cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2016.1.8.5 by Nicolas Coolman (2016/01/08)
~ Run by Diallostyle (Administrator) (10/01/2016 09:48:24)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Diallostyle\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Diallostyle\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 32-bit (Build 10240)


---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Navigateur internet. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Fichier hôte. (2)
REMPLACÉ: 74.208.10.249 gs.apple.com
~ Nombre de redirections trouvées 1/23


---\\ Tâche planifiée. (1)
SUPPRIMÉ tâche: [LaunchPreSignup] [C:\Program Files\OLBPre\OLBPre.exe (Not File) ] =>PUP.Optional.MyPCBackup


---\\ Explorateur ( Dossiers, Fichiers ). (38)
DEPLACÉ fichier: C:\Users\Diallostyle\Desktop\Free Games.lnk [Bad : C:\Users\Diallostyle\AppData\Local\Torch\Application\torch.exe] =>.Superfluous.Torch
DEPLACÉ fichier: C:\Users\Diallostyle\Desktop\Free Music.lnk [Bad : C:\Users\Diallostyle\AppData\Local\Torch\Application\torch.exe] =>.Superfluous.Torch
DEPLACÉ fichier: C:\Users\Diallostyle\Desktop\Torch.lnk [Bad : C:\Users\Diallostyle\AppData\Local\Torch\Application\torch.exe] =>.Superfluous.Torch
DEPLACÉ fichier: C:\Users\Diallostyle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Torch.lnk [Bad : C:\Users\Diallostyle\AppData\Local\Torch\Application\torch.exe] =>.Superfluous.Torch
DEPLACÉ fichier: C:\Users\Diallostyle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk [Bad : C:\Users\Diallostyle\AppData\Local\Torch\Application\torch.exe] =>.Superfluous.Torch
DEPLACÉ fichier: C:\Program Files\KMSpico\WinDivert.sys [Basil Projects - WinDivert network packet capture and (re)in] =>HackTool.KMSpico
DEPLACÉ fichier: C:\Windows\Prefetch\KMSPICO_SETUP.TMP-5A6013E5.pf =>HackTool.KMSpico
DEPLACÉ fichier: C:\Windows\Prefetch\KMSPICO_SETUP.TMP-F30C670E.pf =>HackTool.KMSpico
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEEXPRESSPACKAGE.EXE-F2EFCAFC.pf =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEEXPRESSSETUP.EXE-45E196CD.pf =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEPACKAGE.EXE-3F9950F2.pf =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEREMINDER.EXE-53756767.pf =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEREPAIR.EXE-896713DD.pf =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Diallostyle\Downloads\Toofan - -GWETA- (OFFICIAL HD) - YouTube[via torchbrowser.com].mp4 =>.Superfluous.Torch
DEPLACÉ fichier: C:\Users\Diallostyle\Downloads\TorchSetup-r288-n-bc.exe [Torch Media, Inc - Torch Browser] =>.Superfluous.Torch
DEPLACÉ fichier: C:\Users\Diallostyle\Downloads\Programs\ReimageRepair.exe [Reimage® - Reimage Downloader] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Diallostyle\Downloads\Programs\Setup_DriverDoc.exe [Solvusoft Corporation - DriverDoc] =>.Superfluous.Solvusoft
DEPLACÉ fichier: C:\Users\Diallostyle\AppData\Local\Temp\ReimageExpressPackage.exe [Reimage® - Reimage Express Installation Package] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Diallostyle\AppData\Local\Temp\ReimageExpressSetup.exe [Reimage® - Reimage Express Downloader] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Diallostyle\AppData\Local\Temp\ReimagePackage.exe [Reimage® - Reimage Package] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Diallostyle\AppData\Local\Temp\reimage.log =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Windows\SECOH-QAD.exe =>HackTool.KMSpico
DEPLACÉ fichier: C:\Windows\Reimage.ini =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Program Files\KMSpico\KMSELDI.exe [@ByELDI - KMS GUI ELDI] =>HackTool.KMSpico
DEPLACÉ dossier: C:\Program Files\DriverToolkit =>.Superfluous.DriverToolkit
DEPLACÉ dossier: C:\Program Files\KMSpico =>HackTool.KMSpico
DEPLACÉ dossier: C:\Program Files\Common Files\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
DEPLACÉ dossier^: C:\ProgramData\Mobile Partner =>Toolbar.YahooPartner
DEPLACÉ dossier: C:\ProgramData\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
DEPLACÉ dossier: C:\Users\Diallostyle\AppData\Roaming\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\Users\Diallostyle\Documents\Mobogenie =>PUP.Optional.Mobogenie
DEPLACÉ dossier: C:\Users\Diallostyle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch =>.Superfluous.Torch
DEPLACÉ dossier: C:\Users\Diallostyle\Downloads\KMSpico9.3.1 =>HackTool.KMSpico
DEPLACÉ dossier: C:\Users\Diallostyle\AppData\Local\DriverToolkit =>.Superfluous.DriverToolkit
DEPLACÉ dossier: C:\Users\Diallostyle\AppData\Local\Mobogenie =>PUP.Optional.Mobogenie
DEPLACÉ dossier: C:\Users\Diallostyle\AppData\Local\Torch =>.Superfluous.Torch


---\\ Base de Registres ( Clés, Valeurs, Données ). (45)
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\WinDivert1.1 [C:\Program Files\KMSpico\WinDivert.sys (Not File)] =>HackTool.KMSpico
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-941459840-2699405235-3702077863-1001\SOFTWARE\Conduit [] =>PUP.Optional.Conduit
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-941459840-2699405235-3702077863-1001\SOFTWARE\DriverToolkit [] =>.Superfluous.DriverToolkit
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-941459840-2699405235-3702077863-1001\SOFTWARE\Reimage [] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-941459840-2699405235-3702077863-1001\SOFTWARE\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-941459840-2699405235-3702077863-1001\SOFTWARE\Torch [] =>.Superfluous.Torch
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-941459840-2699405235-3702077863-1001\SOFTWARE\Classes\Torch.PG7Y6HDMDG7WDJCF2YWUVSTMBY [] =>.Superfluous.Torch
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-941459840-2699405235-3702077863-1001\SOFTWARE\Classes\TorchHTML.PG7Y6HDMDG7WDJCF2YWUVSTMBY [Torch HTML Document] =>.Superfluous.Torch
SUPPRIMÉ clé*: HKEY_USERS\.DEFAULT\Software\Mobogenie [] =>PUP.Optional.Mobogenie
SUPPRIMÉ clé: HKCU\Software\Conduit [] =>PUP.Optional.Conduit
SUPPRIMÉ clé: HKCU\Software\DriverToolkit [] =>.Superfluous.DriverToolkit
SUPPRIMÉ clé: HKCU\Software\Reimage [] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé: HKCU\Software\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKCU\Software\Torch [] =>.Superfluous.Torch
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Torch [Torch] =>.Superfluous.Torch
SUPPRIMÉ clé*: HKCU\Software\ProductSetup [] =>Adware.InstallCore
SUPPRIMÉ clé*: HKLM\SOFTWARE\Reimage [] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine [ReiEngine Class] =>PUP.Optional.GetLiveSupport
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1 [ReiEngine Class] =>PUP.Optional.GetLiveSupport
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Applications\TorchSetup-r288-n-bc.exe [] =>.Superfluous.Torch
SUPPRIMÉ clé*: HKLM\SOFTWARE\WindoWeather [] =>PUP.Optional.BetterSurf
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASMANCS [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1 [KMSpico v9.3.1] =>HackTool.KMSpico
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\03972444659C6564387B89488B5A50CF [C:\?Program Files\Common Files\Research In Motion\RIMDeviceManager\devicemanagerres1069.dll (Not File)] =>PUP.Optional.Manager
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{09CFDB88-F9F0-40ba-885E-F47A957D12E6} [CompReg Class] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{09CFDB88-F9F0-40ba-885E-F47A957D12E6}\InprocServer32 [C:\Program Files\Reimage\Reimage Express\ReiEngine.dll (Not File)] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484} [ReiEngine Class] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}\InprocServer32 [C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll (Not File)] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{2B1B440F-A9DB-46e3-ADCF-AA6E08143FB8} [ReiEngine Class] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{2B1B440F-A9DB-46e3-ADCF-AA6E08143FB8}\InprocServer32 [C:\Program Files\Reimage\Reimage Express\ReiEngine.dll (Not File)] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB} [CompReg Class] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}\InprocServer32 [C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll (Not File)] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{B9E49847-9822-4139-BC55-7173ED1ADA11} [PSFactoryBuffer] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{B9E49847-9822-4139-BC55-7173ED1ADA11}\InprocServer32 [C:\program files\common files\tencent\qqdownload\125\DownloadProxyPS.dll (Not File)] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{21A06083-6C4C-4FDC-95A1-B1F4D27F2AAA} [C:\Program Files\KMSpico\AutoPico.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{C547F18D-5E6F-434C-91F6-DCC3BB632C1F} [C:\Program Files\KMSpico\AutoPico.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{D8D1AA15-2D59-4F65-B9F0-8701418D3619} [C:\Program Files\KMSpico\Service_KMS.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{58E5441F-6D4D-4242-873D-BD92147C2126} [C:\Program Files\KMSpico\Service_KMS.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{B1483A9E-32F1-43EE-A2A9-547BB7D39E42} [C:\Program Files\KMSpico\Service_KMS.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{EE292481-37CB-4B6C-97E8-E563F8AD41EB} [C:\Program Files\KMSpico\Service_KMS.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{69720663-7FD5-4769-948A-3B68B9F461C0} [C:\Program Files\KMSpico\AutoPico.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{62264C5B-B853-4DAD-8564-379163520D21} [C:\Program Files\KMSpico\AutoPico.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{D8C0B19C-CE66-467B-B6B6-C603DD9EFFED} [C:\Program Files\KMSpico\KMSELDI.exe] =>HackTool.KMSpico
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{9B21BE0B-5A97-418F-956B-E1BB68937B73} [C:\Program Files\KMSpico\KMSELDI.exe] =>HackTool.KMSpico


---\\ Récapitulatif des éléments trouvés sur votre station. (15)
http://www.nicolascoolman.fr/?p=316 =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Torch
http://www.nicolascoolman.fr/?p=989 =>HackTool.KMSpico
http://www.nicolascoolman.fr/?p=1075 =>PUP.Optional.ReImageRepair
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Solvusoft
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.DriverToolkit
http://www.nicolascoolman.fr/?p=368 =>.Superfluous.Tencent
http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.YahooPartner
http://www.nicolascoolman.fr/?p=215 =>PUP.Optional.Mobogenie
http://www.nicolascoolman.fr/?p=210 =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/?p=279 =>Adware.InstallCore
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GetLiveSupport
http://www.nicolascoolman.fr/?p=1339 =>PUP.Optional.BetterSurf
http://www.nicolascoolman.fr/?p=354 =>PUP.Optional.Manager


---\\ Nettoyage Additionnel. (17)
~ Suppression des Clés de registre Tracing. (17)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Mozilla Firefox)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 274
~ Items trouvés : 1
~ Items annulés : 0
~ Items réparés : 84


~ End of clean in 00h03mn18s
===================
ZHPCleaner-[R]-10012016-09_51_42.txt
ZHPCleaner-[S]-10012016-09_47_00.txt

Publicité


Signaler le contenu de ce document

Publicité