~ ZHPCleaner v2014.10.31.202 by Nicolas Coolman (31/10/2014)
~ Run by Michelle (Administrator)  (01/11/2014 13:50:18)
~ WebSite : http://nicolascoolman.fr
~ Forum : http://forum.nicolascoolman.fr
~ State version : Version à jour
~ Type : Réparer
~ Report : C:\Users\Michelle\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Michelle\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Windows 81, 64-bit  (Build 9600)


---\\  Service. (0)
~ Aucun élément malicieux trouvé.


---\\  Navigateur internet. (16)
REMPLACÉ Quicklaunch: C:\Users\Michelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk  (http://isearch.omiga-plus.com/?type=sc&ts=14148399[...])
REMPLACÉ TaskBar: C:\Users\Michelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk  (http://isearch.omiga-plus.com/?type=sc&ts=14148399[...])
REMPLACÉ TaskBar: C:\Users\Michelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk  (http://isearch.omiga-plus.com/?type=sc&ts=14148399[...])
REMPLACÉ Programs: C:\Users\Michelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk  (http://isearch.omiga-plus.com/?type=sc&ts=14148399[...])
REMPLACÉ IE Params: Default_Page_URL  ( hxxp://isearch.omiga-plus.com/?type=hp&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRK[...] )
REMPLACÉ IE Params: Default_Search_URL  ( hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA100010[...] )
REMPLACÉ IE Params: Start Page  ( hxxp://isearch.omiga-plus.com/?type=hp&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRK[...] )
REMPLACÉ IE Params: Search Page  ( hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA100010[...] )
REMPLACÉ IE Params: Default_Page_URL  ( hxxp://isearch.omiga-plus.com/?type=hp&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRK[...] )
REMPLACÉ IE Params: Default_Search_URL  ( hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA100010[...] )
REMPLACÉ IE Params: Start Page  ( hxxp://isearch.omiga-plus.com/?type=hp&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRK[...] )
REMPLACÉ IE Params: Search Page  ( hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA100010[...] )
REMPLACÉ IE Params: Default_Page_URL  ( hxxp://isearch.omiga-plus.com/?type=hp&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRK[...] )
REMPLACÉ IE Params: Default_Search_URL  ( hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA100010[...] )
REMPLACÉ IE Params: Start Page  ( hxxp://isearch.omiga-plus.com/?type=hp&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRK[...] )
REMPLACÉ IE Params: Search Page  ( hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA100010[...] )


---\\  Fichier hôte. (0)
~ Aucun élément malicieux trouvé.


---\\  Tâche planifiée. (1)
SUPPRIMÉ: [LaunchSignup] [Orphean] (PUP.MyPCBackup)


---\\  Explorateur  ( Dossiers, Fichiers ). (32)
DEPLACÉ: C:\WINDOWS\Tasks\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-1.job (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Tasks\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-11.job (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Tasks\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-2.job (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Tasks\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-3.job (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Tasks\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-4.job (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Tasks\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-5.job (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Tasks\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-5_user.job (PUP.CrossRider)
DEPLACÉ: C:\Program Files (x86)\HQ-Video-Pro-2.1V01.11\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-11.exe (PUP.CrossRider)
DEPLACÉ: C:\Program Files (x86)\HQ-Video-Pro-2.1V01.11\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-2.exe (PUP.CrossRider)
DEPLACÉ: C:\Program Files (x86)\HQ-Video-Pro-2.1V01.11\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-3.exe (PUP.CrossRider)
DEPLACÉ: C:\Program Files (x86)\HQ-Video-Pro-2.1V01.11\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-4.exe (PUP.CrossRider)
DEPLACÉ: C:\Program Files (x86)\HQ-Video-Pro-2.1V01.11\1ec8fbc4-c82a-4509-ae47-c366ceb95c7b-5.exe (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Prefetch\BOXORE.EXE-666CD123.pf (Adware.Boxore)
DEPLACÉ: C:\WINDOWS\Prefetch\BOXOREINSTALLER.EXE-62ECE059.pf (Adware.Boxore)
DEPLACÉ: C:\WINDOWS\Prefetch\HQ-VIDEO-PRO-2.1V01.11-BG.EXE-A4B085E9.pf (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Prefetch\HQ-VIDEO-PRO-2.1V01.11-CODEDO-1366ABAE.pf (PUP.CrossRider)
DEPLACÉ: C:\WINDOWS\Prefetch\JFILEMANAGERSETUP.EXE-DD4F0A9F.pf (PUP.JFileManager)
DEPLACÉ: C:\WINDOWS\Prefetch\MYPC BACKUP.EXE-D2D9F9B9.pf (PUP.MyPCBackup)
DEPLACÉ: C:\WINDOWS\Prefetch\OPTIMIZERPRO.EXE-ACF2EB05.pf (PUP.OptimizerPro)
DEPLACÉ: C:\WINDOWS\Prefetch\OPTIMIZERPRO.EXE-FA03D2EB.pf (PUP.OptimizerPro)
DEPLACÉ: C:\WINDOWS\Prefetch\OPTPROSTART.EXE-65F7E6B1.pf (PUP.OptimizerPro)
DEPLACÉ: C:\WINDOWS\Prefetch\PEPPERZIP.EXE-E23C0E69.pf (PUP.PepperZip)
DEPLACÉ: C:\WINDOWS\Prefetch\SALUS.EXE-83550553.pf (PUP.TalLtd)
DEPLACÉ: C:\WINDOWS\Prefetch\SALUS_UPDATE.EXE-02DEA6E0.pf (PUP.TalLtd)
DEPLACÉ: C:\WINDOWS\Prefetch\SIGNUP WIZARD.EXE-9554BD21.pf (PUP.MyPCBackup)
DEPLACÉ: C:\WINDOWS\Prefetch\SPEEDUPMYPC.EXE-1ECA6A27.pf (PUP.SpeedUpMyPC)
DEPLACÉ: C:\WINDOWS\Prefetch\SPEEDUPMYPC.EXE-7C35B7A1.pf (PUP.SpeedUpMyPC)
DEPLACÉ: C:\WINDOWS\Prefetch\SPEEDUPMYPC.TMP-5B62D31D.pf (PUP.SpeedUpMyPC)
DEPLACÉ: C:\WINDOWS\Prefetch\SUPTAB_V5.8.8.777_NOBLANK_AMY-A970715C.pf (PUP.SupTab)
DEPLACÉ: C:\WINDOWS\Prefetch\VOPACKAGE.EXE-1371A850.pf (Adware.Downware)
DEPLACÉ: C:\WINDOWS\Prefetch\VOPACKAGE.EXE-8B7798D6.pf (Adware.Downware)
DEPLACÉ: C:\WINDOWS\System32\Drivers\salus.sys (PUP.TalLtd)


---\\  Base de Registres ( Clés, Valeurs, Données ). (29)
SUPPRIMÉ: [X64] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611381131} [092950600ea001325d04029365df3cb90063831] (PUP.CrossRider)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\\http://isearch.omiga-plus.com/web/?ty[...] [omiga-plus] (Hijacker.OmigaPlus)
SUPPRIMÉ: HKCR\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298} [globalUpdate Update Plugin] (PUP.GlobalUpdate)
SUPPRIMÉ: HKCR\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} [globalUpdate.OneClickProcessLauncher] (PUP.GlobalUpdate)
SUPPRIMÉ: HKCR\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} [globalUpdate Update Plugin] (PUP.GlobalUpdate)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465} [ShopperReports.dll] (Adware.ShopperReports)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754} [ShoppingReport.dll] (Adware.ShoppingReport)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B} [BabylonToolbar.dll] (PUP.Babylon)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} [BabylonToolbar.dll] (PUP.Babylon)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} [BabylonToolbarTlbr.dll] (PUP.Babylon)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} [ShoppingReport.dll] (Adware.ShoppingReport)
REMPLACÉ: HKLM\...\FIREFOX.EXE\Shell\open\Command\\"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://isearch.omiga-plus.com/?type=sc&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRKJR2DRKJRX (Hijacker.OmigaPlus)
REMPLACÉ: HKLM\...\IEXPLORE.EXE\Shell\open\Command\\C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&ts=1414839988&from=tugs&uid=HGSTXHTS541010A9E680_JA1000102DRKJR2DRKJRX (Hijacker.OmigaPlus)
SUPPRIMÉ: HKCU\Software\Boxore (Adware.Boxore)
SUPPRIMÉ: HKCU\Software\globalUpdate (PUP.GlobalUpdate)
SUPPRIMÉ: HKCU\Software\InstalledBrowserExtensions (Adware.VidSaver)
SUPPRIMÉ: HKCU\Software\Tutorials (PUP.AgenceExclusive)
SUPPRIMÉ: HKCU\Software\TutoTag (PUP.AgenceExclusive)
SUPPRIMÉ: HKCU\Software\AppDataLow\Software\Crossrider (PUP.CrossRider)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\InstalledBrowserExtensions (Adware.VidSaver)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\Boxore (Adware.Boxore)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\GlobalUpdate (PUP.GlobalUpdate)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions (Adware.VidSaver)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\Salus (PUP.TalLtd)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\SupDp (PUP.SupTab)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\Tutorials (PUP.AgenceExclusive)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Salus (PUP.TalLtd)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\JFileManager_RASAPI32 (PUP.JFileManager)
SUPPRIMÉ: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\JFileManager_RASMANCS (PUP.JFileManager)



---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent  (Opera Software)
~ Réparation annulée par l'utilisateur  (Mozilla Firefox)


End of clean at 13:54:35