cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.5.27.258 by Nicolas Coolman (2015\05\27)
~ Run by Jerome (Administrator) (27/05/2015 18:20:48)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Netttoyer
~ Report : C:\Users\Jerome\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Jerome\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (3)
ARRET� : difihify (Heuristic.Salus)
ARRET� : fegukygy (Heuristic.Salus)
ARRET� : wyhesete (Heuristic.Salus)


---\\ Navigateur internet. (2)
SUPPRIM� donn�e: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings [Bad : Port=53842 <-Loopback>] (Hijacker.Proxy)
SUPPRIM� donn�e: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings [Bad : Port=53842 <-Loopback>] (Hijacker.Proxy)


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (1)
SUPPRIM� t�che: [Dregol dara] [C:\ProgramData\{1CC9F40A-4C4B-258C-FDCD-550E2D4F8680}\1.17.0.1\fiber.js 433a2f50726f6772616d446174612f7b31434339463430412d344334422d323538432d464443442d3535304532443446383638307d2f312e31372e302e312f646172612e646c6c 687474703a2f2f73616f2e72657164726,N/A,N/A,Activ�e,D�sactiv (Not File) ] (Hijacker.Browser)


---\\ Explorateur ( Dossiers, Fichiers ). (12)
DEPLAC� fichier: C:\Users\Jerome\AppData\Roaming\2F40EB1E-1431936821-1A88-90CB-6F056F2B552C\jnsh8812.tmp (Heuristic.Salus)
DEPLAC� fichier: C:\Users\Jerome\AppData\Roaming\2F40EB1E-1431936821-1A88-90CB-6F056F2B552C\nsu76DF.tmp (Heuristic.Salus)
DEPLAC� fichier: C:\Users\Jerome\AppData\Roaming\2F40EB1E-1431936821-1A88-90CB-6F056F2B552C\hnsm9DD5.tmp (Heuristic.Salus)
DEPLAC� fichier: C:\Windows\Prefetch\CROSSBROWSE.EXE-CEDEC251.pf (PUP.CrossBrowse)
DEPLAC� fichier: C:\Windows\Installer\41154.msi [globalupdate - Windows Installer XML Toolset (3.9.1208.0)] (PUP.GlobalUpdate)
DEPLAC� fichier: C:\Windows\Installer\4115b.msi [Max Computer Cleaner - Advanced Installer 11.5.1 build 60347] (PUP.MaxComputerCleaner)
DEPLAC� dossier: C:\Users\Jerome\AppData\Roaming\2F40EB1E-1431936821-1A88-90CB-6F056F2B552C (Heuristic.Salus)
DEPLAC� dossier: C:\Users\Jerome\AppData\Roaming\1H1Q1V0B1L1G1N1V0M1P1Q1L1T0D1P1E2Z (Adware.InstallCore)
DEPLAC� dossier: C:\Program Files (x86)\MaxComputerCleaner_v27.474 (PUP.MaxComputerCleaner)
DEPLAC� dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MOBILEPCSTARTERKIT (PUP.MobilePCStarterKit)
DEPLAC� dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 (PUP.OptimizerPro)
DEPLAC� dossier: C:\Users\Jerome\AppData\Roaming\Optimizer Pro (PUP.OptimizerPro)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (33)
SUPPRIM� donn�e: HKCR\CRSBRWSHTML\Shell\Open\Command\\Default [Bad : [html] ] (Broken.OpenCommand)
SUPPRIM� donn�e: HKCR\.html\\Default [Bad : CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� donn�e: [X64] HKLM\SOFTWARE\Classes\.html\\Default [Bad : CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKLM\SYSTEM\CurrentControlSet\Services\difihify [C:\Users\Jerome\AppData\Roaming\2F40EB1E-1431936821-1A88-90CB-6F056F2B552C\jnsh8812.tmp (Not File)] (Heuristic.Salus)
SUPPRIM� cl�*: HKLM\SYSTEM\CurrentControlSet\Services\fegukygy [C:\Users\Jerome\AppData\Roaming\2F40EB1E-1431936821-1A88-90CB-6F056F2B552C\nsu76DF.tmp (Not File)] (Heuristic.Salus)
SUPPRIM� cl�*: HKLM\SYSTEM\CurrentControlSet\Services\wyhesete [C:\Users\Jerome\AppData\Roaming\2F40EB1E-1431936821-1A88-90CB-6F056F2B552C\hnsm9DD5.tmp (Not File)] (Heuristic.Salus)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\insvc_1.10.0.14 ["C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe" (Not File)] (Heuristic.Optional)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3747368704-2864633124-1960403962-1000\Software\maxcomputerclenner [] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3747368704-2864633124-1960403962-1000\Software\tstamptoken [] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3747368704-2864633124-1960403962-1000\Software\Classes\.htm [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3747368704-2864633124-1960403962-1000\Software\Classes\.html [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3747368704-2864633124-1960403962-1000\Software\Classes\.shtml [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3747368704-2864633124-1960403962-1000\Software\Classes\.xht [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-3747368704-2864633124-1960403962-1000\Software\Classes\.xhtml [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�: HKCU\Software\maxcomputerclenner [] (PUP.MaxComputerCleaner)
SUPPRIM� cl�: HKCU\Software\tstamptoken [] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\pricepeep.net [] (Adware.PricePeep)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.pricepeep00.pricepeep.net [46] (Adware.PricePeep)
SUPPRIM� cl�*: [X64] HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E [globalupdate Helper] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\033C2180EAAD14944A1514E75DA4ECCC [C:\Program Files (x86)\Max Computer Cleaner\de\Splash.resources.dll (Not File)] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0570537446DB32443A200093A0483EBD [C:\Program Files (x86)\Max Computer Cleaner\Uninst000.dll (Not File)] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07266F8061505ED438E3BE96A884F198 [C:\Program Files (x86)\Max Computer Cleaner\pt\MaxComputerCleaner.resources.dll (Not File)] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Infonaut_1.10.0.14 [] (PUP.Infonaut)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\MaxComputerCleaner [] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\MOBILEPCSTARTERKIT [] (PUP.MobilePCStarterKit)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} [globalupdate Inc.] (PUP.GlobalUpdate)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MaxComputerCleaner_Maintenance_RASAPI32 [] (PUP.MaxComputerCleaner)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MaxComputerCleaner_Maintenance_RASMANCS [] (PUP.MaxComputerCleaner)
SUPPRIM� valeur: HKLM64\Software\Classes\.shtml\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)
SUPPRIM� valeur: HKLM64\Software\Classes\.webp\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)
SUPPRIM� valeur: HKLM64\Software\Classes\.xht\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)
SUPPRIM� valeur: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_728BB3EFF3D6698330CFD99AFAB7CF5D ["C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" --no-startup-window] (PUP.Vosteran)
SUPPRIM� valeur: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\MaxComputerCleaner_v27.474 [C:\Program Files (x86)\MaxComputerCleaner_v27.474\MaxComputerCleaner_Maintenance.exe ro] (PUP.MaxComputerCleaner)


---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scann�s : 604
~ Items trouv�s : 0
~ Items annul�s : 0
~ Items r�par�s : 52


End of clean at 18:21:08
===================
ZHPCleaner-[R]-27052015-18_21_08.txt
ZHPCleaner-[S]-27052015-18_20_33.txt

Publicité


Signaler le contenu de ce document

Publicité