cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.5.18.245 by Nicolas Coolman (2015\05\18)
~ Run by JeanClaude (Administrator) (19/05/2015 18:25:41)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Netttoyer
~ Report : C:\Users\JeanClaude\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\JeanClaude\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 81, 64-bit (Build 9600)


---\\ Service. (2)
ARRET� : sysTPLMonitor.exe (SUP.sysTPL)
ARRET� : sysTPLService.exe (SUP.sysTPL)


---\\ Navigateur internet. (7)
SUPPRIM� donn�e: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 [Bad : 1] (Hijacker.Proxy)
SUPPRIM� donn�e: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer [Bad : http=127.0.0.1:8877] (Hijacker.Proxy)
SUPPRIM� donn�e: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable [Bad : 1] (Hijacker.Proxy)
SUPPRIM� donn�e: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings [Bad : Port=88770000000000000000010000000000000000000000000000000000000000000000000000000100000002000000C0A8010B000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000] (Hijacker.Proxy)
SUPPRIM� donn�e: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings [Bad : Port=88770000000000000000010000000000000000000000000000000000000000000000000000000100000002000000C0A8010B000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000] (Hijacker.Proxy)
SUPPRIM� donn�e: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings [Bad : Port=8877 <-Loopback>] (Hijacker.Proxy)
SUPPRIM� donn�e: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings [Bad : Port=8877 <-Loopback>] (Hijacker.Proxy)


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (0)
~ Aucun �l�ment malicieux trouv�.


---\\ Explorateur ( Dossiers, Fichiers ). (6)
DEPLAC� fichier: C:\Program Files (x86)\sysTPL\sysTPL.exe [Tlapia - sysTPL] (SUP.sysTPL)
DEPLAC� fichier: C:\WINDOWS\Prefetch\SYSTPL.EXE-AB783D76.pf (SUP.sysTPL)
DEPLAC� fichier: C:\Windows\Installer\{BCCB2575-81E3-4FE1-B2EA-438547692039}\default_1.exe (SUP.sysTPL)
DEPLAC� dossier: C:\Program Files (x86)\enginesysTPL (SUP.sysTPL)
DEPLAC� dossier^: C:\Program Files (x86)\sysTPL (SUP.sysTPL)
DEPLAC� dossier: C:\ProgramData\iolo (PUP.SafePCRepair)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (23)
REMPLAC� donn�e: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope \\\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Hijacker.SearchScopes)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\sysTPLMonitor.exe ["C:\Program Files (x86)\sysTPL\sysTPLMonitor.exe" (Not File)] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\sysTPLService.exe ["C:\Program Files (x86)\sysTPL\sysTPLService.exe" (Not File)] (SUP.sysTPL)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-2697087423-2274836696-2398378728-1001\Software\sysTPL [] (SUP.sysTPL)
SUPPRIM� cl�: HKCU\Software\sysTPL [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} [IOutlookSecurityManager] (PUP.WhiteSmoke)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman] (Trojan.Camec)
SUPPRIM� cl�*: [X64] HKLM\Software\Classes\Installer\Products\5752BCCB3E181EF42BAE345874960293 [sysTPL] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\sysTPLMonitor [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\sysTPLService [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} [IOutlookSecurityManager] (PUP.WhiteSmoke)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman] (Trojan.Camec)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BCCB2575-81E3-4FE1-B2EA-438547692039} [sysTPL] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\sysTPLMonitor_RASAPI32 [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\sysTPLMonitor_RASMANCS [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\sysTPLService_RASAPI32 [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\sysTPLService_RASMANCS [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\sysTPL_RASAPI32 [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\sysTPL_RASMANCS [] (SUP.sysTPL)
SUPPRIM� cl�*: [X64] HKLM\Software\Classes\Installer\Features\5752BCCB3E181EF42BAE345874960293 [] (SUP.sysTPL)
SUPPRIM� valeur: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\sysTPL [C:\Program Files (x86)\sysTPL\sysTPL.exe] (SUP.sysTPL)


---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)
~ Le syst�me a �t� red�marr�.


---\\ Statistiques
~ Items scann�s : 674
~ Items trouv�s : 0
~ Items annul�s : 0
~ Items r�par�s : 38


End of clean at 18:25:58
===================
ZHPCleaner-[R]-19052015-18_25_58.txt
ZHPCleaner-[S]-19052015-18_18_14.txt

Publicité


Signaler le contenu de ce document

Publicité