cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.5.5.213 by Nicolas Coolman (06/05/2015)
~ Run by Falgaris (Administrator) (06/05/2015 15:35:51)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Netttoyer
~ Report : C:\Users\Falgaris\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Falgaris\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (0)


---\\ Navigateur internet. (3)
SUPPRIM�: [ahwqxbyf.default] - user_pref("webprotector57@webprotector.com.src", "9830"); (PUP.BProtector)
SUPPRIM�: [ahwqxbyf.default] - user_pref("webprotector57@webprotector.com.user_id", "97B632A2-F6ED-4981-BB78-8ADD7AF8953D"); (PUP.BProtector)
REMPLAC� Proxy: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride ( )


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (3)
SUPPRIM� t�che: [4a0QXa1oc] [C:\Users\Falgaris\AppData\Roaming\4a0QXa1oc.exe (Not File) ] (Heuristic.Pirrit)
SUPPRIM� t�che: [AutoKMS] [C:\Windows\AutoKMS\AutoKMS.exe (Not File) ] (HackTool.AutoKMS)
SUPPRIM� t�che: [JKBHHLJBTX] [C:\ProgramData\66c6b940f4d740f090bf26ac1e889fff\66c6b940f4d740f090bf26ac1e889fff.exe (Not File) ] (Heuristic.CrossRider)


---\\ Explorateur ( Dossiers, Fichiers ). (20)
DEPLAC� fichier: C:\Windows\Tasks\4a0QXa1oc.job (Heuristic.Pirrit)
DEPLAC� fichier: C:\Windows\System32\Tasks\4a0QXa1oc (Heuristic.Pirrit)
DEPLAC� fichier: C:\Windows\AutoKMS\AutoKMS.exe [CODYQX4 - AutoKMS] (HackTool.AutoKMS)
DEPLAC� fichier: C:\ProgramData\66c6b940f4d740f090bf26ac1e889fff\66c6b940f4d740f090bf26ac1e889fff.exe [Copyright (C) 2014 - 66c6b940f4d740f090bf26ac1e889fff] (Heuristic.CrossRider)
DEPLAC� fichier: C:\Windows\Installer\485527.msi [The Software Group - Windows Installer XML Toolset (3.8.1128.0)] (Adware.Boxore)
DEPLAC� fichier: C:\Windows\Installer\48552d.msi [Boxore OU - Windows Installer XML Toolset (3.8.1128.0)] (Adware.Boxore)
DEPLAC� fichier*: C:\Users\Falgaris\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage (PUP.SpecialSavings)
DEPLAC� fichier*: C:\Users\Falgaris\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal (PUP.SpecialSavings)
DEPLAC� fichier: C:\Windows\AutoKMS\AutoKMS.log (HackTool.AutoKMS)
DEPLAC� fichier: C:\Users\Falgaris\AppData\Local\Temp\Uninstall.exe [Copyright 2013 - ] (PUP.Optional)
DEPLAC� dossier: C:\Program Files (x86)\0f125e48-aace-4f6f-971c-6ef467c6ac83 (Adware.CrossRider)
DEPLAC� dossier: C:\Program Files (x86)\predm (Adware.Downware)
DEPLAC� dossier: C:\ProgramData\2edf84900007b81 (Adware.CrossRider)
DEPLAC� dossier: C:\ProgramData\66c6b940f4d740f090bf26ac1e889fff (Adware.CrossRider)
DEPLAC� dossier: C:\ProgramData\6ba3b6bbebfb4c96b6c6f22617b5d6af (Adware.CrossRider)
DEPLAC� dossier: C:\ProgramData\c72ee4439106408f83d4b191f6b69eb1 (Adware.CrossRider)
DEPLAC� dossier: C:\ProgramData\ef08ad79517044a8be83ab35c81d4a81 (Adware.CrossRider)
DEPLAC� dossier: C:\Windows\AutoKMS (HackTool.AutoKMS)
DEPLAC� dossier: C:\Users\Falgaris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASPackage (PUP.ASPackage)
DEPLAC� dossier: C:\Program Files (x86)\Software (Adware.Boxore)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (27)
SUPPRIM� donn�e: HKCR\CRSBRWSHTML\Shell\Open\Command\\Default [Bad : [html] ] (Broken.OpenCommand)
SUPPRIM� donn�e: HKCR\.html\\Default [Bad : CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� donn�e: [X64] HKLM\SOFTWARE\Classes\.html\\Default [Bad : CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\cunofozu [C:\Users\Falgaris\AppData\Roaming\7453ECA0-1429954239-11DD-B138-7824AF9A4454\nseDBDD.tmp (Not File)] (Generic.Trojan)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\kiqoveru [C:\Users\Falgaris\AppData\Roaming\7453ECA0-1430825459-11DD-B138-7824AF9A4454\jnsbFD22.tmp (Not File)] (Generic.Trojan)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\vusehure [C:\Users\Falgaris\AppData\Roaming\7453ECA0-1429954239-11DD-B138-7824AF9A4454\jnse8CF3.tmp (Not File)] (Generic.Trojan)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\zozubuly [C:\Users\Falgaris\AppData\Roaming\7453ECA0-1430825459-11DD-B138-7824AF9A4454\nswC1E1.tmpfs (Not File)] (Generic.Trojan)
SUPPRIM� cl�*: HKCU\Software\4a0QXa1oc [] (Heuristic.Pirrit)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-2766605752-2241503815-4103500613-1000\Software\Classes\.htm [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-2766605752-2241503815-4103500613-1000\Software\Classes\.html [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-2766605752-2241503815-4103500613-1000\Software\Classes\.shtml [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-2766605752-2241503815-4103500613-1000\Software\Classes\.xht [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-2766605752-2241503815-4103500613-1000\Software\Classes\.xhtml [CRSBRWSHTML] (PUP.CrossBrowse)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc [] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc [] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc.1.0 [] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E [Software Update Helper] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\gmsd_fr_453 [] (Adware.CrossRider)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Tutorials [] (PUP.AgenceExclusive)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\WebProtector [] (PUP.BProtector)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} [Software Update Helper] (Adware.Boxore)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.htm\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.html\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.shtml\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.webp\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)
SUPPRIM� valeur: [X64] HKLM\Software\Classes\.xht\OpenWithProgIDs\\CRSBRWSHTML [] (PUP.CrossBrowse)


---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scann�s : 5489
~ Items trouv�s : 0
~ Items annul�s : 0
~ Items r�par�s : 57


End of clean at 15:35:58
===================
ZHPCleaner-[R]-06052015-15_35_58.txt
ZHPCleaner-[S]-06052015-15_35_08.txt

Publicité


Signaler le contenu de ce document

Publicité