cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.8.13.324 by Nicolas Coolman (2015/08/13)
~ Run by Geoffroy (Administrator) (15/08/2015 11:14:48)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Geoffroy\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Geoffroy\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 10240)


---\\ Service. (1)
SUPPRIMÉ : WindowsMangerProtect =>PUP.Optional.Fuyu


---\\ Navigateur internet. (19)
SUPPRIMÉ Firefox: [fbp2ae9h.default] URL HomePage : http://www.sweet-page.com/?type=hp&ts=1439570563&z=ff2276542693b0a20b690bbg1z0cetdwbm[...] =>PUP.Optional.SweetPage
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.newtab.url", "http://www.sweet-page.com/newtab/?type=nt&ts=1439570563&z=ff2276542[...] =>PUP.Optional.SweetPage
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.search.searchengine.alias", "sweet-page"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.search.searchengine.iconURL", "http://www.sweet-page.com/favicon.ico"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.search.searchengine.name", "sweet-page"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.search.searchengine.ptid", "cor"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.search.searchengine.uid", "ST1000LM024XHN-M101MBB_S31LJ9AFA01841"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [fbp2ae9h.default] - user_pref("browser.search.searchengine.url", "http://www.sweet-page.com/web/?type=ds&ts=1439570563&z[...] =>PUP.Optional.SearchEngine
REMPLACÉ IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL [http://www.sweet-page.com/?type=hp&ts=1439570563&z=ff2276542693b0a20b690bbg1z0ce[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page [http://www.sweet-page.com/?type=hp&ts=1439570563&z=ff2276542693b0a20b690bbg1z0ce[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Page_URL [http://www.sweet-page.com/?type=hp&ts=1439570563&z=ff2276542693b0a20b690bbg1z0ce[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Start Page [http://www.sweet-page.com/?type=hp&ts=1439570563&z=ff2276542693b0a20b690bbg1z0ce[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Search Page [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Default_Page_URL [http://www.sweet-page.com/?type=hp&ts=1439570563&z=ff2276542693b0a20b690bbg1z0ce[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Start Page [http://www.sweet-page.com/?type=hp&ts=1439570563&z=ff2276542693b0a20b690bbg1z0ce[...]] =>PUP.Optional.SweetPage
REMPLACÉ IE Params: HKLM64\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\\Search Page [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1[...]] =>PUP.Optional.SweetPage


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (27)
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\searchplugins\sweet-page.xml =>PUP.Optional.SweetPage
DEPLACÉ fichier*: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\defsearchp@gmail.com\chrome =>PUP.Optional.PriceFountain
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\defsearchp@gmail.com\chrome.manifest =>PUP.Optional.PriceFountain
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\defsearchp@gmail.com\install.rdf =>PUP.Optional.PriceFountain
DEPLACÉ fichier*: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\deskCutv2@gmail.com\chrome =>PUP.Optional.DeskCut
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\deskCutv2@gmail.com\chrome.manifest =>PUP.Optional.DeskCut
DEPLACÉ fichier*: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\deskCutv2@gmail.com\defaults =>PUP.Optional.DeskCut
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\deskCutv2@gmail.com\install.rdf =>PUP.Optional.DeskCut
DEPLACÉ fichier^: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\deskCutv2@gmail.com\modules =>PUP.Optional.DeskCut
DEPLACÉ fichier*: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\extensions\defsearchp@gmail.com =>PUP.Optional.PriceFountain
DEPLACÉ fichier*: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\extensions\deskCutv2@gmail.com =>PUP.Optional.DeskCut
DEPLACÉ fichier: C:\ProgramData\OWinManProO\ProtectWindowsManager.exe [DTools LIMITED - DTools] =>PUP.Optional.Fuyu
DEPLACÉ fichier: C:\Program Files (x86)\System Optimizer\SysOptLauncher.exe =>PUP.Optional.SystemOptimizer
DEPLACÉ fichier: C:\Windows\Prefetch\MAY12_3695_COR_SWEET-PAGE.EXE-2689A05D.pf =>PUP.Optional.SweetPage
DEPLACÉ fichier: C:\Windows\Prefetch\WPM_V20.0.0.2294.EXE-F94CF08F.pf =>PUP.Optional.WpManager
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage =>PUP.Optional.Generic
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal =>PUP.Optional.Generic
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sweet-page.com_0.localstorage =>PUP.Optional.SweetPage
DEPLACÉ fichier: C:\Users\Geoffroy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sweet-page.com_0.localstorage-journal =>PUP.Optional.SweetPage
DEPLACÉ dossier: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\defsearchp@gmail.com =>PUP.Optional.PriceFountain
DEPLACÉ dossier: C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\Extensions\deskCutv2@gmail.com =>PUP.Optional.DeskCut
DEPLACÉ dossier: C:\Users\Geoffroy\AppData\Roaming\1H1Q1V0B1L1G1N1V0M1P1Q1L1T0D1P1E2Z =>PUP.Optional.InstallCore
DEPLACÉ dossier: C:\Program Files (x86)\System Optimizer =>PUP.Optional.SystemOptimizer
DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Optimizer =>PUP.Optional.SystemOptimizer
DEPLACÉ dossier: C:\Users\Geoffroy\AppData\Roaming\sweet-page =>PUP.Optional.SweetPage
DEPLACÉ dossier: C:\Users\Geoffroy\AppData\Roaming\System Optimizer =>PUP.Optional.SystemOptimizer
DEPLACÉ dossier: C:\Users\Geoffroy\AppData\Local\Temp\Filter Results =>PUP.Optional.FilterResults


---\\ Base de Registres ( Clés, Valeurs, Données ). (27)
SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\defsearchp@gmail.com [C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\extensions\defsearchp@gmail.com] =>PUP.Optional.PriceFountain
SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\deskCutv2@gmail.com [C:\Users\Geoffroy\AppData\Roaming\Mozilla\Firefox\Profiles\fbp2ae9h.default\extensions\deskCutv2@gmail.com] =>PUP.Optional.DeskCut
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1z0cetdwbm5edw9z9m&fr[...]] [sweet-page] (PUP.Optional.SweetPage)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1z0cetdwbm5edw9z9m&fr[...]] [sweet-page] (PUP.Optional.SweetPage)
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1z0cetdwbm5edw9z9m&fr[...]] [sweet-page] (PUP.Optional.SweetPage)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1z0cetdwbm5edw9z9m&from=cor&uid=ST1000LM024XHN-M101MBB_S31LJ9AFA01841&q={searchTerms}] =>PUP.Optional.SweetPage
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1z0cetdwbm5edw9z9m&from=cor&uid=ST1000LM024XHN-M101MBB_S31LJ9AFA01841&q={searchTerms}] =>PUP.Optional.SweetPage
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.sweet-page.com/web/?type=ds&ts=1439570563&z=ff2276542693b0a20b690bbg1z0cetdwbm5edw9z9m&from=cor&uid=ST1000LM024XHN-M101MBB_S31LJ9AFA01841&q={searchTerms}] =>PUP.Optional.SweetPage
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect [C:\ProgramData\OWinManProO\ProtectWindowsManager.exe (Not File)] =>PUP.Optional.Fuyu
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\43a4caf9-331c-855f-abfe-e45e910d37a3 [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé: [X64] HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect [C:\ProgramData\OWinManProO\ProtectWindowsManager.exe (Not File)] =>PUP.Optional.Fuyu
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-3254555471-3490134174-365504639-1001\Software\System Optimizer [] =>PUP.Optional.SystemOptimizer
SUPPRIMÉ clé: HKCU\Software\System Optimizer [] =>PUP.Optional.SystemOptimizer
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\removebrowservirus.com [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.removebrowservirus.com [54] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKCU\Software\ProductSetup [] =>PUP.Optional.InstallCore
SUPPRIMÉ clé*: HKCU\Software\Mozilla\Extends [] =>PUP.Optional.FastStart
SUPPRIMÉ clé*: HKLM\SOFTWARE\Wow6432Node\Policies\Google\Update [] =>PUM.Security.Hijack
SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect [] =>PUP.Optional.Fuyu
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\FFPluginHp [] =>PUP.Optional.SweetSearch
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect [] =>PUP.Optional.Fuyu
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\sweet-pageSoftware [] =>PUP.Optional.SweetPage
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\sweet-page uninstall [sweet-page] =>PUP.Optional.SweetPage
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\System Optimizer_is1 [Get Live Support Limited] =>PUP.Optional.GetLiveSupport
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WIC [] =>PUP.Optional.GetLiveSupport
SUPPRIMÉ valeur: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_62A2F92C0466E7FB3598258E9FD483F0 ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window] =>PUP.Optional.CrossBrowse
SUPPRIMÉ valeur: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\System Optimizer [C:\Program Files (x86)\System Optimizer\SysOptLauncher.exe] =>PUP.Optional.SystemOptimizer


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 7590
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 74


~ End of clean in 1 minutes
===================
ZHPCleaner-[R]-15082015-11_15_58.txt
ZHPCleaner-[S]-15082015-11_11_50.txt

Publicité


Signaler le contenu de ce document

Publicité