Posté le 1 mars 2021
Télécharger | Reposter | Largeur fixe

start::
CreateRestorePoint:
CloseProcesses:
Hosts:
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-12-20] (Glarysoft LTD -> Glarysoft Ltd
C:\Program Files (x86)\Glary Utilities 5
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-12-20] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-12-20] (Glarysoft LTD -> Glarysoft Ltd)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Origin Web Helper Service => 2
MSCONFIG\Services: OverwolfUpdater => 3
MSCONFIG\Services: Razer Game Manager Service => 2
MSCONFIG\Services: RealtekCU => 2
MSCONFIG\Services: rkrtservice => 2
MSCONFIG\Services: RzActionSvc => 2
MSCONFIG\Services: RzKLService => 2
MSCONFIG\Services: zksvc => 3
MSCONFIG\startupreg: Discord => C:\Users\Mathis\AppData\Local\Discord\Update.exe --processStart Discord.exe
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: SearcherBar => "C:\Windows\system32\mshta.exe" "C:\SearcherBar\run.hta"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-70850525-3568131564-1485062189-1000\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-70850525-3568131564-1485062189-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-70850525-3568131564-1485062189-1000\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-70850525-3568131564-1485062189-1000\...\StartupApproved\Run: => "Spotify"
FirewallRules: [UDP Query User{B7035D61-E6D7-4F24-AEAE-23B7EEB110D4}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.487\opera.exe] => (Block) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.487\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{E64A3B98-40A0-4BE2-B934-C84309E10D1B}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.487\opera.exe] => (Block) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.487\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{A2CFAE66-2378-46D9-A7A4-F8EA370FA5A6}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.473\opera.exe] => (Block) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.473\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{9EE33DCE-A9CE-4250-A30A-920C9A1069AA}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.473\opera.exe] => (Block) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.473\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{11AF86F7-35D7-400B-BCA7-6FC1041E7E43}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.465\opera.exe] => (Allow) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.465\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{8A6BDF74-7DE6-4AF7-B895-B5E733FA5140}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.465\opera.exe] => (Allow) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.465\opera.exe => Pas de fichier
FirewallRules: [{6ACC8BE1-4F17-43AB-9F9C-76B46CDB643B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{BD6EB527-5B86-4782-98EA-DCB6B1B9F79E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [UDP Query User{C6A02FBC-3509-414D-8936-93EA14674854}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.459\opera.exe] => (Allow) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.459\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{C7A7F3E1-79A9-42D0-B98B-6C127AEFE8AD}C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.459\opera.exe] => (Allow) C:\users\mathis\appdata\local\programs\opera gx\72.0.3815.459\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{1FE52E08-86CF-405B-A17D-726872E4DD6C}C:\users\mathis\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Allow) C:\users\mathis\appdata\local\programs\opera\73.0.3856.284\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{47D3B12F-3806-4298-9647-89E8238C8298}C:\users\mathis\appdata\local\programs\opera\73.0.3856.284\opera.exe] => (Allow) C:\users\mathis\appdata\local\programs\opera\73.0.3856.284\opera.exe => Pas de fichier
FirewallRules: [{205B1D67-EEEA-4852-906B-AE10CB9388C1}] => (Allow) C:\Users\Mathis\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{4630A5B4-9609-4CBF-801F-9DE6D874E789}] => (Allow) C:\Users\Mathis\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
U3 idsvc; pas de ImagePath
U4 napagent; pas de ImagePath
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2020-12-31] (Glarysoft LTD -> Glarysoft Ltd)
2021-02-28 20:42 - 2021-02-28 20:41 - 000306607 _____ C:\Users\Mathis\Desktop\ZHPDiag.txt
2021-02-28 20:32 - 2021-02-28 20:41 - 000000000 ____D C:\Users\Mathis\AppData\Roaming\ZHP
2021-02-28 20:32 - 2021-02-28 20:32 - 003466392 _____ (Nicolas Coolman) C:\Users\Mathis\Desktop\ZHPSuite.exe
2021-02-28 20:32 - 2021-02-28 20:32 - 000000866 _____ C:\Users\Mathis\Desktop\ZHPSuite.lnk
2021-02-28 20:32 - 2021-02-28 20:32 - 000000000 ____D C:\Users\Mathis\AppData\Local\ZHP
2021-02-28 12:05 - 2021-02-28 12:05 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-02-27 04:54 - 2021-02-27 17:35 - 000000000 ____D C:\Users\Mathis\AppData\Local\BitTorrentHelper
2021-02-27 04:53 - 2021-02-27 17:35 - 000000000 ____D C:\Users\Mathis\AppData\Roaming\BitTorrent
2021-02-27 04:53 - 2021-02-27 05:01 - 000000000 ____D C:\Users\Mathis\AppData\LocalLow\BitTorrent
2021-02-27 04:53 - 2021-02-27 04:53 - 000000921 _____ C:\Users\Mathis\Desktop\BitTorrent.lnk
2021-02-27 04:53 - 2021-02-27 04:53 - 000000901 _____ C:\Users\Mathis\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2021-02-27 04:52 - 2021-02-27 04:52 - 004710896 _____ (BitTorrent Inc.) C:\Users\Mathis\Desktop\BitTorrent.exe
2021-02-27 04:52 - 2021-02-27 04:52 - 000000000 ____D C:\Users\Mathis\AppData\Local\Adaware
2021-02-24 22:59 - 2021-02-25 05:01 - 000000000 ____D C:\ProgramData\Avast Software
2021-02-24 22:59 - 2021-02-24 22:59 - 000232168 _____ (AVAST Software) C:\Users\Mathis\Desktop\avast_free_antivirus_setup_online.exe
2021-02-24 14:31 - 2021-02-24 14:31 - 008463216 _____ (Malwarebytes) C:\Users\Mathis\Desktop\adwcleaner_8.1.exe
EmptyTemp:
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh winsock reset
end::

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.