cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.8.5.315 by Nicolas Coolman (2015/08/5)
~ Run by HP ProBook (Administrator) (06/08/2015 09:58:21)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\HP ProBook\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\HP ProBook\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)


---\\ Service. (1)
SUPPRIMÉ : nethfdrv =>PUP.Optional.Amonetize


---\\ Navigateur internet. (4)
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Page_URL [hxxp://istart.webssearches.com/?type=hp&ts=1413188149&from=adks&uid=ST9500325AS_[...]] =>PUP.Optional.WebsSearches
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [hxxp://istart.webssearches.com/web/?type=ds&ts=1413188149&from=adks&uid=ST950032[...]] =>PUP.Optional.WebsSearches
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Start Page [hxxp://istart.webssearches.com/?type=hp&ts=1413188149&from=adks&uid=ST9500325AS_[...]] =>PUP.Optional.WebsSearches
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Search Page [hxxp://istart.webssearches.com/web/?type=ds&ts=1413188149&from=adks&uid=ST950032[...]] =>PUP.Optional.WebsSearches


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (25)
DEPLACÉ fichier: C:\windows\system32\drivers\nethfdrv.sys [nethfdrv - nethfdrv] =>PUP.Optional.Amonetize
DEPLACÉ fichier: C:\Windows\Prefetch\TORCH.EXE-05A01EC7.pf =>PUP.Optional.Torch
DEPLACÉ fichier: C:\Windows\Prefetch\TORCH.EXE-C7448314.pf =>PUP.Optional.Torch
DEPLACÉ fichier: C:\Windows\Prefetch\TORCHUPDATE.EXE-FCD11CFB.pf =>PUP.Optional.Torch
DEPLACÉ fichier: C:\ProgramData\InstallMate\{C39C869F-F1A6-46AF-A444-B984187FA469}\Setup.exe [Tarma Software Research Pty Ltd - InstallMate® Setup] =>PUP.Optional.Tarma
DEPLACÉ fichier: C:\ProgramData\InstallMate\{C39C869F-F1A6-46AF-A444-B984187FA469}\TsuDll.dll [Tarma Software Research Pty Ltd - InstallMate® Setup Library] =>PUP.Optional.Tarma
DEPLACÉ fichier^: C:\ProgramData\InstallMate\{5EADD0E9-54F2-4499-A672-1CD0854EF21F}\Setup.exe [Tarma Software Research Pty Ltd - InstallMate® Setup] =>PUP.Optional.Tarma
DEPLACÉ fichier^: C:\ProgramData\InstallMate\{5EADD0E9-54F2-4499-A672-1CD0854EF21F}\TsuDll.dll [Tarma Software Research Pty Ltd - InstallMate® Setup Library] =>PUP.Optional.Tarma
DEPLACÉ dossier: C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
DEPLACÉ dossier: C:\Program Files (x86)\GoSave =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\Program Files (x86)\NextCoup =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\Program Files (x86)\YoutubeAdBlocke =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\ProgramData\468501a4afd8d529 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\EpicScale =>PUP.Optional.EpicScale
DEPLACÉ dossier: C:\ProgramData\GoSave =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\ProgramData\IePluginServices =>Trojan.SProtector
DEPLACÉ dossier: C:\ProgramData\InstallMate =>PUP.Optional.Tarma
DEPLACÉ dossier: C:\ProgramData\NextCoup =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\ProgramData\YoutubeAdBlocke =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\Users\HP ProBook\AppData\Local\Chromatic Browser =>PUP.Optional.ChromaticBrowser
DEPLACÉ dossier: C:\Users\HP ProBook\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
DEPLACÉ dossier: C:\Users\HP ProBook\AppData\Local\pricehorse =>PUP.Optional.PriceHorse
DEPLACÉ dossier: C:\Users\Administrateur\AppData\Local\Chromatic Browser =>PUP.Optional.ChromaticBrowser
DEPLACÉ dossier: C:\Users\Invité\AppData\Local\Chromatic Browser =>PUP.Optional.ChromaticBrowser
DEPLACÉ dossier: C:\Users\Invité\AppData\Local\Torch =>PUP.Optional.Torch


---\\ Base de Registres ( Clés, Valeurs, Données ). (66)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3319709&octid=EB_ORIGINAL_CTID&ISID=M4C58529B-64A5-4689[...]] [Trovi search] (PUP.Optional.Trovigo)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} [http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF] [Ask.com] (Toolbar.Ask)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} [http://websearch.searchfix.info/?l=1&q={searchTerms}&pid=724&r=2014/10/16&hid=178267070910643921&lg=[...]] [WebSearch] (PUP.Optional.SimpleSearches)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} [http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF] [Ask.com] (Toolbar.Ask)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://istart.webssearches.com/web/?type=ds&ts=1413188149&from=adks&uid=ST9500325AS_S2WGNNFX&q={sear[...]] [webssearches] (PUP.Optional.WebsSearches)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} [http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF] [Ask.com] (Toolbar.Ask)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} [http://websearch.searchfix.info/?l=1&q={searchTerms}&pid=724&r=2014/10/16&hid=178267070910643921&lg=[...]] [WebSearch] (PUP.Optional.SimpleSearches)
REMPLACÉ donnée: HKLM\...\IEXPLORE.EXE\Shell\open\Command\\C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1413188149&from=adks&uid=ST9500325AS_S2WGNNFX (PUP.Optional.IsStart)
SUPPRIMÉ clé**: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3319709&octid=EB_ORIGINAL_CTID&ISID=M4C58529B-64A5-4689-A43A-91C440EBFD27&SearchSource=58&CUI=&UM=6&UP=SP8D80EAE4-5ADC-4C6B-AD2D-EF15B1085DC2&q={searchTerms}&SSPV=] =>PUP.Optional.Trovigo
SUPPRIMÉ clé**: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} [http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF] =>Toolbar.Ask
SUPPRIMÉ clé**: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} [http://websearch.searchfix.info/?l=1&q={searchTerms}&pid=724&r=2014/10/16&hid=178267070910643921&lg=EN&cc=SN] =>PUP.Optional.SimpleSearches
SUPPRIMÉ clé**: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} [http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF] =>Toolbar.Ask
SUPPRIMÉ clé**: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://istart.webssearches.com/web/?type=ds&ts=1413188149&from=adks&uid=ST9500325AS_S2WGNNFX&q={searchTerms}] =>PUP.Optional.WebsSearches
SUPPRIMÉ clé**: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} [http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF] =>Toolbar.Ask
SUPPRIMÉ clé**: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} [http://websearch.searchfix.info/?l=1&q={searchTerms}&pid=724&r=2014/10/16&hid=178267070910643921&lg=EN&cc=SN] =>PUP.Optional.SimpleSearches
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Clients\StartMenuInternet\Torch [] =>PUP.Optional.Torch
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\IePluginServices [C:\ProgramData\IePluginServices\PluginService.exe (Not File)] =>PUP.Optional.IePluginService
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\nethfdrv [C:\windows\system32\drivers\nethfdrv.sys (Not File)] =>PUP.Optional.Amonetize
SUPPRIMÉ clé**: [X64] HKLM\SYSTEM\CurrentControlSet\Services\IePluginServices [C:\ProgramData\IePluginServices\PluginService.exe (Not File)] =>PUP.Optional.IePluginService
SUPPRIMÉ clé**: [X64] HKLM\SYSTEM\CurrentControlSet\Services\nethfdrv [C:\windows\system32\drivers\nethfdrv.sys (Not File)] =>PUP.Optional.Amonetize
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EpicScale [] =>PUP.Optional.EpicScale
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-435238125-2350089059-1260341874-1001\Software\1ClickDownload [] =>PUP.Optional.1ClickDownloader
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-435238125-2350089059-1260341874-1001\Software\EpicScale [] =>PUP.Optional.EpicScale
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-435238125-2350089059-1260341874-1001\Software\globalUpdate [] =>PUP.Optional.GlobalUpdate
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-435238125-2350089059-1260341874-1001\Software\Torch [] =>PUP.Optional.Torch
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-435238125-2350089059-1260341874-1001\Software\TornTv Downloader [] =>PUP.Optional.TornTV
SUPPRIMÉ clé**: HKCU\Software\1ClickDownload [] =>PUP.Optional.1ClickDownloader
SUPPRIMÉ clé**: HKCU\Software\EpicScale [] =>PUP.Optional.EpicScale
SUPPRIMÉ clé**: HKCU\Software\globalUpdate [] =>PUP.Optional.GlobalUpdate
SUPPRIMÉ clé**: HKCU\Software\Torch [] =>PUP.Optional.Torch
SUPPRIMÉ clé**: HKCU\Software\TornTv Downloader [] =>PUP.Optional.TornTV
SUPPRIMÉ clé*: HKCU\Software\AppDataLow\Software\Crossrider [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20896E0F-3F5E-4C43-9156-644190543B5} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27C94C0A-EDB8-4DA5-9068-E91B7A3759EA} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28F4356F-2554-4C12-AE5D-6566BFDAA46D} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2DC199D-25AF-45B0-B959-3C4E9FAB0DE} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{302563C1-2FC-49B0-A7CE-D3DB3074617F} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{32E51C49-F4E0-40FB-A560-20F839F4A098} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3579E0F4-9035-4327-AF32-93E51E2772B9} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{35D27904-D1E5-44B7-A54E-36CC81A8C624} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3CEAC366-F3B6-467F-9960-BEC68A11BFA2} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4244A6BE-5ABF-48AC-AB54-DF72229CC47} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{46D744E8-26FE-41D1-B7D1-2CAA78E3713} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6CB06F46-D209-4D57-BF7-F5BB83404227} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{730D0024-7391-4817-B0AF-2EAC3A69EE49} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{749CE2EB-ED9D-439C-B936-EBD2D3B1306C} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78C43FF-708A-4531-862C-5B8C3C87771A} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81728EFE-E7C5-4B20-84A3-3A19E47CA570} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{949E9A07-2871-4B8E-AA54-23BEC19AF251} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BBBEC43-252F-4BC7-AF8B-AED65A21456} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C9DF6CD3-4706-4979-BA74-2ADE656178BA} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D78FBEE1-2F15-4EB4-A97-982BB059F14B} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DA481E0D-1218-4967-BF70-76DC7DDE3DC} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DFDF69AA-D2CF-4280-AA4C-71BCFEEC8FE} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E77873EB-AC7C-45A8-AF96-B539558573BC} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEF88E46-2EE3-435C-ACB1-FF82FA25ED1F} [C:\Program Files (x86)\TheGoPhoto.it V10 (Not File)] =>PUP.Optional.GophotoIt
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\torch-browser-36-0-0-8010-multi-win.exe [] =>PUP.Optional.Torch
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\Torch.exe [] =>PUP.Optional.Torch
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\TorchSetup-r22-n-bc.exe [] =>PUP.Optional.Torch
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Applications\torch_33-0-06969_fr_418134.exe [] =>PUP.Optional.Torch
SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices [] =>PUP.Optional.IePluginService
SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect [] =>PUP.Optional.Fuyu
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\GlobalUpdate [] =>PUP.Optional.GlobalUpdate
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Torch [] =>PUP.Optional.Torch
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\webssearchesSoftware [] =>PUP.Optional.WebsSearches
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613} [] =>PUP.Optional.Multiplug


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 737
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 97


~ End of clean in 1 minutes
===================
ZHPCleaner-[R]-06082015-09_59_49.txt
ZHPCleaner-[S]-06082015-09_56_23.txt

Publicité


Signaler le contenu de ce document

Publicité