cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.3.25.139 by Nicolas Coolman (25/03/2015)
~ Run by Manon (Administrator) (25/03/2015 09:29:34)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : R�parer
~ Report : C:\Users\Manon\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Manon\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 81, 64-bit (Build 9600)


---\\ Service. (0)
~ Aucun �l�ment malicieux trouv�.


---\\ Navigateur internet. (12)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.description", "iWebar"); (PUP.CrossRider)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.Resources_meta.value",[...] (PUP.CrossRider)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bu[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bu[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bu[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bu[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_no[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_no[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_re[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_re[...] (PUP.Monetization)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.name", "iWebar1.1"); (PUP.CrossRider)
REMPLAC�: [h50tj344.default-1410010643093] - user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.publisher", "iWebar"); (PUP.CrossRider)


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (0)
~ Aucun �l�ment malicieux trouv�.


---\\ Explorateur ( Dossiers, Fichiers ). (38)
DEPLAC� fichier: C:\Users\Manon\AppData\Roaming\OperatingSystemUtility.exe [Windows�Operating�Wizard�System - Windows�Operating�Wizard�System] (Adware.Pirrit)
DEPLAC� fichier: C:\Users\Manon\AppData\Roaming\SystemUtility.exe [Windows�Operating�Wizard�System - Windows�Operating�Wizard�System] (Adware.Pirrit)
DEPLAC� fichier: C:\Program Files (x86)\Senses\918d70ad-e60d-4ae4-a7ce-08a3afaf7514-11.exe [Object Browser - Senses exe] (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\Senses\918d70ad-e60d-4ae4-a7ce-08a3afaf7514-3.exe [Object Browser - Senses exe] (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\Senses\918d70ad-e60d-4ae4-a7ce-08a3afaf7514-4.exe [Object Browser - Senses exe] (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\1293297481.mxaddon (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\4d3dd602-bd58-4bbe-8f33-4173cdd55c94.crx (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\4d3dd602-bd58-4bbe-8f33-4173cdd55c94.xpi (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\92a0818e-eeca-474a-9379-e896b9f54b23.crx (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\background.html (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\iWebar-bg.exe [iWebar - iWebar exe] (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\iWebar-bho.dll [iWebar - iWebar BHO] (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\iWebar-bho64.dll [iWebar - iWebar BHO] (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\iWebar-buttonutil.dll (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\iWebar-buttonutil64.dll (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\iWebar-buttonutil64.exe [iWebar - iWebar exe] (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\iWebar.ico (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\iWebar\utils.exe (PUP.CrossRider)
DEPLAC� dossier: C:\Program Files (x86)\globalUpdate\CrashReports (PUP.GlobalUpdate)
DEPLAC� dossier: C:\Program Files (x86)\globalUpdate\Update (PUP.GlobalUpdate)
DEPLAC� dossier: C:\Program Files (x86)\ClearThink (PUP.ClearThink)
DEPLAC� dossier: C:\Program Files (x86)\globalUpdate (PUP.GlobalUpdate)
DEPLAC� dossier: C:\Program Files (x86)\iWebar (PUP.CrossRider)
DEPLAC� fichier: C:\ProgramData\smdmf\stats.cfg (PUP.SystemK)
DEPLAC� dossier: C:\ProgramData\smdmf (PUP.SystemK)
DEPLAC� dossier: C:\WINDOWS\System32\AI_RecycleBin\{22D86A00-81E4-4A91-A440-9BF67467E241} (Adware.Agent)
DEPLAC� dossier: C:\WINDOWS\System32\AI_RecycleBin\{761EC6C4-3C53-44F0-A528-2FCA437E9F34} (Adware.Agent)
DEPLAC� dossier: C:\WINDOWS\System32\AI_RecycleBin\{F2860E91-C14D-4AFC-8550-DBB37B5A7609} (Adware.Agent)
DEPLAC� dossier: C:\WINDOWS\System32\AI_RecycleBin (Adware.Agent)
DEPLAC� dossier: C:\Users\Manon\AppData\Roaming\RHEng\522BBD1918B8474BB94F30DF76D686E5 (PUP.Conduit)
DEPLAC� dossier: C:\Users\Manon\AppData\Roaming\RHEng\A5CBD41BC9924C76A35BA9C446B45690 (PUP.Conduit)
DEPLAC� dossier: C:\Users\Manon\AppData\Roaming\RHEng (PUP.Conduit)
DEPLAC� dossier: C:\Users\Manon\AppData\Local\CrashRpt\UnsentCrashReports (LOG.CrashReports)
DEPLAC� dossier: C:\Users\Manon\AppData\Local\globalUpdate\CrashReports (PUP.GlobalUpdate)
DEPLAC� dossier: C:\Users\Manon\AppData\Local\CrashRpt (LOG.CrashReports)
DEPLAC� dossier: C:\Users\Manon\AppData\Local\globalUpdate (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\Manon\Downloads\SoftonicDownloader_pour_age-of-mythology.exe [Softonic - Softonic Downloader] (PUP.Softonic)
DEPLAC� fichier*: C:\Users\Manon\AppData\Local\Installer (Adware.InstallPedia)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (70)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10 [globalUpdate Update] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4 [globalUpdate Update] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611191115} [cb53b500f3e90131a6091fb939dcadf40061915] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611511123} [68671f62832e4803b34065d441f9a2210065123] (PUP.CrossRider)
SUPPRIM� cl�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611191115} [] (PUP.CrossRider)
SUPPRIM� cl�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611191115} [] (PUP.CrossRider)
SUPPRIM� cl�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611511123} [] (PUP.CrossRider)
SUPPRIM� cl�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611511123} [] (PUP.CrossRider)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311551110} [] (PUP.CrossRider)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110411851159} [] (PUP.CrossRider)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110311551110} [] (PUP.CrossRider)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110411851159} [] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622192215} [cb53b500f3e90131a6091fb939dcadf40061915.Sandbox] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622512223} [68671f62832e4803b34065d441f9a2210065123.Sandbox] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655195515} [ICrossriderBHO] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655515523} [ICrossriderBHO] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666196615} [ISandBox] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666516623} [ISandBox] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644194415} [] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644514423} [] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220622192215} [cb53b500f3e90131a6091fb939dcadf40061915.Sandbox] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220622512223} [68671f62832e4803b34065d441f9a2210065123.Sandbox] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{55555555-5555-5555-5555-550655195515} [ICrossriderBHO] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{55555555-5555-5555-5555-550655515523} [ICrossriderBHO] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66666666-6666-6666-6666-660666196615} [ISandBox] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66666666-6666-6666-6666-660666516623} [ISandBox] (PUP.CrossRider)
SUPPRIM� cl�*: HKCU\Software\globalUpdate [] (PUP.GlobalUpdate)
SUPPRIM� cl�*: HKCU\Software\InstalledBrowserExtensions [] (PUP.BrowserExtensions)
SUPPRIM� cl�*: HKCU\Software\AppDataLow\Software\Crossrider [] (PUP.CrossRider)
SUPPRIM� cl�*: HKCU\Software\AppDataLow\Software\iWebar [] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10 [globalUpdate Update Plugin] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine [globalUpdate.OneClickProcessLauncher] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0 [globalUpdate.OneClickProcessLauncher] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4 [globalUpdate Update Plugin] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync [CoCreateAsync] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0 [CoCreateAsync] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass [Google Update Core Class] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1 [Google Update Core Class] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass [Google Update Core Class] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1 [Google Update Core Class] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine [GoogleUpdate CredentialDialog] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0 [GoogleUpdate CredentialDialog] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine [Google Update Broker Class Factory] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0 [Google Update Broker Class Factory] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback [Google Update Legacy On Demand] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0 [Google Update Legacy On Demand] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher [Google Update Process Launcher Class] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0 [Google Update Process Launcher Class] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService [Update3COMClass] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0 [Update3COMClass] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine [Google Update Broker Class Factory] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0 [Google Update Broker Class Factory] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback [GoogleUpdate Update3Web] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0 [GoogleUpdate Update3Web] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc [GoogleUpdate Update3Web] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0 [GoogleUpdate Update3Web] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard [SmdmF Module] (PUP.SystemK)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard.1 [SmdmF Module] (PUP.SystemK)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update ClearThink [] (PUP.ClearThink)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util ClearThink [] (PUP.ClearThink)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\InstalledBrowserExtensions [] (PUP.BrowserExtensions)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\GlobalUpdate [] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions [] (PUP.BrowserExtensions)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\iWebar [] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\SmdmF [] (SettingsManager)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298} [C:\Program Files (x86)\globalUpdate\Update (Not File)] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} [C:\Program Files (x86)\globalUpdate\Update\1.3.25.0 (Not File)] (PUP.GlobalUpdate)
SUPPRIM� cl�*: HKCU\SOFTWARE\103b760c5c287e309720f0ad88f04455 [] (Hijacker.Browser)



---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scann�s : 73584
~ Items trouv�s : 0
~ Items r�par�s : 120


End of clean at 09:40:08
===================
ZHPCleaner-[R]-25032015-09_40_08.txt

Publicité


Signaler le contenu de ce document

Publicité