cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.8.17.327 by Nicolas Coolman (2015/08/17)
~ Run by USER (Administrator) (17/08/2015 16:50:25)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\USER\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\USER\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows VISTA, 32-bit Service Pack 2 (Build 6002)


---\\ Services (0)
~ No malicious or unnecessary items found.


---\\ Browser internet (1)
REPLACED Desktop: C:\Users\USER\Desktop\Launch Internet Explorer Browser.lnk [Bad : http://www.oursurfing.com/?type=sc&ts=1439555982&z=1c7dfef57eb3b4cca373933g6zec3t8w5w8w6t8b8c&from=tt4u&uid=HitachiXHDS721616PLA380_PVB300Z2SRRBMFSRRBMFX] (Hijacker.Browser)


---\\ Hosts file (1)
~ The hosts file is legitimate (19)


---\\ Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\ Explorer ( File, Folder) (1)
MOVED file: C:\Users\USER\Downloads\MTK2.5.3\Microsoft Toolkit 2.5.3.exe [CODYQX4 - Microsoft Toolkit] =>HackTool.AutoKMS


---\\ Registry ( Key, Value, Data) (22)
DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7E9D195B-E32A-40DC-AE69-A0DB5A3E7D31}\\NameServer [Bad : 194.204.152.34 194.204.159.1] =>Hijacker.Browser
DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{97646E06-EBEA-4672-89F3-FF6B65DF7863}\\NameServer [Bad : 194.204.159.1,194.204.152.34] =>Hijacker.Browser
DELETED key*: HKLM\SOFTWARE\Microsoft\Windows\Currentversion\Uninstall\SearchProtect [] =>PUP.Optional.SearchProtect
DELETED key*: HKLM\SOFTWARE\22b1c281-bc7c-5dfa-43e3-c94bbae8d6e6 [] =>PUP.Optional.CrossRider
DELETED key*: HKLM\SOFTWARE\cc288aa2-72f8-457b-b192-ff0e0a2e4695 [] =>PUP.Optional.CrossRider
DELETED key*: HKEY_USERS\S-1-5-21-1485101120-829013369-2688285981-1001\Software\APN PIP [] =>PUP.Optional.Conduit
DELETED key*: HKEY_USERS\S-1-5-21-1485101120-829013369-2688285981-1001\Software\globalUpdate [] =>PUP.Optional.GlobalUpdate
DELETED key: HKCU\Software\APN PIP [] =>PUP.Optional.Conduit
DELETED key: HKCU\Software\globalUpdate [] =>PUP.Optional.GlobalUpdate
DELETED key*: HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} [] =>PUP.Optional.Graftor
DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\oursurfing uninstall [] =>PUP.Optional.OurSurfing
DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{e6e6c53} [] =>PUP.Optional.Graftor
DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613} [] =>PUP.Optional.Multiplug
DELETED key*: HKLM\SOFTWARE\Classes\NMCoFoundation.NMCFEventManager [NMCFEventManager Class] =>PUP.Optional.CrossRider
DELETED key*: HKLM\SOFTWARE\Classes\NMCoFoundation.NMCFEventManager.1 [NMCFEventManager Class] =>PUP.Optional.CrossRider
DELETED key*: HKLM\SOFTWARE\Classes\P1D9230BC_BF37_46BF_B780_622803DF4357_.P1D9230BC_BF37_46BF_B780_622803DF4357_ [youtubeadblocker] =>PUP.Optional.Multiplug
DELETED key*: HKLM\SOFTWARE\Classes\P1D9230BC_BF37_46BF_B780_622803DF4357_.P1D9230BC_BF37_46BF_B780_622803DF4357_.9 [youtubeadblocker] =>PUP.Optional.Multiplug
DELETED key*: HKLM\SOFTWARE\GlobalUpdate [] =>PUP.Optional.GlobalUpdate
DELETED key*: HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} [] =>PUP.Optional.Graftor
DELETED key*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] =>PUP.Optional.LinkeySearch
DELETED key*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A48E4B9-372F-4B91-ADB6-73575BA231D2} [C:\Program Files\mystarttb (Not File)] =>PUP.Optional.StartSearch
DELETED key*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ba20b5da-0f48-40c5-b8c9-2cda4ecf75c2} [C:\Program Files\Toolbar Cleaner (Not File)] =>PUP.Optional.ToolbarCleaner


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Google Chrome)
~ Browser not found (Opera Software)


---\\ Statistics
~ Items scanned : 954
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 24


~ End of clean in 0 minutes
===================
ZHPCleaner-[R]-17082015-16_51_17.txt
ZHPCleaner-[S]-17082015-16_48_32.txt

Publicité


Signaler le contenu de ce document

Publicité