cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.8.20.329 by Nicolas Coolman (2015/08/20)
~ Run by Ludivine (Administrator) (20/08/2015 21:34:26)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Ludivine\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Ludivine\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)


---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Navigateur internet. (13)
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.defaultenginename", "mystartsearch"); =>PUP.Optional.StartSearch
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.searchengine.alias", "mystartsearch"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.searchengine.iconURL", "http://www.mystartsearch.com/favicon.ico"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.searchengine.name", "mystartsearch"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.searchengine.ptid", "tugs"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.searchengine.uid", "TOSHIBAXDT01ACA100_24G2DAJKSXX24G2DAJKSX"); =>PUP.Optional.SearchEngine
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.searchengine.url", "http://www.mystartsearch.com/web/?type=ds&ts=144006791[...] =>PUP.Optional.SearchEngine
SUPPRIMÉ: [opa9n6k8.default] - user_pref("browser.search.selectedEngine", "mystartsearch"); =>PUP.Optional.StartSearch
SUPPRIMÉ: [opa9n6k8.default] - user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
SUPPRIMÉ: [opa9n6k8.default] - user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
REMPLACÉ Quicklaunch: C:\Users\Ludivine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1440067912&z=dce27b26e068e5f7136feddg0zez2e1g7w5e2mfofb&from=tugs&uid=TOSHIBAXDT01ACA100_24G2DAJKSXX24G2DAJKSX] (Hijacker.Browser)
REMPLACÉ TaskBar: C:\Users\Ludivine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\ASUS Launcher.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1440067912&z=dce27b26e068e5f7136feddg0zez2e1g7w5e2mfofb&from=tugs&uid=TOSHIBAXDT01ACA100_24G2DAJKSXX24G2DAJKSX] (Hijacker.Browser)


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (1)
SUPPRIMÉ tâche: [SpeedUpMyPC Subscription] [C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe (Not File) ] =>PUP.Optional.SpeedUpMyPC


---\\ Explorateur ( Dossiers, Fichiers ). (22)
DEPLACÉ fichier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\searchplugins\mystartsearch.xml =>PUP.Optional.StartSearch
DEPLACÉ fichier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\searchplugins\search-provided-by-yahoo.xml =>PUP.Optional.BDYahoo
DEPLACÉ fichier*: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\defsearchp@gmail.com\chrome =>PUP.Optional.PriceFountain
DEPLACÉ fichier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\defsearchp@gmail.com\chrome.manifest =>PUP.Optional.PriceFountain
DEPLACÉ fichier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\defsearchp@gmail.com\install.rdf =>PUP.Optional.PriceFountain
DEPLACÉ fichier*: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\deskCutv2@gmail.com\chrome =>PUP.Optional.DeskCut
DEPLACÉ fichier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\deskCutv2@gmail.com\chrome.manifest =>PUP.Optional.DeskCut
DEPLACÉ fichier*: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\deskCutv2@gmail.com\defaults =>PUP.Optional.DeskCut
DEPLACÉ fichier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\deskCutv2@gmail.com\install.rdf =>PUP.Optional.DeskCut
DEPLACÉ fichier^: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\deskCutv2@gmail.com\modules =>PUP.Optional.DeskCut
DEPLACÉ fichier*: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\extensions\defsearchp@gmail.com =>PUP.Optional.PriceFountain
DEPLACÉ fichier*: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\extensions\deskCutv2@gmail.com =>PUP.Optional.DeskCut
DEPLACÉ fichier: C:\Windows\Tasks\SpeedUpMyPC Subscription.job =>PUP.Optional.SpeedUpMyPC
DEPLACÉ fichier: C:\Windows\Prefetch\GMSD_BE_004010066.EXE-92C5B13D.pf =>PUP.Optional.CrossRider
DEPLACÉ fichier: C:\Windows\Prefetch\SPEEDUPMYPC.TMP-8535771B.pf =>PUP.Optional.SpeedUpMyPC
DEPLACÉ fichier: C:\Windows\Prefetch\UPGMSD_BE_004010066.EXE-C43E0948.pf =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\defsearchp@gmail.com =>PUP.Optional.PriceFountain
DEPLACÉ dossier: C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\Extensions\deskCutv2@gmail.com =>PUP.Optional.DeskCut
DEPLACÉ dossier: C:\Program Files (x86)\gmsd_be_004010066 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
DEPLACÉ dossier: C:\Users\Ludivine\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
DEPLACÉ dossier: C:\Users\Ludivine\AppData\Local\gmsd_be_004010066 =>PUP.Optional.CrossRider


---\\ Base de Registres ( Clés, Valeurs, Données ). (22)
SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\defsearchp@gmail.com [C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\extensions\defsearchp@gmail.com] =>PUP.Optional.PriceFountain
SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\deskCutv2@gmail.com [C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\opa9n6k8.default\extensions\deskCutv2@gmail.com] =>PUP.Optional.DeskCut
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-3769630172-1517246048-33524987-1002\Software\gamesdesktop [] =>PUP.Optional.GamesDesktop
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-3769630172-1517246048-33524987-1002\Software\System Optimizer [] =>PUP.Optional.SystemOptimizer
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-3769630172-1517246048-33524987-1002\Software\Tutorials [] =>PUP.Optional.AgenceExclusive
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-3769630172-1517246048-33524987-1002\Software\TutoTag [] =>PUP.Optional.AgenceExclusive
SUPPRIMÉ clé: HKCU\Software\gamesdesktop [] =>PUP.Optional.GamesDesktop
SUPPRIMÉ clé: HKCU\Software\System Optimizer [] =>PUP.Optional.SystemOptimizer
SUPPRIMÉ clé*: HKCU\Software\Tutorials [] =>PUP.Optional.AgenceExclusive
SUPPRIMÉ clé: HKCU\Software\TutoTag [] =>PUP.Optional.AgenceExclusive
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mystartsearch.com [] =>PUP.Optional.StartSearch
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mystartsearch.com [4298] =>PUP.Optional.StartSearch
SUPPRIMÉ clé*: HKCU\Software\ProductSetup [] =>PUP.Optional.InstallCore
SUPPRIMÉ clé*: HKCU\Software\Mozilla\Extends [] =>PUP.Optional.FastStart
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\FFPluginHp [] =>PUP.Optional.SweetSearch
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP [] =>PUP.Optional.GamesDesktop
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware [] =>PUP.Optional.StartSearch
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Tutorials [] =>PUP.Optional.AgenceExclusive
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Uniblue [] =>PUP.Optional.Uniblue
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ZoomWebLists [] =>PUP.Optional.Zoom
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_be_004010066_is1 [GAMESDESKTOP] =>PUP.Optional.CrossRider
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\\upgmsd_be_004010066.exe [C:\Users\Ludivine\AppData\Local\gmsd_be_004010066\upgmsd_be_004010066.exe -runonce] =>PUP.Optional.CrossRider


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 1150
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 58


~ End of clean in 0 minutes
===================
ZHPCleaner-[R]-20082015-21_35_08.txt
ZHPCleaner-[S]-20082015-21_34_13.txt

Publicité


Signaler le contenu de ce document

Publicité