~ ZHPFix v2021.5.15.295 by Nicolas Coolman (2021/05/15)
~ Run by user (Administrator)  (28/05/2021 22:50:04)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\user\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)



---\\  SCRIPT DE L'UTILISATEUR.  (83)
Script ZHPFix 
FirewallRaz 
EmptyPrefetch 
EmptyTemp 


[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1  =>HackTool.KMSpico
C:\Program Files\KMSpico  =>HackTool.KMSpico
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32  =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}  =>.SUP.Orphan
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32  =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32  =>.SUP.Orphan
C:\Windows\Installer\235dade.msp  =>.SUP.Obsolete.Adobe
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\002  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\003  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\004  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\006  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\007  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\008  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\009  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\010  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\011  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\012  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\013  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\014  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\015  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\016  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\017  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\018  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\019  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\020  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\021  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\022  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\023  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\024  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\025  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\026  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\027  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\028  =>.SUP.Temporary.Chrome
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\029  =>.SUP.Temporary.Chrome

O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] . (. - .) -- 1621418026  =>.SUP.Orphan
O4 - HKUS\S-1-5-21-2678541173-3945003891-1277454714-1000\..\RunOnce: [Adobe Speed Launcher] . (. - .) -- 1621418026  =>.SUP.Orphan
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH2: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com  =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/  =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk  =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.19400 (winblue_ltsb_escrow.190617-1730)) -- C:\Windows\System32\ieframe.dll  =>.Microsoft Corporation
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = hichambouazza40
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1  =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{273ACE38-5A12-4E79-A1B6-54681428707E}: DhcpNameServer = 192.168.0.1  =>.Local IP Adress
O108 - CMH3: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL  =>.Microsoft Corporation®
O108 - CMH4: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL  =>.Microsoft Corporation®
O108 - CMH5: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL  =>.Microsoft Corporation®
O108 - CMH6: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL  =>.Microsoft Corporation®
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/  =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/  =>.Bing.com
O87 - FAEL: "{EA859887-E3BE-40BA-AC51-4EC43EE7C109}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LMabcoms.exe [Unsigned]
O87 - FAEL: "{BD623AE0-DEB9-465B-B45A-47EF7D87A64C}" [In-None-P17-TRUE] .(.Google LLC - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  =>.Google LLC®


---\\  LOGICIEL.  (0)


---\\  SERVICE.  (0)


---\\  TÂCHE PLANIFIÉE.  (0)


---\\  NAVIGATEUR INTERNET.  (18)
REMPLACÉ Donnée  Internet Explorer: http://www.google.com  [HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL]
REMPLACÉ Donnée  Internet Explorer: about:noadd-ons  [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Extensions Off Page]
REMPLACÉ Donnée  Internet Explorer: about:securityrisk  [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Security Risk Page]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL]
REMPLACÉ Donnée  Internet Explorer: http://go.microsoft.com/  [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL]
REMPLACÉ Donnée  Internet Explorer: about:noadd-ons  [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\\Extensions Off Page]
REMPLACÉ Donnée  Internet Explorer: about:securityrisk  [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\\Security Risk Page]
REMPLACÉ Donnée  URLSearchHooks: C:\Windows\System32\ieframe.dll  [HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}]
REFUSÉ Fichier URLSearchHook: C:\Windows\System32\ieframe.dll
REMPLACÉ Donnée  SearchScopes: www.bing.com/  [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL]
REMPLACÉ Donnée  SearchScopes: www.bing.com/  [HKLM64\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL]


---\\  EXPLORATEUR ( Dossiers, Fichiers ).  (30)
SUPPRIMÉ Dossier : C:\Program Files\KMSpico  
DEPLACÉ Fichier : C:\Windows\Installer\235dade.msp  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\002  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\003  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\004  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\006  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\007  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\008  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\009  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\010  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\011  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\012  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\013  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\014  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\015  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\016  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\017  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\018  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\019  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\020  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\021  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\022  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\023  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\024  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\025  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\026  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\027  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\028  
SUPPRIMÉ Dossier : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\029  
REFUSÉ Fichier  FirewallRules: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


---\\  REGISTRE ( Clés, Valeurs, Données ).  (21)
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 
SUPPRIMÉ Clé: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32  [WinRAR32  ]
ABSENT Clé: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} 
SUPPRIMÉ Clé: HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32  [WinRAR32  ]
SUPPRIMÉ Clé: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32  [WinRAR32  ]
SUPPRIMÉ Valeur  Run: Adobe Speed Launcher [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\]
ABSENT Valeur Run: HKU\S-1-5-21-2678541173-3945003891-1277454714-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\ [1621418026 ]
ABSENT Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\CLSID\B41DB860-8EE4-11D2-9906-E49FADC173CA}
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32
ABSENT Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
REMPLACÉ Donnée  TCPIP: hichambouazza40 [HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\Domain]
REMPLACÉ Donnée  TCPIP: 192.168.0.1  [HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer]
REMPLACÉ Donnée  TCPIP: 192.168.0.1  [HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{273ACE38-5A12-4E79-A1B6-54681428707E}\\DhcpNameServer]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX [XXX Groove GFS Context Menu Handler XXX3]
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\CLSID\6C467336-8281-4E60-8204-430CED96822D}
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\Directory\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX [XXX Groove GFS Context Menu Handler XXX4]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX [XXX Groove GFS Context Menu Handler XXX5]
SUPPRIMÉ Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX [XXX Groove GFS Context Menu Handler XXX6]
ABSENT Valeur FirewallRules: HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules [{EA859887-E3BE-40BA-AC51-4EC43EE7C109}]
SUPPRIMÉ Valeur  FirewallRules: {BD623AE0-DEB9-465B-B45A-47EF7D87A64C} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]


---\\  COMMANDE.  (0)


---\\  NON TRAITÉ.  (2)
Script ZHPFix 
FirewallRaz 

***** ~ Fin de rapport terminé en 00h00mn50s