cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.8.29.335 by Nicolas Coolman (2015/08/29)
~ Run by damien (Administrator) (29/08/2015 11:51:15)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\damien\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\damien\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Navigateur internet. (21)
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.cacaoweb@cacaoweb.org.install-event-fired", true); =>PUP.Optional.CacaoWeb
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.AL", 4); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.aflt", "vst_dnldastr_14_51_ff"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.appId", "{4CB3598A-82E8-4D1F-983F-061238AE696E}"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.cd", "2XzuyEtN2Y1L1Qzu0EzzyEtD0FtB0BzzyD0FtAzy0DyC0FtBtN0D0Tzu0StCtD[...] =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.cr", "1689432653"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.dfltLng", ""); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.dfltSrch", true); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.dnsErr", true); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.excTlbr", false); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.hmpg", true); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.id", "E840F2B85F39D6F2"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.instlDay", "16419"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.instlRef", "142905_s"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.prdct", "srchvstrn"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.tlbrId", ""); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.vrsn", ""); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn.vrsni", ""); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn_i.newTab", true); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn_i.smplGrp", "none"); =>PUP.Optional.Vosteran
SUPPRIMÉ: [ozpvfejv.default-1406207864682] - user_pref("extensions.srchvstrn_i.vrsnTs", "18:44:7"); =>PUP.Optional.Vosteran


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (7)
DEPLACÉ fichier: C:\Users\damien\AppData\Roaming\Mozilla\Firefox\Profiles\ozpvfejv.default-1406207864682\extensions\artur.dubovoy@gmail.com\modules\superfish.js =>PUP.Optional.SpecialSavings
DEPLACÉ fichier: C:\Users\damien\AppData\Roaming\Mozilla\Firefox\Profiles\ozpvfejv.default-1406207864682\extensions\artur.dubovoy@gmail.com\modules\superfish_titles.txt =>PUP.Optional.SpecialSavings
DEPLACÉ fichier: C:\ProgramData\InstallMate\{23BA2807-2D47-4CA3-AE48-6565F8590AF1}\Setup.exe [Tarma Software Research Pty Ltd - InstallMate® Setup] =>PUP.Optional.Tarma
DEPLACÉ fichier: C:\ProgramData\InstallMate\{23BA2807-2D47-4CA3-AE48-6565F8590AF1}\TsuDll.dll [Tarma Software Research Pty Ltd - InstallMate® Setup Library] =>PUP.Optional.Tarma
DEPLACÉ dossier: C:\ProgramData\InstallMate =>PUP.Optional.Tarma
DEPLACÉ dossier: C:\Windows\Installer\MSI2945.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIC58.tmp- =>Empty


---\\ Base de Registres ( Clés, Valeurs, Données ). (25)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://istart.webssearches.com/web/?type=ds&ts=1398427367&from=exp&uid=ST9500325AS_5VESFTPRXXXX5VESF[...]] [webssearches] (PUP.Optional.WebsSearches)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} [http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=md_14_17_ch&cd=2XzuyEtN2Y1L1Qzu0Ezzy[...]] [Mysearchdial] (PUP.Optional.MySearchDial)
SUPPRIMÉ clé: HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM[...]] [Conduit Search] (PUP.Optional.Conduit)
SUPPRIMÉ donnée: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B5D159FB-2440-434B-91B1-17B78D62F20F}\\NameServer [Bad : 37.59.72.228,37.187.0.40] =>Hijacker.Browser
SUPPRIMÉ clé*: [X64] HKLM\Software\Google\Chrome\Extensions\iagcajndpnfncplednpbnkahadegklfa [C:\Users\damien\AppData\Local\speedial.crx (Not File)] =>PUP.Optional.SearchYa
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://istart.webssearches.com/web/?type=ds&ts=1398427367&from=exp&uid=ST9500325AS_5VESFTPRXXXX5VESFTPR&q={searchTerms}] =>PUP.Optional.WebsSearches
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} [http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=md_14_17_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtB0BzzyD0FtAzy0DyC0FtBtN0D0Tzu0SzzyEtAtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyE0F0DtDzyzz0CtAtGtDyB0FtDtG0FzytB0AtGzy0B0DzytGyDtAtCyCyCtB0DtC0AtC0EyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzzyD0F0BtAyEtAtGtDtD0EtAtG0F0A0C0AtG0CtD0AyEtGtCtCyB0E0F0Ezz0AtAyCtC0C2Q&cr=939299755&ir=] =>PUP.Optional.MySearchDial
SUPPRIMÉ clé: HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP7C67A03C-4689-4794-B48D-94F8D15C8223&q={searchTerms}] =>PUP.Optional.Conduit
SUPPRIMÉ clé: HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP7C67A03C-4689-4794-B48D-94F8D15C8223&q={searchTerms}] =>PUP.Optional.Conduit
SUPPRIMÉ clé*: HKCU\Software\AppDataLow\Software\Smartbar [] =>PUP.Optional.QuickShare
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\iLividSetup-r834-n-bo.exe [] =>PUP.Optional.Bandoo
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-19814547-214093020-3849970696-1001\Products\B55E73991336408439FE779E292F40DB [Webplayer] =>PUP.Optional.WebPlayer
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\conduitinstaller_RASAPI32 [] =>PUP.Optional.Conduit
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\conduitinstaller_RASMANCS [] =>PUP.Optional.Conduit
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32 [] =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS [] =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PennyBeeW_RASAPI32 [] =>PUP.Optional.PaybyAds
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PennyBeeW_RASMANCS [] =>PUP.Optional.PaybyAds
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_teamspeak(1)_RASAPI32 [] =>PUP.Optional.Softonic
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_teamspeak(1)_RASMANCS [] =>PUP.Optional.Softonic
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_teamspeak_RASAPI32 [] =>PUP.Optional.Softonic
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_teamspeak_RASMANCS [] =>PUP.Optional.Softonic
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASAPI32 [] =>PUP.Optional.WebCake
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASMANCS [] =>PUP.Optional.WebCake
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B7DA02EB-1E74-4b09-BA92-2209A4EB53F1} [C:\Program Files (x86)\Speed Analysis 2 (Not File)] =>PUP.Optional.SpeedAnalysis


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scannés : 1235
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 53


~ End of clean in 0 minutes
===================
ZHPCleaner-[R]-29082015-11_52_03.txt
ZHPCleaner-[S]-29082015-11_39_48.txt

Publicité


Signaler le contenu de ce document

Publicité