cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2014.12.10.252 by Nicolas Coolman (10/12/2014)
~ Run by Basta (Administrator) (11/12/2014 15:46:16)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Basta\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Basta\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Windows 7, 64-bit Service Pack 1 (Build 7601)


---\\ Services (0)
~ No malicious items found.


---\\ Browser internet (7)
REPLACED Proxy: ProxyOverride ( ;*.local )
REPLACED IE Params: Start Page ( about:Tabs )
REPLACED IE Params: Default_Search_URL ( hxxp://www.sweet-page.com/web/?type=ds&ts=1416041350&from=cor&uid=TOSHIBAXMK3265GSXN_61EFDFSFBXX61EF[...] )
REPLACED IE Params: Search Page ( hxxp://www.sweet-page.com/web/?type=ds&ts=1416041350&from=cor&uid=TOSHIBAXMK3265GSXN_61EFDFSFBXX61EF[...] )
REPLACED IE Params: Default_Search_URL ( hxxp://www.sweet-page.com/web/?type=ds&ts=1416041350&from=cor&uid=TOSHIBAXMK3265GSXN_61EFDFSFBXX61EF[...] )
REPLACED IE Params: Search Page ( hxxp://www.sweet-page.com/web/?type=ds&ts=1416041350&from=cor&uid=TOSHIBAXMK3265GSXN_61EFDFSFBXX61EF[...] )
REPLACED Chrome URL: "hxxp://www.sweet-page.com/?type=hp&ts=1416041350&from=cor&uid=TOSHIBAXMK3265GSXN_61EFDFSFBXX61EFDFS[...]


---\\ Hosts file (1)
~ The hosts file is legitimate (21)


---\\ Scheduled automatic tasks. (0)
~ No malicious items found.


---\\ Explorer ( File, Folder) (94)
MOVED: C:\Program Files (x86)\Disk Speedup (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\AsInvoker.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\asohtm.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\asores.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\atl90.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Chinese_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DA [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Danish_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DE [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DefragReport [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DSU.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\dsub4u.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DSUDefragServiceManager.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DSUDefragSrv.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DSUDefragSrv64.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\DSUHelper.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\dsusys.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Dutch_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\ENG [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\eng_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\ES [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\FI [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Finnish_uninst_fi.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\FR [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\French_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\German_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\greek_uninst_el.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\HighestAvailable.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\IT [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Italian_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\JA [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Japanese_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\KillDSUProcesses.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\korean_uninst_ko.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\lang.lng [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\license.txt [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90CHS.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90CHT.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90DEU.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90ENU.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90ESN.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90ESP.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90FRA.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90ITA.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90JPN.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\MFC90KOR.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\mfc90u.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Microsoft.VC90.ATL.manifest [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Microsoft.VC90.CRT.manifest [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Microsoft.VC90.MFC.manifest [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Microsoft.VC90.MFCLOC.manifest [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\msvcp90.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\msvcr90.dll [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\NL [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\NO [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Norwegian_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\polish_uninst_pl.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\portugese_uninst_pt.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Portuguese_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\PT_BR [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\RequireAdministrator.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\RU [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\russian_uninst_ru.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\spanish_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\SV [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\swedish_uninst.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\TPS.ico [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\traditionalcn_uninst_zh-tw.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\Turkish_uninst_tr.ini [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\unins000.dat [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\unins000.exe [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\unins000.msg [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Disk Speedup\ZH_CN [ - ] (PUP.DiskSpeedup)
MOVED: C:\Program Files (x86)\Iminent (Adware.IMBooster)
MOVED: C:\Program Files (x86)\Iminent\inst [ - ] (Adware.IMBooster)
MOVED: C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx64.dll [ - ] (Adware.IMBooster)
MOVED: C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll [ - ] (Adware.IMBooster)
MOVED: C:\ProgramData\WindowsMangerProtect (PUP.Fuyu)
MOVED: C:\ProgramData\WindowsMangerProtect\update [ - ] (PUP.Fuyu)
MOVED: C:\ProgramData\StormAlert (Adware.StormAlert)
MOVED: C:\ProgramData\StormAlert\data.dat [ - ] (Adware.StormAlert)
MOVED: C:\ProgramData\StormAlert\StormAlert.ico [ - ] (Adware.StormAlert)
MOVED: C:\ProgramData\StormAlert\Uninstall.exe [ - ] (Adware.StormAlert)
MOVED: C:\ProgramData\Systweak (PUP.Systweak)
MOVED: C:\ProgramData\Systweak\DSU [ - ] (PUP.Systweak)
MOVED: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Speedup (PUP.DiskSpeedup)
MOVED: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Speedup\Disk Speedup.lnk [ - ] (PUP.DiskSpeedup)
MOVED: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Speedup\Uninstall Disk Speedup.lnk [ - ] (PUP.DiskSpeedup)
MOVED: C:\Users\Basta\AppData\Roaming\Systweak (PUP.Systweak)
MOVED: C:\Users\Basta\AppData\Roaming\Systweak\DSU [ - ] (PUP.Systweak)
MOVED: C:\Users\Basta\AppData\Local\StormAlert (Adware.StormAlert)
MOVED: C:\Users\Basta\AppData\Local\StormAlert\data2.dat [ - ] (Adware.StormAlert)
MOVED: C:\Users\Basta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage[] (PUP.SpecialSavings)
MOVED: C:\Users\Basta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal[] (PUP.SpecialSavings)


---\\ Registry ( Key, Value, Data) (35)
DELETED: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} [http://www.default-search.net/search?sid=503&aid=114&itype=n&ver=13986&tm=552&src=ds&p={searchTerms}] [default-search.net] (Hijacker.SearchNet)
DELETED: HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} [http://www.default-search.net/search?sid=503&aid=114&itype=n&ver=13986&tm=552&src=ds&p={searchTerms}] [default-search.net] (Hijacker.SearchNet)
DELETED: HKCR\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} [IMinent WebBooster (BHO)] (Adware.IMBooster)
DELETED: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465} [ShopperReports.dll] (Adware.ShopperReports)
DELETED: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754} [ShoppingReport.dll] (Adware.ShoppingReport)
DELETED: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B} [BabylonToolbar.dll] (PUP.Babylon)
DELETED: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} [BabylonToolbar.dll] (PUP.Babylon)
DELETED: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} [BabylonToolbarTlbr.dll] (PUP.Babylon)
DELETED: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} [ShoppingReport.dll] (Adware.ShoppingReport)
DELETED: HKCR\protector_dll.protectorbho [Google Toolbar Notifier BHO] (PUP.BProtector)
DELETED: HKCR\protector_dll.protectorbho.1 [Google Toolbar Notifier BHO] (PUP.BProtector)
DELETED: HKCR\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36} [IBrowserHelperObject] (Adware.IMBooster)
DELETED: HKCR\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113} [IScriptExtender] (Adware.IMBooster)
DELETED: HKCR\AppID\Iminent.Webbooster.Internetexplorer.dll [] (Adware.IMBooster)
DELETED: HKCR\IminentWebBooster.BrowserHelperObject (Adware.IMBooster)
DELETED: HKCR\IminentWebBooster.BrowserHelperObject.1 (Adware.IMBooster)
DELETED: HKCR\IminentWebBooster.ScriptExtender (Adware.IMBooster)
DELETED: HKCR\IminentWebBooster.ScriptExtender.1 (Adware.IMBooster)
DELETED: HKCU\Software\Iminent (Adware.IMBooster)
DELETED: HKCU\Software\InstallCore (Adware.InstallCore)
DELETED: HKCU\Software\Linkey (PUP.LinkeySearch)
DELETED: HKCU\Software\Softonic (PUP.Softonic)
DELETED: HKCU\Software\Systweak (PUP.Systweak)
DELETED: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP (Adware.IMBooster)
DELETED: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect (PUP.Fuyu)
DELETED: [X64] HKLM\SOFTWARE\Iminent (Adware.IMBooster)
DELETED: HKLM\SOFTWARE\Wow6432Node\Iminent (Adware.IMBooster)
DELETED: HKLM\SOFTWARE\Wow6432Node\SmdmF (SettingsManager)
DELETED: HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect (PUP.Fuyu)
DELETED: HKLM\SOFTWARE\Wow6432Node\sweet-pageSoftware (PUP.SweetPage)
DELETED: HKLM\SOFTWARE\Wow6432Node\Systweak (PUP.Systweak)
DELETED: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP (Adware.IMBooster)
DELETED: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\StormAlert (Adware.StormAlert)
DELETED: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateAppEnable_RASAPI32 (PUP.AppEnable)
DELETED: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateAppEnable_RASMANCS (PUP.AppEnable)



---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)


End of clean at 15:51:29

Publicité


Signaler le contenu de ce document

Publicité