cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.5.20.247 by Nicolas Coolman (2015\05\20)
~ Run by Stef (Administrator) (20/05/2015 21:20:14)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Netttoyer
~ Report : C:\Users\Stef\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Stef\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (12)
WINSOCK [Protocol_Catalog9\Catalog_Entries]: Remise � z�ro du socket qui g�re la couche TCP/IP (Hijacker.Winsock)
WINSOCK [Protocol_Catalog9\Catalog_Entries64]: Remise � z�ro du socket qui g�re la couche TCP/IP (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000001 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000002 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000003 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000004 (Hijacker.Winsock)
SUPPRIM� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000016 (Hijacker.Winsock)


---\\ Navigateur internet. (1)
SUPPRIM� donn�e: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 [Bad : 1] (Hijacker.Proxy)


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (1)
SUPPRIM� t�che: [AutoKMS] [C:\Windows\AutoKMS\AutoKMS.exe (Not File) ] (HackTool.AutoKMS)


---\\ Explorateur ( Dossiers, Fichiers ). (19)
DEPLAC� fichier: C:\Windows\AutoKMS\AutoKMS.exe [CODYQX4 - AutoKMS] (HackTool.AutoKMS)
DEPLAC� fichier: C:\Users\Stef\Downloads\MicTool241\Microsoft Toolkit.exe [CODYQX4 - Microsoft Toolkit] (HackTool.AutoKMS)
DEPLAC� fichier: C:\Users\Stef\AppData\Local\Temp\Bubble Dock.txt (PUP.BubbleDock)
DEPLAC� fichier: C:\Users\Stef\AppData\Local\Temp\LBubble Dock.txt (PUP.BubbleDock)
DEPLAC� fichier^: C:\Windows\AutoKMS\AutoKMS.log (HackTool.AutoKMS)
DEPLAC� dossier: C:\Program Files (x86)\Boxore (Adware.Boxore)
DEPLAC� dossier: C:\Program Files (x86)\globalUpdate (PUP.GlobalUpdate)
DEPLAC� dossier: C:\Program Files (x86)\predm (Adware.Downware)
DEPLAC� dossier: C:\ProgramData\254dd8c800007102 (Adware.CrossRider)
DEPLAC� dossier: C:\ProgramData\dc70587c00000877 (Adware.CrossRider)
DEPLAC� dossier: C:\ProgramData\MailUpdate (PUP.MailUpdate)
DEPLAC� dossier^: C:\Windows\AutoKMS (HackTool.AutoKMS)
DEPLAC� dossier: C:\Users\Stef\AppData\Roaming\Store (PUP.Nosibay)
DEPLAC� dossier: C:\Users\Stef\Documents\Optimizer Pro (PUP.OptimizerPro)
DEPLAC� dossier: C:\Users\Stef\AppData\LocalLow\SmartWeb (PUP.SmartWebSearch)
DEPLAC� dossier: C:\Users\Stef\AppData\Local\Boxore (Adware.Boxore)
DEPLAC� dossier: C:\Users\Stef\AppData\Local\globalUpdate (PUP.GlobalUpdate)
DEPLAC� dossier: C:\Program Files (x86)\Software (Adware.Boxore)
DEPLAC� dossier: C:\Users\Stef\AppData\Local\Software (Adware.Boxore)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (30)
REMPLAC� donn�e: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope \\\{D2600CC0-F6F6-44B9-A835-20C15B73FBCE} (Hijacker.SearchScopes)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 [C:\Windows\system32\secure.dll (Not File)] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 [C:\Windows\system32\secure.dll (Not File)] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 [C:\Windows\system32\secure.dll (Not File)] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 [C:\Windows\system32\secure.dll (Not File)] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016 [C:\Windows\system32\secure.dll (Not File)] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000001 [C:\Windows\system32\secure64.dll] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000002 [C:\Windows\system32\secure64.dll] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000003 [C:\Windows\system32\secure64.dll] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000004 [C:\Windows\system32\secure64.dll] (Hijacker.Winsock)
REMPLAC� : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000016 [C:\Windows\system32\secure64.dll] (Hijacker.Winsock)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Clients\StartMenuInternet\Torch [] (PUP.Torch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Clients\StartMenuInternet\Torch.KH6RXXLCPUM5EKXKFM5CSU24HI [] (PUP.Torch)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-1504518609-2604980209-1849496213-1000\Software\Reimage [] (PUP.ReimageRepair)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-1504518609-2604980209-1849496213-1000\Software\Torch [] (PUP.Torch)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-1504518609-2604980209-1849496213-1000\Software\Classes\.torrent [Torch.torrent] (PUP.Torch)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-1504518609-2604980209-1849496213-1000\Software\Classes\Torch.torrent [] (PUP.Torch)
SUPPRIM� cl�: HKCU\Software\Reimage [] (PUP.ReimageRepair)
SUPPRIM� cl�: HKCU\Software\Torch [] (PUP.Torch)
SUPPRIM� cl�*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\driverrestore.com [] (PUP.DriverRestore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Equation.DGEE2 [DeltaGraph Equation 2.1] (Toolbar.DeltaSearch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\PCMService.PCMSystemTrayRec [PCMSystemTrayRec Class] (Adware.CasClient)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\PCMService.PCMSystemTrayRec.1 [PCMSystemTrayRec Class] (Adware.CasClient)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Torch.torrent [] (PUP.Torch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\TorchsVLC.flv [] (PUP.Torch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\TorchSetup-r25-n-bi.exe [] (PUP.Torch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\TorchSetup-r68-n-bf.exe [] (PUP.Torch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Reimage [] (PUP.ReimageRepair)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Torch [] (PUP.Torch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ba20b5da-0f48-40c5-b8c9-2cda4ecf75c2} [C:\Program Files (x86)\Toolbar Cleaner (Not File)] (PUP.ToolbarCleaner)


---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Opera Software)
~ Le syst�me a �t� red�marr�.


---\\ Statistiques
~ Items scann�s : 1022
~ Items trouv�s : 0
~ Items annul�s : 0
~ Items r�par�s : 73


End of clean at 21:20:39
===================
ZHPCleaner-[R]-20052015-21_20_39.txt
ZHPCleaner-[S]-20052015-21_19_51.txt

Publicité


Signaler le contenu de ce document

Publicité