cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.3.25.139 by Nicolas Coolman (25/03/2015)
~ Run by claude (Administrator) (25/03/2015 12:12:21)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : R�parer
~ Report : C:\Users\claude\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\claude\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (0)
~ Aucun �l�ment malicieux trouv�.


---\\ Navigateur internet. (17)
REMPLAC� Chrome URL: hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StK217RbjR1YFa37oBy_U-nTnTbDY5BLiS4cCE-YWhTJw8FV1rhTW[...] (PUP.IsStart)
REMPLAC� IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL [hxxp://www.mystartsearch.com/?type=hp&ts=1427214594&from=cvs5&uid=STM3250318AS_5[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page [hxxp://www.mystartsearch.com/?type=hp&ts=1427214594&from=cvs5&uid=STM3250318AS_5[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Page_URL [hxxp://www.mystartsearch.com/?type=hp&ts=1427214594&from=cvs5&uid=STM3250318AS_5[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [hxxp://www.mystartsearch.com/web/?type=ds&ts=1427214594&from=cvs5&uid=STM3250318[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Start Page [hxxp://www.mystartsearch.com/?type=hp&ts=1427214594&from=cvs5&uid=STM3250318AS_5[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Search Page [hxxp://www.mystartsearch.com/web/?type=ds&ts=1427214594&from=cvs5&uid=STM3250318[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Default_Page_URL [hxxp://www.mystartsearch.com/?type=hp&ts=1427214594&from=cvs5&uid=STM3250318AS_5[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [hxxp://www.mystartsearch.com/web/?type=ds&ts=1427214594&from=cvs5&uid=STM3250318[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Start Page [hxxp://www.mystartsearch.com/?type=hp&ts=1427214594&from=cvs5&uid=STM3250318AS_5[...]] (PUP.StartSearch)
REMPLAC� IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Search Page [hxxp://www.mystartsearch.com/web/?type=ds&ts=1427214594&from=cvs5&uid=STM3250318[...]] (PUP.StartSearch)
REMPLAC� Desktop: C:\Users\claude\Desktop\Google Chrome.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1427214594&from=cvs5&uid=STM3250318AS_5VM3CYV6XXXX5VM3CYV6] (Hijacker.Browser)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BoBrowser.lnk [Bad : C:\Users\claude\AppData\Local\BoBrowser\Application\bobrowser.exe] (PUP.BoBrowser)
REMPLAC� Quicklaunch: C:\Users\claude\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1427214594&from=cvs5&uid=STM3250318AS_5VM3CYV6XXXX5VM3CYV6] (Hijacker.Browser)
REMPLAC� Quicklaunch: C:\Users\claude\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1427214594&from=cvs5&uid=STM3250318AS_5VM3CYV6XXXX5VM3CYV6] (Hijacker.Browser)
REMPLAC� SystemTools: C:\Users\claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1427214594&from=cvs5&uid=STM3250318AS_5VM3CYV6XXXX5VM3CYV6] (Hijacker.Browser)
REMPLAC� Programs: C:\Users\claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1427214594&from=cvs5&uid=STM3250318AS_5VM3CYV6XXXX5VM3CYV6] (Hijacker.Browser)


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (12)
SUPPRIM� t�che: [AutoKMS] [C:\Windows\AutoKMS\AutoKMS.exe (Not File) ] (Trojan.AutoKMS)
SUPPRIM� t�che: [AutoKMSDaily] [C:\Windows\AutoKMS\AutoKMS.exe (Not File) ] (Trojan.AutoKMS)
SUPPRIM� t�che: [CVVSWQ] [C:\Users\claude\AppData\Roaming\CVVSWQ.exe (Not File) ] (Heuristic.Pirrit)
SUPPRIM� t�che: [CVVSWQ] [C:\Users\claude\AppData\Roaming\CVVSWQ.exe (Not File) ] (Heuristic.Pirrit)
SUPPRIM� t�che: [dc838f4c-e071-4f82-b99a-fc938450595c-10_user] [C:\Program Files (x86)\I - Cinema\dc838f4c-e071-4f82-b99a-fc938450595c-10.exe (Not File) ] (PUP.CrossRider)
SUPPRIM� t�che: [dc838f4c-e071-4f82-b99a-fc938450595c-10_user] [C:\Program Files (x86)\I - Cinema\dc838f4c-e071-4f82-b99a-fc938450595c-10.exe (Not File) ] (PUP.CrossRider)
SUPPRIM� t�che: [dc838f4c-e071-4f82-b99a-fc938450595c-11] [C:\Program Files (x86)\I - Cinema\dc838f4c-e071-4f82-b99a-fc938450595c-11.exe (Not File) ] (PUP.CrossRider)
SUPPRIM� t�che: [dc838f4c-e071-4f82-b99a-fc938450595c-11] [C:\Program Files (x86)\I - Cinema\dc838f4c-e071-4f82-b99a-fc938450595c-11.exe (Not File) ] (PUP.CrossRider)
SUPPRIM� t�che: [TNGJRWN] [C:\Users\claude\AppData\Roaming\TNGJRWN.exe (Not File) ] (Heuristic.Pirrit)
SUPPRIM� t�che: [TNGJRWN] [C:\Users\claude\AppData\Roaming\TNGJRWN.exe (Not File) ] (Heuristic.Pirrit)
SUPPRIM� t�che: [AutoKMS] [C:\Windows\Tasks\AutoKMS.job] (Trojan.AutoKMS)
SUPPRIM� t�che: [AutoKMSDaily] [C:\Windows\Tasks\AutoKMSDaily.job] (Trojan.AutoKMS)


---\\ Explorateur ( Dossiers, Fichiers ). (108)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\rIs2UVf\Kommun.dll (Adware.Pirrit)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\rIs2UVf\LibDownloadManagement.dll [Copyright � 2014 - downloadManagement] (Adware.Pirrit)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\nKGWUpJ\Kommun.dll (Adware.Pirrit)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\nKGWUpJ\LibDownloadManagement.dll [Copyright � 2014 - downloadManagement] (Adware.Pirrit)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\AwRUk7W\Kommun.dll (Adware.Pirrit)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\AwRUk7W\LibDownloadManagement.dll [Copyright � 2014 - downloadManagement] (Adware.Pirrit)
DEPLAC� dossier: C:\Users\claude\AppData\Roaming\rIs2UVf (Adware.Pirrit)
DEPLAC� dossier: C:\Users\claude\AppData\Roaming\nKGWUpJ (Adware.Pirrit)
DEPLAC� dossier: C:\Users\claude\AppData\Roaming\AwRUk7W (Adware.Pirrit)
DEPLAC� fichier: C:\Program Files (x86)\cb155781-0e11-4684-9037-cbeca70ef817\10e5c507-ad3f-4f1f-ac3e-9aa5b6f92e2b.dll (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\cb155781-0e11-4684-9037-cbeca70ef817\86283886-3e30-450f-b281-4a1d2a1681a2.dll (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\cb155781-0e11-4684-9037-cbeca70ef817\bb82c0cc-e3c4-48cc-bc61-1fe34b25dddb.dll (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\cb155781-0e11-4684-9037-cbeca70ef817\cb155781-0e11-4684-9037-cbeca70ef817.dll (PUP.CrossRider)
DEPLAC� dossier: C:\Program Files (x86)\cb155781-0e11-4684-9037-cbeca70ef817 (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\CVVSWQ.job (Heuristic.Pirrit)
DEPLAC� fichier: C:\Windows\Tasks\TNGJRWN.job (Heuristic.Pirrit)
DEPLAC� fichier: C:\Windows\System32\Tasks\CVVSWQ (Heuristic.Pirrit)
DEPLAC� fichier: C:\Windows\System32\Tasks\TNGJRWN (Heuristic.Pirrit)
DEPLAC� fichier: C:\Windows\Tasks\AutoKMS.job (Trojan.AutoKMS)
DEPLAC� fichier: C:\Windows\Tasks\AutoKMSDaily.job (Trojan.AutoKMS)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-1-6.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-1-7.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-10_user.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-11.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-3.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-5.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-5_user.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-6.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\0507956b-ee8d-4c4e-821d-ca1a9a374a3f-7.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\dc838f4c-e071-4f82-b99a-fc938450595c-10_user.job (PUP.CrossRider)
DEPLAC� fichier: C:\Windows\Tasks\dc838f4c-e071-4f82-b99a-fc938450595c-11.job (PUP.CrossRider)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\avcodec-54.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\avdevice-54.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\avformat-54.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\avutil-51.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\GuPlayer.exe [The GuPlayer Company - Media Player] (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\libfreetype-6.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\libpng15-15.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\postproc-52.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\SDL.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\SDL_image.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\SDL_ttf.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\swresample-0.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\swscale-2.dll (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\Uninstaller.exe [GU-M-P - GU-M-P] (PUP.GUPlayer)
DEPLAC� fichier: C:\Program Files (x86)\GU Player\zlib1.dll [(C) 1995-2006 Jean-loup Gailly & Mark Adler - zlib data compression library] (PUP.GUPlayer)
DEPLAC� dossier: C:\Program Files (x86)\GU Player (PUP.GUPlayer)
DEPLAC� dossier: C:\Program Files (x86)\predm (Adware.Downware)
DEPLAC� fichier: C:\ProgramData\LolliScan\RfndNSIS.dll (Adware.Graftor)
DEPLAC� dossier: C:\ProgramData\LolliScan (Adware.Graftor)
DEPLAC� fichier: C:\Windows\AutoKMS\AutoKMS.ini (Trojan.AutoKMS)
DEPLAC� fichier: C:\Windows\AutoKMS\AutoKMS.log (Trojan.AutoKMS)
DEPLAC� dossier: C:\Windows\AutoKMS (Trojan.AutoKMS)
DEPLAC� dossier: C:\Users\claude\AppData\Roaming\Nosibay (Adware.SPointer)
DEPLAC� dossier: C:\Users\claude\AppData\Roaming\WTools (PUP.Nosibay)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GU Player\GU Player.lnk (PUP.GUPlayer)
DEPLAC� dossier: C:\Users\claude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GU Player (PUP.GUPlayer)
DEPLAC� dossier: C:\Users\claude\AppData\Local\globalUpdate\CrashReports (PUP.GlobalUpdate)
DEPLAC� dossier: C:\Users\claude\AppData\Local\globalUpdate (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\e9e3ff34-8e8e-4c88-b451-681aa4e90f8c\lly_istartsurf.exe [BaiSix - BaiSix] (PUP.IsStart)
DEPLAC� dossier: C:\Users\claude\AppData\Local\Temp\e9e3ff34-8e8e-4c88-b451-681aa4e90f8c (PUP.IsStart)
DEPLAC� fichier: C:\ProgramData\bAUJiRNFCaD\dat\UQXTLWGiN.exe [Small Island Development - TVWizard] (PUP.SmallIsland)
DEPLAC� fichier: C:\ProgramData\bAUJiRNFCaD\dat\VozSdL.exe [Small Island Development - TVWizard] (PUP.SmallIsland)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\Bubble Dock.boostrap.log (PUP.BubbleDock)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\Bubble Dock.installation.log (PUP.BubbleDock)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\Selection Tools.installation.log (PUP.Nosibay)
DEPLAC� fichier: C:\Users\claude\AppData\Roaming\WindApp.boostrap.log (PUP.Nosibay)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\goopdate.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\goopdateres_en.dll [globalUpdate - globalUpdate Update Resource DLL] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\npGoogleUpdate4.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\psmachine.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\psuser.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\goopdate.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\goopdateres_en.dll [globalUpdate - globalUpdate Update Resource DLL] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\npGoogleUpdate4.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\psmachine.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\psuser.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\goopdate.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\goopdateres_en.dll [globalUpdate - globalUpdate Update Resource DLL] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\npGoogleUpdate4.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\psmachine.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\psuser.dll [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\ce98ac2e-20c0-4a93-86f6-bdb3e61caf55.exe [C.L.A.R.A - Dwl2] (Adware.SupTab)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\GoogleCrashHandler.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\GoogleUpdate.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\GoogleUpdateBroker.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.265389\GoogleUpdateOnDemand.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\GoogleCrashHandler.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\GoogleUpdate.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\GoogleUpdateBroker.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.178659\GoogleUpdateOnDemand.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\GoogleCrashHandler.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\GoogleUpdate.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\GoogleUpdateBroker.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\comh.158424\GoogleUpdateOnDemand.exe [globalUpdate - globalUpdate Update] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\450f7310-e33c-4c52-8c88-874a9199a109\2dc5634e-dffe-4d43-a419-8c920578f600.exe [ClaraLabs - ClaraSetup] (PUP.BoBrowser)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\2132015165821\Selection Tools Uninstall.exe [Nosibay - Selection Tools Uninstaller] (PUP.Nosibay)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\2132015165102\Bubble Dock Uninstall.exe [Nosibay - Bubble Dock Uninstaller] (PUP.Nosibay)
DEPLAC� fichier*: C:\Users\claude\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage (PUP.IsStart)
DEPLAC� fichier*: C:\Users\claude\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage-journal (PUP.IsStart)
DEPLAC� fichier*: C:\Users\claude\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage (PUP.StartSearch)
DEPLAC� fichier*: C:\Users\claude\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal (PUP.StartSearch)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\Bubble Dock.txt (PUP.BubbleDock)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\LBubble Dock.txt (PUP.BubbleDock)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\smt_istartsurf.exe [BaiSix - BaiSix] (PUP.IsStart)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\smt_mystartsearch.exe [BaiSix - BaiSix] (PUP.StartSearch)
DEPLAC� fichier: C:\Users\claude\AppData\Local\Temp\somoto_DVD Shrink_1.0.exe (Adware.MegaSearch)
DEPLAC� fichier: C:\Windows\KMSEmulator.exe (Trojan.AutoKMS)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (60)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10 [globalUpdate Update] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4 [globalUpdate Update] (PUP.GlobalUpdate)
SUPPRIM� cl�: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [http://www.istartsurf.com/web/?utm_source=b&utm_medium=tugs&utm_campaign=install_ie&utm_content=ds&f[...]] [Bing] (PUP.IsStart)
SUPPRIM� cl�: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} [http://www.istartsurf.com/web/?utm_source=b&utm_medium=tugs&utm_campaign=install_ie&utm_content=ds&f[...]] [e] (PUP.IsStart)
SUPPRIM� cl�: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.mystartsearch.com/web/?type=ds&ts=1427214594&from=cvs5&uid=STM3250318AS_5VM3CYV6XXXX5VM3C[...]] [mystartsearch] (PUP.StartSearch)
SUPPRIM� cl�: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} [http://www.istartsurf.com/web/?utm_source=b&utm_medium=tugs&utm_campaign=install_ie&utm_content=ds&f[...]] [Google] (PUP.IsStart)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.htm\OpenWithProgIDs\\BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.html\OpenWithProgIDs\\BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.shtml\OpenWithProgIDs\\BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.webp\OpenWithProgIDs\\BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E [] (PUP.BoBrowser)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.xht\OpenWithProgIDs\\BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E [] (PUP.BoBrowser)
SUPPRIM� cl�*: HKCU\Software\WajIntEnhance [] (PUP.Wajam)
SUPPRIM� cl�^: HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem [C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /medsvc (Not File)] (PUP.GlobalUpdate)
SUPPRIM� cl�*: HKCU\SOFTWARE\SearchProtectWS [] (Adware.Sambreel)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\SearchProtect [] (Adware.Sambreel)
SUPPRIM� cl�*: HKCU\Software\HQVideo_7.1dV21.03-nv [] (Heuristic.CrossRider)
SUPPRIM� cl�*: HKCU\Software\HQVideo_7.1dV21.03-nv-ie [] (Heuristic.CrossRider)
SUPPRIM� cl�*: HKCU\Software\MediaPv2.6-nv-ie [] (Heuristic.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\a20edc74-4b1c-4057-972c-855cd9bc514d [] (PUP.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\HQVideo_7.1dV21.03-nv [] (Heuristic.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\HQVideo_7.1dV21.03-nv-ie [] (Heuristic.CrossRider)
SUPPRIM� valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Selection Tools ["C:\Users\claude\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe" /winstartup] (PUP.Nosibay)
SUPPRIM� cl�*: HKCU\Software\CVVSWQ [] (Heuristic.Pirrit)
SUPPRIM� cl�^: HKCU\Software\CVVSWQ [] (Heuristic.Pirrit)
SUPPRIM� cl�*: HKCU\Software\TNGJRWN [] (Heuristic.Pirrit)
SUPPRIM� cl�^: HKCU\Software\TNGJRWN [] (Heuristic.Pirrit)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\APN PIP [] (Toolbar.Agent)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\BoBrowser [] (PUP.BoBrowser)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\globalUpdate [] (PUP.GlobalUpdate)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\HomeTab [] (PUP.CertifiedToolbar)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\InstalledBrowserExtensions [] (PUP.BrowserExtensions)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Kreapixel [] (Adware.SocialSkinz)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Linkey [] (PUP.LinkeySearch)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Nosibay [] (Adware.SPointer)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\SimplyTech [] (PUP.SimplyTech)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\TNT2 [] (Adware.TidyNetwork)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Wnkey [] (PUP.Optional)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\WTools [] (PUP.Nosibay)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Classes\.gif [BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E] (PUP.BoBrowser)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Classes\.jpeg [BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E] (PUP.BoBrowser)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Classes\.jpg [BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E] (PUP.BoBrowser)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Classes\.png [BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E] (PUP.BoBrowser)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3076573596-196789805-4040178887-1000\Software\Classes\BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E [BoBrowser HTML Document] (PUP.BoBrowser)
SUPPRIM� cl�*: HKCU\Software\AppDataLow\Software\Crossrider [] (PUP.CrossRider)
SUPPRIM� cl�*: HKCU\Software\AppDataLow\Software\DynConIE [] (PUP.DynConIE)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP [] (Adware.IMBooster)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar [] (Adware.IMBooster)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] (PUP.LinkeySearch)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect [] (PUP.SearchProtect)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com [] (PUP.Vosteran)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance [] (PUP.WajEnhance)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\istartsurf.com [4046] (PUP.IsStart)
SUPPRIM� cl�*: HKCU\Software\Store [] (PUP.Optional)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\BoBrowsHTML.CW3KCHV4OWRL7KPMGCU3YJMO3E [BoBrowser HTML Document] (PUP.BoBrowser)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05B184AF94CBADA4C9A5F35E2DE6C932 [C:\Program Files (x86)\Nero\KM\MovieWizard.Interop.dll] (PUP.MovieWizard)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork [] (Toolbar.AskBar)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Clara [] (Adware.SupTab)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\WajIntEnhance [] (PUP.WajEnhance)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] (PUP.LinkeySearch)



---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.
~ Ce navigateur est absent (Opera Software)
~ Le syst�me a �t� red�marr�.


---\\ Statistiques
~ Items scann�s : 65890
~ Items trouv�s : 0
~ Items r�par�s : 198


End of clean at 12:18:15
===================
ZHPCleaner-[R]-25032015-12_18_15.txt

Publicité


Signaler le contenu de ce document

Publicité