\SOFTWARE\AppDataLow\Software\Norton
HKU\.DEFAULT\SOFTWARE\Norton
O43 - CFD: 13/03/2018 - [] D -- C:\Program Files\NortonInstaller
O43 - CFD: 22/05/2018 - [] D -- C:\ProgramData\Norton
O43 - CFD: 05/03/2018 - [] D -- C:\ProgramData\NortonInstaller
O69 - SBI: SearchScopes [HKCU] [64Bits]{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} - (Norton Safe Search) - http://nortonsafe.search.ask.com/
HKLM\SOFTWARE\WOW6432Node\JavaSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKU\.DEFAULT\SOFTWARE\JavaSoft
HKU\S-1-5-21-1360439242-543759846-2576680677-1001\SOFTWARE\JavaSoft
HKLM\SOFTWARE\WOW6432Node\Safer Networking Limited
HKCU\SOFTWARE\Safer Networking Limited
HKU\.DEFAULT\SOFTWARE\Safer Networking Limited
HKU\S-1-5-21-1360439242-543759846-2576680677-1001\SOFTWARE\Safer Networking Limited
O43 - CFD: 30/07/2013 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 30/07/2013 - [] D -- C:\ProgramData\Spybot - Search & Destroy
cmd: ipconfig /flushdns
cmd: netsh winsock reset
cmd: netsh advfirewall reset
cmd: Netsh advfirewall set allprofiles state on


---\\ LOGICIEL. (0)


---\\ SERVICE. (0)


---\\ TÂCHE PLANIFIÉE. (0)


---\\ NAVIGATEUR INTERNET. (1)
REMPLACÉ Donnée SearchScopes: nortonsafe.search.ask.com/ [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}\\URL]


---\\ EXPLORATEUR ( Dossiers, Fichiers ). (10)
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF1635F9AB6F9B900E.TMP
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF181AE616BE10FB37.TMP
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF5CEBA50521873B88.TMP
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\toshiba\AppData\Local\Temp\~DF633BE84A8989393F.TMP
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF75E417429C60A743.TMP
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF76C21DD750786DD3.TMP
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF7B1AFE660700D28F.TMP
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF85AD5B57EF4D7B4C.TMP
DEPLACÉ Fichier Temp: C:\Users\toshiba\AppData\Local\Temp\~DF9C8089A7CFC15D75.TMP


---\\ REGISTRE ( Clés, Valeurs, Données ). (5)
REMPLACÉ Donnée Software: 1 [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AEC923AC-C3BE-4A7C-8CEB-6822C888CF2E}\\SystemComponent]
REMPLACÉ Donnée Software: 1 [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}\\SystemComponent]
REMPLACÉ Donnée Software: 1 [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}\\SystemComponent]
REMPLACÉ Donnée Software: 1 [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5916A24B-59A4-4FDB-9753-499CB1F65362}\\SystemComponent]
SUPPRIMÉ Clé: HKLM\SOFTWARE\WOW6432Node\SlimWare Utilities Inc [SlimWare Utilities Inc]


---\\ COMMANDE. (7)
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
~ EmptyTemp: Dossier Local temp partiellement vidé (10)
~ EmptyFlash: Fichiers Temporaires supprimés. (2)
~ Command spéciale exécutée avec succès: ipconfig /flushdns
~ Command spéciale exécutée avec succès: netsh winsock reset
~ Command spéciale exécutée avec succès: netsh advfirewall reset
~ Command spéciale exécutée avec succès: Netsh advfirewall set allprofiles state on


---\\ NON TRAITÉ. (0)

***** ~ Fin de rapport terminé en 00h00mn29s

Publicité


Signaler le contenu de ce document

Publicité