cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.10.19.367 by Nicolas Coolman (2015/10/19)
~ Run by Pc (Administrator) (21/10/2015 22:05:56)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Pc\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Pc\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows VISTA, 32-bit Service Pack 2 (Build 6002)


---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Navigateur internet. (3)
REMPLACÉ Quicklaunch: C:\Users\Pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk [Bad : http://www.delta-homes.com/?type=sc&ts=1433786020&z=4e7986d14d689231b4014aagfz5cfc1mbb1qdeeo1m&from=wpm06083&uid=ST3500630AS_9QG79DWQ] =>Hijacker.Browser
REMPLACÉ Quicklaunch: C:\Users\Pc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [Bad : http://www.delta-homes.com/?type=sc&ts=1433786020&z=4e7986d14d689231b4014aagfz5cfc1mbb1qdeeo1m&from=wpm06083&uid=ST3500630AS_9QG79DWQ] =>Hijacker.Browser
REMPLACÉ SystemTools: C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk [Bad : http://www.delta-homes.com/?type=sc&ts=1433786020&z=4e7986d14d689231b4014aagfz5cfc1mbb1qdeeo1m&from=wpm06083&uid=ST3500630AS_9QG79DWQ] =>Hijacker.Browser


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (20)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (13)
DEPLACÉ fichier: C:\WINDOWS\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gt.sys [StdLib - StdLib] =>PUP.Optional.LinkiDoo
DEPLACÉ fichier: C:\Users\Pc\AppData\Roaming\Bubble Dock.boostrap.log =>PUP.Optional.BubbleDock
DEPLACÉ fichier: C:\Users\Pc\AppData\Roaming\Bubble Dock.installation.log =>PUP.Optional.BubbleDock
DEPLACÉ fichier: C:\WINDOWS\Installer\{B85C4CB2-B352-4BD8-818C-BCE353599107}\ARPPRODUCTICON.exe =>PUP.Optional.SweetIM
DEPLACÉ fichier*: C:\WINDOWS\Installer\{2F603A45-D956-496B-81B5-50D782424976}\ARPPRODUCTICON.exe =>PUP.Optional.SweetIM
DEPLACÉ dossier: C:\Program Files\SweetIM =>PUP.Optional.SweetIM
DEPLACÉ dossier: C:\ProgramData\Babylon =>PUP.Optional.Babylon
DEPLACÉ dossier: C:\ProgramData\IePluginServices =>Trojan.SProtector
DEPLACÉ dossier: C:\ProgramData\SweetIM =>PUP.Optional.SweetIM
DEPLACÉ dossier: C:\Users\Pc\AppData\Roaming\Babylon =>PUP.Optional.Babylon
DEPLACÉ dossier: C:\Users\Pc\AppData\Roaming\Nosibay =>PUP.Optional.SPointer
DEPLACÉ dossier: C:\Users\Pc\AppData\Roaming\Systweak =>PUP.Optional.Systweak
DEPLACÉ dossier: C:\Users\Pc\AppData\Local\Babylon =>PUP.Optional.Babylon


---\\ Base de Registres ( Clés, Valeurs, Données ). (92)
REMPLACÉ donnée: HKLM\...\IEXPLORE.EXE\Shell\open\Command\\C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com/?type=sc&ts=1433786020&z=4e7986d14d689231b4014aagfz5cfc1mbb1qdeeo1m&from=wpm06083&uid=ST3500630AS_9QG79DWQ (PUP.Optional.Qvo6)
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gt [C:\WINDOWS\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gt.sys (Not File)] =>PUP.Optional.LinkiDoo
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gt [C:\WINDOWS\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gt.sys (Not File)] =>PUP.Optional.LinkiDoo
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-235350172-305313625-1485855854-1000\Software\APN [] =>Toolbar.Ask
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-235350172-305313625-1485855854-1000\Software\InstallCore [] =>Adware.InstallCore
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-235350172-305313625-1485855854-1000\Software\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-235350172-305313625-1485855854-1000\Software\nuevos-programas.com [] =>PUP.Optional.Generic
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-235350172-305313625-1485855854-1000\Software\Softonic [] =>PUP.Optional.Softonic
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-235350172-305313625-1485855854-1000\Software\SweetIM [] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-235350172-305313625-1485855854-1000\Software\Systweak [] =>PUP.Optional.Systweak
SUPPRIMÉ clé: HKCU\Software\APN [] =>Toolbar.Ask
SUPPRIMÉ clé: HKCU\Software\InstallCore [] =>Adware.InstallCore
SUPPRIMÉ clé: HKCU\Software\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé: HKCU\Software\nuevos-programas.com [] =>PUP.Optional.Generic
SUPPRIMÉ clé: HKCU\Software\Softonic [] =>PUP.Optional.Softonic
SUPPRIMÉ clé: HKCU\Software\SweetIM [] =>PUP.Optional.SweetIM
SUPPRIMÉ clé: HKCU\Software\Systweak [] =>PUP.Optional.Systweak
SUPPRIMÉ clé*: HKCU\Software\AppDataLow\Software\AskToolbar [] =>Toolbar.Ask
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0} [Ask.com] =>Toolbar.Ask
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\sweet-page uninstall [] =>PUP.Optional.SweetPage
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WindowsMangerProtect [] =>PUP.Optional.WpManager
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-homes.com [22185] =>PUP.Optional.Qvo6
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Prod.cap [] =>PUP.Optional.ClaroSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\sim-packages [URL:sim-packages Protocol] =>Toolbar.Agent
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847} [IToolbarObj] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847} [IPosBHO] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847} [IToolbarURLSearchHook] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289} [IGifAnimator] =>PUP.Optional.Babylon
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F} [IGraphicsUtils] =>PUP.Optional.Babylon
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE [] =>PUP.Optional.VShareRedir
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\AppID\escort.dll [] =>PUP.Optional.Babylon
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} [ScriptHelper] =>Toolbar.AVGSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19} [SweetIM mgMediaPlayer 1.0 Type Library] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr [CescrtHlpr Object] =>PUP.Optional.Babylon
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1 [CescrtHlpr Object] =>PUP.Optional.Babylon
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Download.SwInstaller [SwInstaller Class] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Download.SwInstaller.1 [SwInstaller Class] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Download.SwInstallerAttributes [SwInstallerAttributes Class] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Download.SwInstallerAttributes.1 [SwInstallerAttributes Class] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils [GraphicsUtils Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1 [GraphicsUtils Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator [GifAnimator Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1 [GifAnimator Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Swdir.SwInstallerCtl [SwInstallerCtl Class] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Swdir.SwInstallerCtl.1 [SwInstallerCtl Class] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar [SweetIE Toolbar Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1 [SweetIE Toolbar Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook [SweetIM ToolbarURLSearchHook Class] =>PUP.Optional.Softomate
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook.1 [SweetIM ToolbarURLSearchHook Class] =>PUP.Optional.Softomate
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE [SWEETIE Class] =>PUP.Optional.BestToolbars
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE.1 [SWEETIE Class] =>PUP.Optional.BestToolbars
SUPPRIMÉ clé*: HKLM\Software\Classes\Installer\Products\2BC4C58B253B8DB418C8CB3E35951970 [SweetIM for Messenger 3.6] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847} [SweetIM ToolbarURLSearchHook Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Applications\iLividSetup-r773-n-bc.exe [] =>PUP.Optional.Bandoo
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices [] =>PUP.Optional.IePluginService
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect [] =>PUP.Optional.WpManager
SUPPRIMÉ clé*: HKLM\SOFTWARE\Babylon [] =>PUP.Optional.Babylon
SUPPRIMÉ clé*: HKLM\SOFTWARE\delta-homesSoftware [] =>Toolbar.DeltaSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\sweet-pageSoftware [] =>PUP.Optional.SweetPage
SUPPRIMÉ clé*: HKLM\SOFTWARE\SweetIM [] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Systweak [] =>PUP.Optional.Systweak
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner [] =>PUP.Optional.ToolbarCleaner
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2F603A45-D956-496B-81B5-50D782424976} [SweetIM Technologies Ltd.] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B85C4CB2-B352-4BD8-818C-BCE353599107} [SweetIM Technologies Ltd.] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5} [C:\Program Files\Toolbar Cleaner (Not File)] =>PUP.Optional.ToolbarCleaner
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ba20b5da-0f48-40c5-b8c9-2cda4ecf75c2} [C:\Program Files\Toolbar Cleaner (Not File)] =>PUP.Optional.ToolbarCleaner
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847} [C:\Program Files\SweetIM\Toolbars\Internet Explorer (Not File)] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe [C:\Program Files\SweetIM\Messenger\SweetIM.exe (Not File)] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D [C:\Program Files\SweetIM\Toolbars\Internet Explorer\ (Not File)] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\Software\Classes\Installer\Features\2BC4C58B253B8DB418C8CB3E35951970 [] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\Software\Classes\Installer\Products\54A306F2659DB694185B057D28249467 [SweetPacks Toolbar for Internet Explorer 4.4] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\Software\Classes\Installer\Features\54A306F2659DB694185B057D28249467 [] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237} [AVG Rewards] =>Toolbar.AVGSearch
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}\InprocServer32 [C:\Program Files\Common Files\AVG Secure Search\RewardsInstaller\17.1.2\AVGRewardsWorker.dll (Not File)] =>Toolbar.AVGSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{63EDCDD3-8AFC-4358-A90F-F7FB8F5C64FF} [BrowserWndAPI Class] =>Toolbar.AVGSearch
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{63EDCDD3-8AFC-4358-A90F-F7FB8F5C64FF}\InprocServer32 [C:\Program Files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll (Not File)] =>Toolbar.AVGSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A} [GifAnimator Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}\InprocServer32 [C:\Program Files\SweetIM\Messenger\mgMediaPlayer.dll (Not File)] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17} [GenericWndApi Class] =>Toolbar.AVGSearch
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}\InprocServer32 [C:\Program Files\AVG Secure Search\GenericWndApi.dll (Not File)] =>Toolbar.AVGSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064} [GraphicsUtils Class] =>PUP.Optional.SweetIM
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}\InprocServer32 [C:\Program Files\SweetIM\Messenger\mgMediaPlayer.dll (Not File)] =>PUP.Optional.SweetIM
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023} [BrowserWndAPI Class] =>Toolbar.AVGSearch
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}\InprocServer32 [C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll (Not File)] =>Toolbar.AVGSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087} [BrowserWndAPI Class] =>Toolbar.AVGSearch
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}\InprocServer32 [C:\Program Files\AVG Secure Search\9.0.0.23\AVG Secure Search_toolbar.dll (Not File)] =>Toolbar.AVGSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3} [BrowserWndAPI Class] =>Toolbar.AVGSearch
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}\InprocServer32 [C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll (Not File)] =>Toolbar.AVGSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44a1-AF6E-957C64278AB1} [escrtBtn Object] =>PUP.Optional.Babylon
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44a1-AF6E-957C64278AB1}\InprocServer32 [C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Not File)] =>PUP.Optional.Babylon
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}\InprocServer32 [C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (Not File)] =>PUP.Optional.SweetIM
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateReg ["C:\Windows\system32\jureg.exe" -delete] =>Heuristic.Salus


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scannés : 213
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 108


~ End of clean in 5 minutes
===================
ZHPCleaner-[R]-21102015-22_11_34.txt
ZHPCleaner-[S]-21102015-22_05_20.txt

Publicité


Signaler le contenu de ce document

Publicité