cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.3.2.103 by Nicolas Coolman (02/03/2015)
~ Run by Kin� (Administrator) (03/03/2015 17:27:15)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : R�parer
~ Report : C:\Users\Kin�\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Kin�\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit (Build 7600)


---\\ Service. (0)
~ Aucun �l�ment malicieux trouv�.


---\\ Navigateur internet. (3)
REMPLAC� IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [hxxp://www.omniboxes.com/web/?type=ds&ts=1424418859&from=obw&uid=ST500DM002-1BD1[...]] (PUP.Omniboxes)
REMPLAC� IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Search Page [hxxp://www.omniboxes.com/web/?type=ds&ts=1424418859&from=obw&uid=ST500DM002-1BD1[...]] (PUP.Omniboxes)
REMPLAC� Chrome URL: hxxp://www.omniboxes.com/?type=hp&ts=1424418859&from=obw&uid=ST500DM002-1BD142_W3T4NT31XXXXW3T4NT31 (PUP.Omniboxes)


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (2)
SUPPRIM� t�che: [GPUP] [C:\Program Files (x86)\GetPrivate\gpup.exe (Not File) ] (PUP.GetPrivate)
SUPPRIM� t�che: [RocketTab] [C:\Program Files (x86)\Search Extensions\Client.exe (Not File) ] (PUP.RockTurner)


---\\ Explorateur ( Dossiers, Fichiers ). (57)
DEPLAC� fichier: C:\Users\Kin�\AppData\Roaming\8D38.tmp.exe [ - ] (Adware.Pirrit)
DEPLAC� fichier: C:\Program Files (x86)\Search Extensions\certmanager.exe [ - ] (PUP.RocketTab)
DEPLAC� fichier: C:\Program Files (x86)\Search Extensions\config.dat [ - ] (PUP.RocketTab)
DEPLAC� fichier: C:\Program Files (x86)\Search Extensions\makecert.exe [Microsoft Corporation - ECM MakeCert] (PUP.RocketTab)
DEPLAC� fichier: C:\Program Files (x86)\Search Extensions\TrustedRoot.cer [ - ] (PUP.RocketTab)
DEPLAC� dossier: C:\Program Files (x86)\Search Extensions\Resources (PUP.RocketTab)
DEPLAC� dossier: C:\Program Files (x86)\Software\CrashReports (Adware.Boxore)
DEPLAC� dossier: C:\Program Files (x86)\Software\Update (Adware.Boxore)
DEPLAC� dossier: C:\Program Files (x86)\Search Extensions (PUP.RocketTab)
DEPLAC� dossier: C:\Program Files (x86)\Software (Adware.Boxore)
DEPLAC� dossier: C:\Program Files\Enigma Software Group\SpyHunter (PUP.EnigmaSoftware)
DEPLAC� dossier: C:\Program Files\Enigma Software Group (PUP.EnigmaSoftware)
DEPLAC� dossier: C:\ProgramData\DriverGenius (PUP.DriverGenius)
DEPLAC� dossier: C:\Users\Kin�\AppData\Roaming\SmileFiles (PUP.SmileFiles)
DEPLAC� dossier: C:\Users\Kin�\AppData\Local\Software\CrashReports (Adware.Boxore)
DEPLAC� dossier: C:\Users\Kin�\AppData\Local\Software (Adware.Boxore)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\225eeee1-987a-4dd9-b824-9781540aa2ae\fastplayersetup.exe [ - ] (PUP.FastPlayer)
DEPLAC� dossier: C:\Users\KIN~1\AppData\Local\Temp\225eeee1-987a-4dd9-b824-9781540aa2ae (PUP.FastPlayer)
DEPLAC� fichier: C:\Windows\Prefetch\SPYHUNTER4 (2).EXE-09F1F7F8.pf [ - ] (Crapware.SpyHunter)
DEPLAC� fichier: C:\Users\Kin�\Downloads\SpyHunter4 (1).exe [Enigma Software Group USA, LLC. - SpyHunter Downloader] (PUP.EnigmaSoftware)
DEPLAC� fichier: C:\Users\Kin�\Downloads\SpyHunter4 (2).exe [Enigma Software Group USA, LLC. - SpyHunter Downloader] (PUP.EnigmaSoftware)
DEPLAC� fichier: C:\Users\Kin�\Downloads\SpyHunter4.exe [Enigma Software Group USA, LLC. - SpyHunter Downloader] (PUP.EnigmaSoftware)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\ReimagePackage.exe [Reimage� - Reimage Repair] (PUP.ReimageRepair)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\setup_326.exe [The Software Group - Software Update Setup] (Adware.Boxore)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\n5063\BoBrowser04_12-6c3841b8.exe [ClaraLabs - ClaraSetup] (PUP.BoBrowser)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\is1242154493\122704424_stp.EXE [Smart PC Solutions - PC Speed Maximizer] (PUP.SmartPCSolutions)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\is1242154493\192745171_stp.EXE [Smart PC Solutions - PC Speed Maximizer] (PUP.SmartPCSolutions)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\59F8tmp\propccleaner.exe [Pro PC Cleaner - This installer database contains the logic and data required to install Pro PC Cleaner.] (PUP.DoctorPC)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_adwcleaner.fr.uptodown.com_0.localstorage [ - ] (PUP.UpToDown)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_adwcleaner.fr.uptodown.com_0.localstorage-journal [ - ] (PUP.UpToDown)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdncache-a.akamaihd.net_0.localstorage [ - ] (PUP.AkamaiHD)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_cdncache-a.akamaihd.net_0.localstorage-journal [ - ] (PUP.AkamaiHD)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_downspeedtest.com_0.localstorage [ - ] (Adware.ScriptHost)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_downspeedtest.com_0.localstorage-journal [ - ] (Adware.ScriptHost)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage [ - ] (Adware.MyWebSearch)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage-journal [ - ] (Adware.MyWebSearch)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fr.reimageplus.com_0.localstorage [ - ] (PUP.ReimageRepair)
DEPLAC� fichier*: C:\Users\Kin�\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_fr.reimageplus.com_0.localstorage-journal [ - ] (PUP.ReimageRepair)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\Elite Unzip Setup Log.txt [ - ] (Adware.MyWebSearch)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\Elite Unzip Uninstall Log.txt [ - ] (Adware.MyWebSearch)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\IminentSetup-NewVer_22april.exe [SIEN - Iminent] (Adware.IMBooster)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\pennybee_installer_{14A8DC4A-3053-4BFE-8384-65B9739A9B0D-2014_07_22}_1406029643.txt [ - ] (PUP.PennyBee)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\qtsingleapp-iLivid-42b6-1-lockfile [ - ] (Adware.Bandoo)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\reimage.log [ - ] (PUP.ReimageRepair)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\SearchProtectINT.dat [ - ] (PUP.SearchProtect)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\SearchProtectINT.exe [Conduit - Search Protect by conduit] (PUP.SearchProtect)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-hardwareprofile-v0001 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-install-v0001 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-install-v0003 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-processes-v0001 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-processes-v0002 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-scheduledtasks-v0001 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-softwareregkeys-v0001 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-softwareregkeys-v0002 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-uninstall-v0001 [ - ] (PUP.Vitruvian)
DEPLAC� fichier: C:\Users\KIN~1\AppData\Local\Temp\vitruvian-installer-uninstall-v0002 [ - ] (PUP.Vitruvian)
DEPLAC� dossier: C:\Users\Kin�\AppData\Local\com (PUP.Optional)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (59)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Clients\StartMenuInternet\BoBrowser.DKJ6ETCIRTJMU5YA6YYXYNGRVA ["C:\Users\Kin�\AppData\Local\BoBrowser\Application\bobrowser.exe"] (PUP.BoBrowser)
SUPPRIM� cl�*: HKCU\Software\InstallCore\1I1T1Q1S [] (Heuristic.InstallCore)
SUPPRIM� cl�*: HKCU\Software\InstallCore\Uninstall [] (Heuristic.InstallCore)
SUPPRIM� valeur: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_12 [] (PUP.CrossRider)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.htm\OpenWithProgIDs\\BoBrowsHTM.DKJ6ETCIRTJMU5YA6YYXYNGRVA [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.html\OpenWithProgIDs\\BoBrowsHTM.DKJ6ETCIRTJMU5YA6YYXYNGRVA [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.shtml\OpenWithProgIDs\\BoBrowsHTM.DKJ6ETCIRTJMU5YA6YYXYNGRVA [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.webp\OpenWithProgIDs\\BoBrowsHTM.DKJ6ETCIRTJMU5YA6YYXYNGRVA [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.xht\OpenWithProgIDs\\BoBrowsHTM.DKJ6ETCIRTJMU5YA6YYXYNGRVA [] (PUP.BoBrowser)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}\InprocServer32 [C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll] (PUP.ReimageRepair)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}\InprocServer32 [C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll] (PUP.ReimageRepair)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484} [ReiEngine Class] (PUP.ReimageRepair)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB} [CompReg Class] (PUP.ReimageRepair)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-637599529-3795449849-3917530005-1000\Software\BearShare [] (PUP.BearShare)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-637599529-3795449849-3917530005-1000\Software\InstallCore [] (Adware.InstallCore)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-637599529-3795449849-3917530005-1000\Software\nuevos-programas.com [] (PUP.Optional)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-637599529-3795449849-3917530005-1000\Software\RocketTabInstalled [] (PUP.RocketTab)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-637599529-3795449849-3917530005-1000\Software\Search Extensions [] (PUP.RocketTab)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-637599529-3795449849-3917530005-1000\Software\SmileFiles [] (PUP.SmileFiles)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-637599529-3795449849-3917530005-1000\Software\Vittalia [] (PUP.Vittalia)
SUPPRIM� cl�*: HKCU\Software\BearShare [] (PUP.BearShare)
SUPPRIM� cl�*: HKCU\Software\InstallCore [] (Adware.InstallCore)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ultimate Codecs Setup Wizard Packages [Ultimate Codecs Setup Wizard Packages] (Adware.InstallCore)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinZip Packages [WinZip Packages] (Adware.InstallCore)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\omniboxes.com [] (PUP.Omniboxes)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\reimageplus.com [] (PUP.ReimageRepair)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\searchyahoo.com [] (Adware.SearchYa)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\BearShare [] (PUP.BearShare)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\BearShare.AudioCD [] (PUP.BearShare)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\BoBrowsHTM.DKJ6ETCIRTJMU5YA6YYXYNGRVA [BoBrowser HTML Document] (PUP.BoBrowser)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Magnet [iLivid.torrent] (Adware.Bandoo)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3COMClassService [Update3COMClass] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3COMClassService.1.0 [Update3COMClass] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc.1.0 [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\BearShareSetup-r701-w-bc.exe [] (PUP.BearShare)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\BearShareSetup-r702-w-bc.exe [] (PUP.BearShare)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\iLividSetup-r197-n-bc.exe [] (Adware.Bandoo)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\iMeshSetup-r1491-n-bc.exe [] (PUP.iMesh)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\NoMoneyiMeshSetupstub.exe [] (PUP.iMesh)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\bobrowser.exe [C:\Users\Kin�\AppData\Local\BoBrowser\Application\bobrowser.exe] (PUP.BoBrowser)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Driver-Soft [] (PUP.DriverSoft)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\EZ Software Updater [] (Adware.EZSoftwareUpdater)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\omniboxesSoftware [] (PUP.Omniboxes)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\PhraseFinder_1.10.0.9 [] (PUP.PhraseFinder)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\RocketTab [] (PUP.RocketTab)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\SmileFiles [] (PUP.SmileFiles)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\BearShare.AudioCD [] (PUP.BearShare)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\BoBrowsHTM.DKJ6ETCIRTJMU5YA6YYXYNGRVA [BoBrowser HTML Document] (PUP.BoBrowser)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\Magnet [iLivid.torrent] (Adware.Bandoo)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\SoftwareUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\SoftwareUpdate.Update3COMClassService [Update3COMClass] (Adware.Boxore)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\SoftwareUpdate.Update3COMClassService.1.0 [Update3COMClass] (Adware.Boxore)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\SoftwareUpdate.Update3WebSvc [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Classes\SoftwareUpdate.Update3WebSvc.1.0 [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIM� cl�*: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BearShare [Musiclab, LLC] (PUP.BearShare)



---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scann�s : 73015
~ Items trouv�s : 0
~ Items r�par�s : 70


End of clean at 17:53:18
===================
ZHPCleaner-[R]-03032015-17_53_18.txt

Publicité


Signaler le contenu de ce document

Publicité