cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.6.6.269 by Nicolas Coolman (2015\06\6)
~ Run by Tollitte (Administrator) (06/06/2015 18:59:03)
~ Site : http://nicolascoolman.com/fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Netttoyer
~ Report : C:\Users\Tollitte\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Tollitte\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (0)
~ Aucun �l�ment malicieux trouv�.


---\\ Navigateur internet. (10)
SUPPRIM�: [xy2e431t.default] - user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"wrc@avast.com\"[...] (PUP.CacaoWeb)
DEPLAC� fichier: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\chrome (PUP.CacaoWeb) []
DEPLAC� fichier: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\chrome.manifest (PUP.CacaoWeb) [3AB2922972335BD726B64157924800A1]
DEPLAC� fichier: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\defaults (PUP.CacaoWeb) []
DEPLAC� fichier: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\install.rdf (PUP.CacaoWeb) [F3C86BC9A40A2FD6CB09D7F67BD1808E]
REMPLAC� Opera URL: hxxp://start.mysearchdial.com/?f=1&a=srf_14_12_ch&cd=2XzuyEtN2Y1L1QzutC0CyC0FyCyDzztBzy0E0D0CyE0CyCy[...] (PUP.MySearchDial)
SUPPRIM� donn�e: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride [Bad : ] (Hijacker.Proxy)
REMPLAC� Quicklaunch: C:\Users\Tollitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1433082877&z=433953f4d75f26f14690758g9z8cacee0b9o0bfm9q&from=ima&uid=WDCXWD5000AAKX-001CA0_WD-WCAYUC98850888508] (Hijacker.Browser)
REMPLAC� Quicklaunch: C:\Users\Tollitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1433082877&z=433953f4d75f26f14690758g9z8cacee0b9o0bfm9q&from=ima&uid=WDCXWD5000AAKX-001CA0_WD-WCAYUC98850888508] (Hijacker.Browser)
REMPLAC� TaskBar: C:\Users\Tollitte\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1433082877&z=433953f4d75f26f14690758g9z8cacee0b9o0bfm9q&from=ima&uid=WDCXWD5000AAKX-001CA0_WD-WCAYUC98850888508] (Hijacker.Browser)


---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)


---\\ T�che planifi�e. (0)
~ Aucun �l�ment malicieux trouv�.


---\\ Explorateur ( Dossiers, Fichiers ). (86)
DEPLAC� fichier*: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\chrome (PUP.CacaoWeb)
DEPLAC� fichier: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\chrome.manifest (PUP.CacaoWeb)
DEPLAC� fichier*: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\defaults (PUP.CacaoWeb)
DEPLAC� fichier: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org\install.rdf (PUP.CacaoWeb)
DEPLAC� fichier: C:\Windows\Prefetch\PACKBARRE.EXE-597BE6A7.pf (Adware.ADON)
DEPLAC� fichier: C:\Users\Tollitte\Desktop\PackBarre.lnk (Adware.ADON)
DEPLAC� fichier: C:\END (PUP.Conduit)
DEPLAC� fichier: C:\Users\Tollitte\AppData\Roaming\cacaoweb\cacaoweb.exe (PUP.CacaoWeb)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Roaming\Mozilla\Firefox\Profiles\xy2e431t.default\Extensions\cacaoweb@cacaoweb.org (PUP.CacaoWeb)
DEPLAC� dossier: C:\Program Files (x86)\PackBarre (Adware.ADON)
DEPLAC� dossier: C:\ProgramData\MailUpdate (PUP.MailUpdate)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Roaming\cacaoweb (PUP.CacaoWeb)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Roaming\MailUpdate (PUP.MailUpdate)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Roaming\Uniblue (PUP.UniblueSystem)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PackBarre (Adware.ADON)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\Media Get LLC (PUP.MediaGet)
DEPLAC� dossier: C:\Program Files (x86)\Software (Adware.Boxore)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\Software (Adware.Boxore)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{069C4E64-A349-4CDF-AFBA-21181D79A7B7} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{0CF05922-8CE0-4301-B680-749FFE9DA47F} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{128C08CD-227C-46A7-8FF3-A786EA6753F3} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{1369BAAA-C18B-40F0-8170-8BF817B59C4A} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{13F1604F-B683-42B0-BDB8-1E2DA9D8CE6B} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{1AA222CB-5211-4B1D-B6B2-9DF7FC7EB33D} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{2A916224-F3C0-4CF0-8561-C51022D77D36} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{346E0110-DD3A-45E8-9B12-A1485912FB8F} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{34B79D37-BAB0-4A40-BA78-462309320405} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{3AE4A677-18E5-4A53-BC67-A8F2D107FC93} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{3C368C05-A211-4301-B751-9A0646AD29D4} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{3D08FBAC-7195-4826-9E73-546C0E6ECC64} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{4041178B-BF37-4D2F-BDE1-BAA025CEE04D} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{42F7FFB1-C842-4189-8802-E5A690F669D1} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{44AE95D8-9A72-49FE-9D6A-43DE6EB8CD95} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{45A78C68-67CD-4502-8B93-A3F87CF9CD20} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{4840AC53-8836-4C0E-941C-276CAFD87A0D} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{49E23BBC-57C8-4E0A-A734-6168A9FA1B68} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{513E69DF-B198-4D96-931C-8A53C31F30FF} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{52422E10-5FC0-4B93-B1AA-107082965D00} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{56BC658E-6FA2-4434-B41E-F65D1398B285} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{56C2B114-12E4-4E83-A6B7-177F7DD29BFE} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{58C8E83E-B9EF-48CE-B3DB-5F203D9DB297} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{5A4E72D4-2D07-4B14-9CF2-8C7AB532ED57} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{5AAE21A8-1C37-47EE-96CD-93FA3E2CCB92} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{5AE5887B-567A-406C-96DE-0F670DC70619} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{619FD2C1-B624-4A87-A2C0-47352D46A20B} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{668CE98C-513F-417E-A91C-B71B971B73A8} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{67B57099-ABB8-4658-8E7A-A6D70CE68438} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{75A06D38-7BC7-4F97-B8CF-C014349D32AC} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{7703A146-B911-4233-8AD5-8CC763DD9AB1} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{7A11B2AF-ECDD-445D-8EC4-6794BD1B06E6} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{8883E6AD-F3ED-471B-A60D-E552C4E717BF} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{8CC0793E-1ADE-41F4-8950-20902FA1ED57} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{8D7F029A-E8FE-4AD4-B480-51567615753A} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{8F26075F-637D-4E19-8749-9BC64E7762F8} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{90126A3F-1A73-4996-81B9-EC7A3B60CFC0} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{90ABDA49-E897-40B6-AEF2-7E34DC12E6A3} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{947084A1-72B3-48FF-874F-C2863271E691} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{9585C85A-76C1-48B9-A9FC-BB8843155409} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{97832EAD-B008-4F1C-A1DA-B17B28166177} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{A2732873-075B-49E5-9450-3FD1453F8677} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{A27A0A00-5502-4106-B75F-3CDE179F5DBA} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{A58896C7-0BC1-4841-89F9-D95E42E42D38} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{ABA13B42-FC55-42F9-A569-A9EBCB95F768} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{B0301A98-0483-41D5-AB6E-8A0D1B10284C} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{B0C6E56A-1E5D-4151-B51E-0303B0BC7F2C} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{BBC230F7-6B75-44BC-B6B5-B28401AD6C26} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{BCD25CC8-998B-4BE6-8AC6-09EBEE1244E9} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{BD857FC4-7E99-47C4-A6D6-0ADDF3463444} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{BF583446-A8D6-4A5A-9CA8-EDB09705BF4F} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{C23424F4-78AB-47BC-8D04-09E7E94104CA} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{C776FDD1-CB2B-406B-8C63-AD4B87E48CAA} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{C9E39ACD-E9DE-43A4-B17C-03416A6F9CF9} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{CCFAA9FC-173E-4CAA-836B-010DEDE82004} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{D28D22C4-4501-4D0A-9045-A86F1F7C0C23} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{D741C440-7F1F-44E9-8474-07F43813436D} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{E1E22140-E5B0-48F9-B1E4-A4BD23971491} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{E3AFEEFD-B2EF-48A3-8B30-73CDC30BF4DA} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{E3F30E0D-5E73-4EB2-B732-54787A60D779} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{E535CF85-5F62-4085-BFD5-AC8D8F7DCC8E} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{E6D9B92B-59EC-4E35-81B8-F1EDA00D724E} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{E753F976-D20D-4733-8F3D-2BAC2ED16E8F} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{ED9CA06C-5649-4949-83B5-1802FF8F9698} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{F305CC09-37AB-4E83-BC75-BBC516C27C1E} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{F532B2C0-81EE-4394-ADB7-0C8589E0304C} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{F831A784-6ED4-4F85-A831-88A31C12C748} (Empty)
DEPLAC� dossier: C:\Users\Tollitte\AppData\Local\{FE9A8EB5-99F4-42F3-9A1A-A8A0AEB875F5} (Empty)


---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (110)
SUPPRIM� cl�*: HKCU\Software\Google\Chrome\Extensions\leahdjjpjmnamomgpojikeapflgbmjab [C:\Users\Tollitte\AppData\Roaming\cacaoweb\cacaoweb.crx (Not File)] (PUP.CacaoWeb)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Currentversion\Uninstall\SearchProtect [] (Adware.Sambreel)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\escortApp.DLL\ [] (PUP.MySearchDial)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} [escortApp] (PUP.MySearchDial)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater ["C:\Program Files (x86)\Ask.com\Updater\Updater.exe" (Not File)] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cacaoweb ["C:\Users\Tollitte\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer (Not File)] (PUP.CacaoWeb)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-221288783-1690033941-3760259331-1000\Software\Appscion [] (PUP.LiveSoftAction)
SUPPRIM� cl�*: HKEY_USERS\S-1-5-21-221288783-1690033941-3760259331-1000\Software\cacaoweb [C:\Users\Tollitte\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] (PUP.CacaoWeb)
SUPPRIM� cl�: HKCU\Software\Appscion [] (PUP.LiveSoftAction)
SUPPRIM� cl�: HKCU\Software\cacaoweb [C:\Users\Tollitte\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] (PUP.CacaoWeb)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\esrv.EXE [] (PUP.Funmoods)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\escort.dll [] (PUP.Babylon)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Classes\AppID\escortapp.dll [] (PUP.Babylon)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\escorteng.dll [] (PUP.Babylon)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0} [esrv] (PUP.MySearchDial)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} [escortEng] (PUP.Funmoods)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\DeltaMAX.Patch [DeltaMAX Patch Class] (Toolbar.DeltaSearch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\DeltaMAX.Patch.1 [DeltaMAX Patch Class] (Toolbar.DeltaSearch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\iMesh [] (PUP.iMesh)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass [Google Update Core Class] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass.1 [Google Update Core Class] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc.1.0 [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\TUBEDOWNLOADER.TubeDownloaderCtrl.1 [TubeDownloader Control] (PUP.SoftwareEngine)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\iLividSetupV1 (1).exe [] (Adware.Bandoo)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\iMeshSetup-r1827-n-bc.exe [] (PUP.iMesh)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\Applications\moovida.exe [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\mailUpdate [] (PUP.MailUpdate)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update DigiHelp [] (PUP.DigiHelp)
SUPPRIM� cl�*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util DigiHelp [] (PUP.DigiHelp)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ConduitFloatingPlugin_biahaobfpkgeiomkihcdgknebbhadonc ["C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Conduit\CT3307695\plugins\TBVerifier.dll",RunConduitFloatingPlugin biahaobfpkgeiomkihcdgknebbhadonc (Not File)] (PUP.Conduit)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings ["C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" (Not File)] (Adware.SearchSettings)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM [C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (Not File)] (PUP.SweetIM)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\moovida.exe [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\moovida_win32_release.exe [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SoftwareUpdate.exe [] (Adware.Boxore)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5 [C:\Program Files (x86)\Iminent\IMBooster\inst\Bootstrapper\Bootstrapper.exe (Not File)] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6 [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852 [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0 [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96 [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59 [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E [] (Toolbar.Ask)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Clara [] (Adware.SupTab)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\MediaGet [C:\Users\Tollitte\AppData\Local\MediaGet2\mediaget.exe (Not File)] (PUP.MediaGet)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\SupDp [] (Adware.SupTab)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\esrv.EXE [] (PUP.Funmoods)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\escort.dll [] (PUP.Babylon)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\escortapp.dll [] (PUP.Babylon)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\escorteng.dll [] (PUP.Babylon)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0} [esrv] (PUP.MySearchDial)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} [escortEng] (PUP.Funmoods)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Conduit Engine [] (PUP.Conduit)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] (PUP.LinkeySearch)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\babylon_pagerage_RASAPI32 [] (PUP.Babylon)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\babylon_pagerage_RASMANCS [] (PUP.Babylon)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExtensionUpdaterService_RASAPI32 [] (Adware.IncrediBar)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExtensionUpdaterService_RASMANCS [] (Adware.IncrediBar)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\imbooster_RASAPI32 [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\imbooster_RASMANCS [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_0-05vgkvWP__RASAPI32 [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_0-05vgkvWP__RASMANCS [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_2-KFRPtAWP-1__RASAPI32 [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_2-KFRPtAWP-1__RASMANCS [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup{0_RASAPI32 [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup{0_RASMANCS [] (Adware.IMBooster)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lollipop_14657_2811-4f851c91_RASAPI32 [] (Adware.Lollipop)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lollipop_14657_2811-4f851c91_RASMANCS [] (Adware.Lollipop)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lollipop_RASAPI32 [] (Adware.Lollipop)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lollipop_RASMANCS [] (Adware.Lollipop)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LyricsPal_RASAPI32 [] (Adware.AddLyrics)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LyricsPal_RASMANCS [] (Adware.AddLyrics)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida-setup_RASAPI32 [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida-setup_RASMANCS [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASAPI32 [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASMANCS [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_RASAPI32 [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_RASMANCS [] (Adware.SPointer)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\offerbox-setup_RASAPI32 [] (PUP.OfferBox)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\offerbox-setup_RASMANCS [] (PUP.OfferBox)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchSettings_RASAPI32 [] (Adware.SearchSettings)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchSettings_RASMANCS [] (Adware.SearchSettings)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Smartbar_RASAPI32 [] (PUP.QuickShare)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Smartbar_RASMANCS [] (PUP.QuickShare)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Softonic_FranceAutoUpdateHelper_RASAPI32 [] (PUP.Softonic)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Softonic_FranceAutoUpdateHelper_RASMANCS [] (PUP.Softonic)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateDigiHelp_RASAPI32 [] (PUP.DigiHelp)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateDigiHelp_RASMANCS [] (PUP.DigiHelp)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateMegaBrowse_RASAPI32 [] (Adware.Sambreel)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateMegaBrowse_RASMANCS [] (Adware.Sambreel)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilDigiHelp_RASAPI32 [] (PUP.DigiHelp)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilDigiHelp_RASMANCS [] (PUP.DigiHelp)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilMegaBrowse_RASAPI32 [] (Adware.Sambreel)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilMegaBrowse_RASMANCS [] (Adware.Sambreel)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-Silent-16DC_RASAPI32 [] (Adware.Yontoo)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-Silent-16DC_RASMANCS [] (Adware.Yontoo)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4E80449A-DCED-46E0-9929-59479F5C9117} [C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar (Not File)] (PUP.Datamngr)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7B75A484-B2DD-4ED9-A10C-CF1FE384FBAD} [C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar (Not File)] (PUP.Datamngr)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E193BDAC-C5DD-4A68-82B2-8106C99CC380} [C:\ProgramData\Conduit (Not File)] (PUP.Conduit)
SUPPRIM� cl�*: [X64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52} [Manager Class] (PUP.DigiHelp)
SUPPRIM� cl�: [X64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}\InprocServer32 [C:\Program Files (x86)\DigiHelp\bin\{2b4f8230-394e-4951-9495-bafd44d837da}64.dll (Not File)] (PUP.DigiHelp)
SUPPRIM� valeur: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\cacaoweb ["C:\Users\Tollitte\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer] (PUP.CacaoWeb)


---\\ Bilan de la r�paration
~ R�paration r�alis�e avec succ�s.


---\\ Statistiques
~ Items scann�s : 925
~ Items trouv�s : 0
~ Items annul�s : 0
~ Items r�par�s : 206


End of clean at 19:01:35
===================
ZHPCleaner-[R]-06062015-19_01_35.txt
ZHPCleaner-[S]-06062015-17_41_53.txt
ZHPCleaner-[S]-06062015-18_58_11.txt

Publicité


Signaler le contenu de ce document

Publicité