~ ZHPFix v2020.2.28.16 by Nicolas Coolman (2020/02/28) ~ Run by martine-g (Administrator) (05/03/2020 10:15:42) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Report : C:\Users\martine-g\Desktop\ZHPFix.txt ~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\ ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 10 Home, 64-bit (Build 18363) ---\\ SCRIPT DE L'UTILISATEUR. (48) Script ZHPFix CreateRestorePoint EmptyProxy EmptyPrefetch EmptyCLSID EmptyFlash EmptyTemp EmptyTracing C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mabloidgodmbnmnhoenmhlcjkfelomgp =>SUP.Optional.MindSpark HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\OIShellExt =>.SUP.Orphan HKLM\Software\Classes\CLSID\{38FB5F89-9641-413E-86EA-2F804A88762C} =>.SUP.Orphan HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\OIShellExt =>.SUP.Orphan HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\OIShellExt =>.SUP.Orphan HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan HKLM\Software\Classes\Drive\shellex\ContextMenuHandlers\OIShellExt =>.SUP.Orphan C:\WINDOWS\Installer\52300723.msp =>.SUP.Obsolete.Adobe C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\025 =>.SUP.Temporary.Chrome C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\060 =>.SUP.Temporary.Chrome C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\066 =>.SUP.Temporary.Chrome C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\068 =>.SUP.Temporary.Chrome [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe.FriendlyAppName =>.Unsigned [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\martine-g\Desktop\ABStandard.exe.FriendlyAppName =>.SUP.Orphan.MUICache [HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe.FriendlyAppName =>.Unsigned [HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\martine-g\Desktop\ABStandard.exe.FriendlyAppName =>.SUP.Orphan.MUICache HKCU\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\SOFTWARE\AVG =>.AVG Software [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AVGUI.exe =>.AVG Software HKLM\SOFTWARE\AVG =>.AVG Software HKLM\SOFTWARE\WOW6432Node\AVG =>.AVG Software HKCU\SOFTWARE\AVG =>.AVG Software HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\SOFTWARE\AVG =>.AVG Software O43 - CFD: 04/03/2020 - [] D -- C:\ProgramData\AVG =>.AVG Software O43 - CFD: 04/03/2020 - [] D -- C:\Users\martine-g\AppData\Local\Avg =>.AVG Software C:\Users\martine-g\AppData\Local\Temp\{_av_312d9252-c71c-4c84-b171-f4ad46e22098} O87 - FAEL: "{8CCD975E-9FBF-44EC-8E62-3CBDD9FFDEE7}" [In-None-P6-TRUE] .(...) -- E:\fscommand\CKSocketServer.exe [Unsigned] (.not file.) =>.SUP.Orphan O87 - FAEL: "{88A3C68E-21AA-4568-AA17-C223B0AE8658}" [In-None-P17-TRUE] .(...) -- E:\fscommand\CKSocketServer.exe [Unsigned] (.not file.) =>.SUP.Orphan O87 - FAEL: "{33A0CB95-2031-4D42-B9AB-7F8849BE56CB}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe [Unsigned] (.not file.) =>.SUP.Orphan O87 - FAEL: "{1E3AE80A-4ACB-4C88-9491-C447C4A211C6}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe [Unsigned] (.not file.) =>.SUP.Orphan O87 - FAEL: "{D4A46815-D558-4BEA-A707-2A3B9719C674}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe [Unsigned] (.not file.) =>.SUP.Orphan O87 - FAEL: "{93386A7A-FA7F-4224-AEBA-4A937F9F252E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe [Unsigned] (.not file.) =>.SUP.Orphan O87 - FAEL: "{37F3A757-7F39-478D-B688-DD4A812A4B4E}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [Unsigned] (.not file.) =>.SUP.Orphan O87 - FAEL: "{E0373642-CEE5-48C4-95A7-2DA7B0E24124}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [Unsigned] (.not file.) =>.SUP.Orphan O23 - Service: HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (...) - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (.not file.) =>.Huawei Technologies Co.,Ltd SR - Auto [00/00/0000] [ 0] HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (...) - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (.not file.) [Unsigned] =>.Huawei Technologies Co.,Ltd O3 - Toolbar: 0xE3EFEB7F196B494398D2FFB09D4B49CA0124060000 - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.) ---\\ LOGICIEL. (0) ---\\ SERVICE. (1) ABSENT Service: HuaweiHiSuiteService64.exe [No File found] ---\\ TÂCHE PLANIFIÉE. (0) ---\\ NAVIGATEUR INTERNET. (1) SUPPRIMÉ Valeur Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} [HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser] ---\\ EXPLORATEUR ( Dossiers, Fichiers ). (28) DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\AdobeARM.log DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\aria-debug-6400.log DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\chrome_installer.log DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\HisuiteSetup.log DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\StructuredQuery.log DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wmsetup.log DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\CCleaner64.exe.png SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\MARTIN~1\AppData\Local\Temp\nslE45D.tmp SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\MARTIN~1\AppData\Local\Temp\nst1243.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\tmp53C9.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\tmp91EA.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsu5553.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsu55E0.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsuE1A1.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsuE26D.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsuE2CC.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsuEE46.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsuEF12.tmp DEPLACÉ Fichier Temp: C:\Users\MARTIN~1\AppData\Local\Temp\wsuEF71.tmp SUPPRIMÉ Dossier : C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mabloidgodmbnmnhoenmhlcjkfelomgp DEPLACÉ Fichier : C:\WINDOWS\Installer\52300723.msp SUPPRIMÉ Dossier : C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\025 SUPPRIMÉ Dossier : C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\060 SUPPRIMÉ Dossier : C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\066 SUPPRIMÉ Dossier : C:\Users\martine-g\AppData\Local\Google\Chrome\User Data\Default\File System\068 SUPPRIMÉ Dossier : C:\ProgramData\AVG SUPPRIMÉ Dossier : C:\Users\martine-g\AppData\Local\Avg SUPPRIMÉ Dossier : C:\Users\martine-g\AppData\Local\Temp\{_av_312d9252-c71c-4c84-b171-f4ad46e22098} ---\\ REGISTRE ( Clés, Valeurs, Données ). (31) SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 [WinRAR32 ] SUPPRIMÉ Redémarrage Clé ^: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} SUPPRIMÉ Clé: HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\OIShellExt [OIShellExt ] SUPPRIMÉ Redémarrage Clé ^: HKLM\Software\Classes\CLSID\{38FB5F89-9641-413E-86EA-2F804A88762C} SUPPRIMÉ Clé: HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\OIShellExt [OIShellExt ] SUPPRIMÉ Clé: HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\OIShellExt [OIShellExt ] SUPPRIMÉ Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 [WinRAR32 ] SUPPRIMÉ Clé: HKLM\Software\Classes\Drive\shellex\ContextMenuHandlers\OIShellExt [OIShellExt ] SUPPRIMÉ Clé: HKCU\SOFTWARE\AvastAdSDK [AvastAdSDK ] ABSENT Clé: HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\SOFTWARE\AvastAdSDK SUPPRIMÉ Clé: HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\SOFTWARE\AVG [AVG ] SUPPRIMÉ Clé: HKLM\SOFTWARE\AVG [AVG ] ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\AVG ABSENT Clé: HKCU\SOFTWARE\AVG ABSENT Clé: HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\SOFTWARE\AVG SUPPRIMÉ Valeur FirewallRules: {8CCD975E-9FBF-44EC-8E62-3CBDD9FFDEE7} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] SUPPRIMÉ Valeur FirewallRules: {88A3C68E-21AA-4568-AA17-C223B0AE8658} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] SUPPRIMÉ Valeur FirewallRules: {33A0CB95-2031-4D42-B9AB-7F8849BE56CB} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] SUPPRIMÉ Valeur FirewallRules: {1E3AE80A-4ACB-4C88-9491-C447C4A211C6} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] SUPPRIMÉ Valeur FirewallRules: {D4A46815-D558-4BEA-A707-2A3B9719C674} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] SUPPRIMÉ Valeur FirewallRules: {93386A7A-FA7F-4224-AEBA-4A937F9F252E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] SUPPRIMÉ Valeur FirewallRules: {37F3A757-7F39-478D-B688-DD4A812A4B4E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] SUPPRIMÉ Valeur FirewallRules: {E0373642-CEE5-48C4-95A7-2DA7B0E24124} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules] ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\HuaweiHiSuiteService64.exe ABSENT Clé Toolbar: HKLM64\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} ~ EmptyProxy: Aucune modification. SUPPRIMÉ Valeur: C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache] SUPPRIMÉ Valeur: C:\Users\martine-g\Desktop\ABStandard.exe.FriendlyAppName [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache] SUPPRIMÉ Valeur: C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe.FriendlyAppName [HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache] SUPPRIMÉ Valeur: C:\Users\martine-g\Desktop\ABStandard.exe.FriendlyAppName [HKU\S-1-5-21-1641131797-2025046160-4261002088-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache] SUPPRIMÉ Valeur: AVGUI.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run] ---\\ COMMANDE. (6) CreateRestorePoint: OK ~ EmptyPrefetch: Fichiers Prefetcher supprimés (153) ~ EmptyCSID: Dossiers CLSID vides supprimés (0) ~ EmptyFlash: Dossier FlashPlayer vide. ~ EmptyTemp: Dossier Local temp partiellement vidé (19) ~ EmptyTracing: Clés tracing supprimées (6) ---\\ NON TRAITÉ. (0) ~ Le système a été redémarré. ***** ~ Fin de rapport terminé en 00mn00s