Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPFix v2020.2.22.180 by Nicolas Coolman (2020/01/22)
~ Run by Utilisateur (Administrator) (24/02/2020 16:20:22)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\Utilisateur\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 18363)
---\\ SCRIPT DE L'UTILISATEUR. (161)
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
---\\ LOGICIEL. (0)
---\\ SERVICE. (0)
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (0)
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (31)
DEPLACÉ Fichier : C:\Program Files (x86)\QuickTime\QTTask.exe
SUPPRIMÉ Dossier : C:\Program Files (x86)\QuickTime
SUPPRIMÉ Dossier : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
SUPPRIMÉ Dossier : C:\Users\Utilisateur\AppData\Roaming\DRPNPS
SUPPRIMÉ Dossier : C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
SUPPRIMÉ Dossier : C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
SUPPRIMÉ Dossier : C:\ProgramData\Uninstall
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\SecurityMonitorPro.exe
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\aria-debug-9536.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\mat-debug-15920.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\mat-debug-6116.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\oobelib.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\PDApp.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\StructuredQuery.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\spTempDirectoryKeeper-3B7EEA97.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URL7806.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URL8213.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URLB98D.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URLC32E.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URLF926.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\wct254.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\wct9E7.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF30B772D3030A6D78.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF3B6E6D4C8E2AEC51.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF43C24AD1005F344A.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF6A76EC8B1716F917.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DFEBD2D7BA3D46D673.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DFEEC38A9E069A0C1B.TMP
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\scoped_dir5528_21541
DEPLACÉ Fichier Temp*: C:\Users\UTILIS~1\AppData\Local\Temp\scoped_dir5528_21541
---\\ REGISTRE ( Clés, Valeurs, Données ). (33)
REMPLACÉ Donnée Proxy: 127.0.0.1;*.local [HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\\ProxyOverride]
ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [O4 - HKLM\..\Wow6432Node\Run:]
SUPPRIMÉ Clé Product: HKLM64\Software\Classes\Installer\Products\ABFAB76BF9C4AF84496939E3B3520544 [QuickTime]
ABSENT Clé: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
SUPPRIMÉ Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044} [{B67BAFBA-4C9F-48FA-9496-933E3B255044}]
SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx [ FileSyncEx]
SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 [ANotepad++64]
SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu [BriefcaseMenu]
SUPPRIMÉ Redémarrage Clé ^: HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
SUPPRIMÉ Clé: HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} [{85BBD920-42A0-1069-A2E4-08002B30309D}]
SUPPRIMÉ Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx [ FileSyncEx]
SUPPRIMÉ Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files [Offline Files]
SUPPRIMÉ Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu [BriefcaseMenu]
SUPPRIMÉ Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files [Offline Files]
SUPPRIMÉ Clé: HKLM\SOFTWARE\Software [Software]
SUPPRIMÉ Clé: HKCU\SOFTWARE\PCurVersion [PCurVersion]
SUPPRIMÉ Clé: HKCU\SOFTWARE\Software [Software]
ABSENT Clé: HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
ABSENT Clé: HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
ABSENT Clé Product: HKLM64\Software\Classes\Installer\Products\ABFAB76BF9C4AF84496939E3B3520544
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
ABSENT Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
ABSENT Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
ABSENT Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
ABSENT Clé: HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
ABSENT Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
ABSENT Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
ABSENT Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
ABSENT Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
ABSENT Clé: HKLM\SOFTWARE\Software
ABSENT Clé: HKCU\SOFTWARE\PCurVersion
ABSENT Clé: HKCU\SOFTWARE\Software
SUPPRIMÉ Valeur: QuickTime Task [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
---\\ COMMANDE. (20)
CreateRestorePoint: OK
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
~ EmptyFlash: Fichiers Temporaires supprimés. (2)
~ EmptyTracing: Clés tracing supprimées (8)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (233)
~ Command spéciale exécutée avec succès: ipconfig /flushdns
~ Command spéciale exécutée avec succès: netsh advfirewall reset
~ Command spéciale exécutée avec succès: netsh advfirewall set allprofiles state on
~ Command spéciale exécutée avec succès: Winsock
~ EmptyRecycle: Corbeille vidée avec succès.
~ EmptyTemp: Dossier Local temp partiellement vidé (23)
~ EmptyTracing: Clés tracing supprimées (4)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (11)
~ EmptyRecycle: Corbeille vide.
~ EmptyTemp: Dossier Local temp partiellement vidé (4)
~ EmptyTracing: Clés tracing supprimées (2)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (8)
~ EmptyTemp: Dossier Local temp partiellement vidé (3)
~ EmptyTracing: Clés tracing supprimées (1)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (7)
---\\ NON TRAITÉ. (0)
~ Le système a été redémarré.
***** ~ Fin de rapport terminé en 00h04mn38s
~ Run by Utilisateur (Administrator) (24/02/2020 16:20:22)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\Utilisateur\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 18363)
---\\ SCRIPT DE L'UTILISATEUR. (161)
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
Start::
CreateRestorePoint
EmptyCLSID
EmptyFlash
EmptyTracing
EmptyPrefetch
EmptyProxy
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [Unsigned]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:QuickTime Task
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" [HKLM] . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
C:\Program Files (x86)\QuickTime\QTTask.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
C:\Program Files (x86)\QuickTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
C:\Users\Utilisateur\AppData\Roaming\DRPNPS
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
HKLM\SOFTWARE\Software
HKCU\SOFTWARE\PCurVersion
HKCU\SOFTWARE\Software
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Uninstall
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
WinsockFix
EmptyRecycle
EmptyTemp
End::
---\\ LOGICIEL. (0)
---\\ SERVICE. (0)
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (0)
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (31)
DEPLACÉ Fichier : C:\Program Files (x86)\QuickTime\QTTask.exe
SUPPRIMÉ Dossier : C:\Program Files (x86)\QuickTime
SUPPRIMÉ Dossier : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
SUPPRIMÉ Dossier : C:\Users\Utilisateur\AppData\Roaming\DRPNPS
SUPPRIMÉ Dossier : C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\000
SUPPRIMÉ Dossier : C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\001
SUPPRIMÉ Dossier : C:\ProgramData\Uninstall
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\SecurityMonitorPro.exe
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\aria-debug-9536.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\mat-debug-15920.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\mat-debug-6116.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\oobelib.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\PDApp.log
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\StructuredQuery.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\spTempDirectoryKeeper-3B7EEA97.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URL7806.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URL8213.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URLB98D.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URLC32E.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\URLF926.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\wct254.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\wct9E7.tmp
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF30B772D3030A6D78.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF3B6E6D4C8E2AEC51.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF43C24AD1005F344A.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DF6A76EC8B1716F917.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DFEBD2D7BA3D46D673.TMP
DEPLACÉ Fichier Temp: C:\Users\UTILIS~1\AppData\Local\Temp\~DFEEC38A9E069A0C1B.TMP
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\UTILIS~1\AppData\Local\Temp\scoped_dir5528_21541
DEPLACÉ Fichier Temp*: C:\Users\UTILIS~1\AppData\Local\Temp\scoped_dir5528_21541
---\\ REGISTRE ( Clés, Valeurs, Données ). (33)
REMPLACÉ Donnée Proxy: 127.0.0.1;*.local [HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\\ProxyOverride]
ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [O4 - HKLM\..\Wow6432Node\Run:]
SUPPRIMÉ Clé Product: HKLM64\Software\Classes\Installer\Products\ABFAB76BF9C4AF84496939E3B3520544 [QuickTime]
ABSENT Clé: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
SUPPRIMÉ Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044} [{B67BAFBA-4C9F-48FA-9496-933E3B255044}]
SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx [ FileSyncEx]
SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 [ANotepad++64]
SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu [BriefcaseMenu]
SUPPRIMÉ Redémarrage Clé ^: HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
SUPPRIMÉ Clé: HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} [{85BBD920-42A0-1069-A2E4-08002B30309D}]
SUPPRIMÉ Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx [ FileSyncEx]
SUPPRIMÉ Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files [Offline Files]
SUPPRIMÉ Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu [BriefcaseMenu]
SUPPRIMÉ Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files [Offline Files]
SUPPRIMÉ Clé: HKLM\SOFTWARE\Software [Software]
SUPPRIMÉ Clé: HKCU\SOFTWARE\PCurVersion [PCurVersion]
SUPPRIMÉ Clé: HKCU\SOFTWARE\Software [Software]
ABSENT Clé: HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\PCurVersion
ABSENT Clé: HKU\S-1-5-21-606983967-998228936-3431109397-1001\SOFTWARE\Software
ABSENT Clé Product: HKLM64\Software\Classes\Installer\Products\ABFAB76BF9C4AF84496939E3B3520544
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B67BAFBA-4C9F-48FA-9496-933E3B255044}
ABSENT Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx
ABSENT Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
ABSENT Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu
ABSENT Clé: HKLM\Software\Wow6432Node\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}
ABSENT Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx
ABSENT Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files
ABSENT Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu
ABSENT Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files
ABSENT Clé: HKLM\SOFTWARE\Software
ABSENT Clé: HKCU\SOFTWARE\PCurVersion
ABSENT Clé: HKCU\SOFTWARE\Software
SUPPRIMÉ Valeur: QuickTime Task [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
---\\ COMMANDE. (20)
CreateRestorePoint: OK
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
~ EmptyFlash: Fichiers Temporaires supprimés. (2)
~ EmptyTracing: Clés tracing supprimées (8)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (233)
~ Command spéciale exécutée avec succès: ipconfig /flushdns
~ Command spéciale exécutée avec succès: netsh advfirewall reset
~ Command spéciale exécutée avec succès: netsh advfirewall set allprofiles state on
~ Command spéciale exécutée avec succès: Winsock
~ EmptyRecycle: Corbeille vidée avec succès.
~ EmptyTemp: Dossier Local temp partiellement vidé (23)
~ EmptyTracing: Clés tracing supprimées (4)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (11)
~ EmptyRecycle: Corbeille vide.
~ EmptyTemp: Dossier Local temp partiellement vidé (4)
~ EmptyTracing: Clés tracing supprimées (2)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (8)
~ EmptyTemp: Dossier Local temp partiellement vidé (3)
~ EmptyTracing: Clés tracing supprimées (1)
~ EmptyPrefetch: Fichiers Prefetcher supprimés (7)
---\\ NON TRAITÉ. (0)
~ Le système a été redémarré.
***** ~ Fin de rapport terminé en 00h04mn38s