Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPCleaner v2017.9.13.156 by Nicolas Coolman (2017/09/13)
~ Run by Samy (Administrator) (18/09/2017 13:30:38)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Illegal
~ Type : Nettoyer
~ Report : C:\Users\Samy\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Samy\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)
---\\ Service. (0)
---\\ Navigateur internet. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (36)
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Cacaoweb.lnk [Bad : C:\Users\Samy\Documents\Logiciels\Cacaoweb.exe](..) =>.SUP.CacaoWeb
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Popcorn-Time.lnk [Bad : C:\Users\Samy\AppData\Local\Popcorn-Time\Popcorn-Time.exe](.The NWJS Community.) =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Menu Démarrer.lnk [Bad : C:\Users\Samy\AppData\Local\Pokki\Engine\HostAppService.exe](..) =>.SUP.SweetLabs
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk [Bad : C:\Users\Samy\AppData\Local\Pokki\Engine\HostAppService.exe](..) =>.SUP.SweetLabs
DEPLACÉ fichier: C:\Windows\Tasks\f5010aff-cf7b-4138-99d6-623f2dc936f3-5_user.job =>Adware.CrossRider
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME-0.3.10-SETUP.EXE-A78FB9CD.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC23E.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC23F.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC240.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC245.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC246.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsa73F7.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsf7249.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsqEF50.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsw7369.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nswB613.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe =>.SUP.CacaoWeb
DEPLACÉ dossier*: C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
DEPLACÉ dossier*: C:\Program Files (x86)\gmsd_fr_552 =>Adware.CrossRider
DEPLACÉ dossier*: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
DEPLACÉ dossier*: C:\WINDOWS\System32\config\systemprofile\AppData\Roaming\Nosibay =>PUP.Optional.SPointer
DEPLACÉ dossier*: C:\WINDOWS\System32\config\systemprofile\AppData\Roaming\Store =>.SUP.Nosibay
DEPLACÉ dossier*: C:\Users\Samy\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
DEPLACÉ dossier*: C:\Users\Samy\AppData\Roaming\cacaoweb =>.SUP.CacaoWeb
DEPLACÉ dossier*: C:\Users\Samy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\gmsd_fr_552 =>Adware.CrossRider
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn Time =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn Time Community =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn-Time =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn-Time-CE =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\PopcornTime =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\ZombieNews =>PUP.Optional.ZombieNews
DEPLACÉ dossier*: C:\Users\Default\AppData\Local\Pokki =>.SUP.SweetLabs
DEPLACÉ dossier: C:\Users\Default User\AppData\Local\Pokki =>.SUP.SweetLabs
DEPLACÉ dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Nosibay =>PUP.Optional.SPointer
DEPLACÉ dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Store =>.SUP.Nosibay
---\\ Base de Registres ( Clés, Valeurs, Données ). (49)
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Update service [C:\Program Files (x86)\Popcorn Time\Updater.exe (Not File)] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\1ClickDownload [] =>PUP.Optional.1ClickDownloader
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\cacaoweb [C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.SUP.CacaoWeb
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\LookThisUp [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Popcorn Time [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\PopcornTime [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Classes\.torrent [popcorntime.player] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Classes\popcorntime.player [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\.DEFAULT\Software\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé: HKCU\Software\1ClickDownload [] =>PUP.Optional.1ClickDownloader
SUPPRIMÉ clé: HKCU\Software\cacaoweb [C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.SUP.CacaoWeb
SUPPRIMÉ clé: HKCU\Software\LookThisUp [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé: HKCU\Software\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé: HKCU\Software\Popcorn Time [] =>.SUP.PopcornTime
SUPPRIMÉ clé: HKCU\Software\PopcornTime [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn-Time [Popcorn Time] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKCU\Software\Store [] =>PUP.Optional.Generic
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc [SoftwareUpdate Update3Web] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc.1.0 [SoftwareUpdate Update3Web] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\LookThisUp_RASAPI32 [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\LookThisUp_RASMANCS [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LookThisUp [LookThisUp] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SoftwareUpdate.exe [] =>PUP.Optional.Boxore
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\WindApp ["C:\Users\Samy\AppData\Roaming\Store\WindApp\WindApp Update.exe" /winstartup] =>.SUP.Nosibay
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\cacaoweb ["C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\cacaoweb [0x030000003D9AA8ECD7E5D001] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{E4EF84D7-AA01-4D07-952B-ABE89C31EF74}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{AB97C228-846A-4F9A-9B57-769A3A5A6455}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{3665611E-7C64-4D37-83C9-ABD66277F465}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{14AFE936-11AB-430B-A0B3-8B7404BE1B5D}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{E624DAEF-F91B-4F49-9B73-960589635B6E}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{AA655213-7CD4-4081-AFD7-BC8F25A23AB9}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{9CC0BC2E-87CF-4DCE-8CE8-B6B99B9EC04B}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{8EA0013A-5D24-4579-A960-7B0DE55A56DF}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{ABA3EDBC-E580-4699-ADD1-424BE2941EC2}C:\users\samy\appdata\local\popcorn time\nw.exe [C:\users\samy\appdata\local\popcorn time\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{2AC18870-25BB-496F-A8F7-0D4BA7E1EE49}C:\users\samy\appdata\local\popcorn time\nw.exe [C:\users\samy\appdata\local\popcorn time\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{0573EF49-8882-4CC3-834F-ABABB3D068BA}C:\users\samy\downloads\cacaoweb.exe [C:\users\samy\downloads\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{CC15BE56-8D37-4FE6-A624-BA1FD24FA623}C:\users\samy\downloads\cacaoweb.exe [C:\users\samy\downloads\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{F80439F9-7EAF-4899-8EE1-EC6818117260}C:\users\samy\desktop\cacaoweb.exe [C:\users\samy\desktop\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{31EC436C-0044-4F40-B161-C43F380A2D10}C:\users\samy\desktop\cacaoweb.exe [C:\users\samy\desktop\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{1C22087B-045C-45FB-87F1-F5500D4AC810}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{7161B134-89D3-4D9D-A156-27366A3CCA5A}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{45DB328A-E7AD-4722-A5E4-AE78643FA0CE}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{1BFCD527-DFE8-4C2A-82BC-6A86E0B095B3}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{7D9C1C50-757F-488B-B3D5-BC667463CE9D} [C:\Program Files (x86)\Popcorn Time\Updater.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{A63459FB-EFE8-46E6-9AF8-B50690EF3BD2} [C:\Program Files (x86)\Popcorn Time\Updater.exe] =>.SUP.PopcornTime
---\\ Récapitulatif des éléments trouvés sur votre station. (14)
https://nicolascoolman.eu/2017/01/15/superfluous-cacaoweb/ =>.SUP.CacaoWeb
https://nicolascoolman.eu/2017/02/26/superfluous-popcorntime/ =>.SUP.PopcornTime
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.SweetLabs
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.CMILimited
https://www.nicolascoolman.com/fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.GamesDesktop
https://www.nicolascoolman.com/fr/adware-spointer/ =>PUP.Optional.SPointer
https://www.anti-malware.top/2016/05/03/superfluous-nosibay/ =>.SUP.Nosibay
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.ZombieNews
https://www.nicolascoolman.com/fr/pup-1clickdownloader/ =>PUP.Optional.1ClickDownloader
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.LookThisUp
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Generic
https://nicolascoolman.eu/2017/03/14/pup-optional-boxore/ =>PUP.Optional.Boxore
---\\ Nettoyage Additionnel. (30)
~ Suppression des Clés de registre Tracing. (30)
~ Suppression des anciens rapports ZHPCleaner. (0)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
---\\ Statistiques
~ Items scannés : 1085
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 86
~ End of clean in 00h03mn14s
~====================
ZHPCleaner-[R]-18092017-13_33_52.txt
ZHPCleaner-[S]-18092017-13_29_43.txt
~ Run by Samy (Administrator) (18/09/2017 13:30:38)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Illegal
~ Type : Nettoyer
~ Report : C:\Users\Samy\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Samy\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)
---\\ Service. (0)
---\\ Navigateur internet. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (36)
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Cacaoweb.lnk [Bad : C:\Users\Samy\Documents\Logiciels\Cacaoweb.exe](..) =>.SUP.CacaoWeb
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Popcorn-Time.lnk [Bad : C:\Users\Samy\AppData\Local\Popcorn-Time\Popcorn-Time.exe](.The NWJS Community.) =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Menu Démarrer.lnk [Bad : C:\Users\Samy\AppData\Local\Pokki\Engine\HostAppService.exe](..) =>.SUP.SweetLabs
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk [Bad : C:\Users\Samy\AppData\Local\Pokki\Engine\HostAppService.exe](..) =>.SUP.SweetLabs
DEPLACÉ fichier: C:\Windows\Tasks\f5010aff-cf7b-4138-99d6-623f2dc936f3-5_user.job =>Adware.CrossRider
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME-0.3.10-SETUP.EXE-A78FB9CD.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC23E.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC23F.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC240.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC245.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Windows\Prefetch\POPCORN-TIME.EXE-DF6BC246.pf =>.SUP.PopcornTime
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsa73F7.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsf7249.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsqEF50.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nsw7369.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Local\nswB613.tmp [CMI Limited - Setup] =>.SUP.CMILimited
DEPLACÉ fichier: C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe =>.SUP.CacaoWeb
DEPLACÉ dossier*: C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
DEPLACÉ dossier*: C:\Program Files (x86)\gmsd_fr_552 =>Adware.CrossRider
DEPLACÉ dossier*: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
DEPLACÉ dossier*: C:\WINDOWS\System32\config\systemprofile\AppData\Roaming\Nosibay =>PUP.Optional.SPointer
DEPLACÉ dossier*: C:\WINDOWS\System32\config\systemprofile\AppData\Roaming\Store =>.SUP.Nosibay
DEPLACÉ dossier*: C:\Users\Samy\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
DEPLACÉ dossier*: C:\Users\Samy\AppData\Roaming\cacaoweb =>.SUP.CacaoWeb
DEPLACÉ dossier*: C:\Users\Samy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\gmsd_fr_552 =>Adware.CrossRider
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn Time =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn Time Community =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn-Time =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\Popcorn-Time-CE =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\PopcornTime =>.SUP.PopcornTime
DEPLACÉ dossier*: C:\Users\Samy\AppData\Local\ZombieNews =>PUP.Optional.ZombieNews
DEPLACÉ dossier*: C:\Users\Default\AppData\Local\Pokki =>.SUP.SweetLabs
DEPLACÉ dossier: C:\Users\Default User\AppData\Local\Pokki =>.SUP.SweetLabs
DEPLACÉ dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Nosibay =>PUP.Optional.SPointer
DEPLACÉ dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Store =>.SUP.Nosibay
---\\ Base de Registres ( Clés, Valeurs, Données ). (49)
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Update service [C:\Program Files (x86)\Popcorn Time\Updater.exe (Not File)] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\1ClickDownload [] =>PUP.Optional.1ClickDownloader
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\cacaoweb [C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.SUP.CacaoWeb
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\LookThisUp [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Popcorn Time [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\PopcornTime [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Classes\.torrent [popcorntime.player] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-442478470-1596322282-1151802577-1001\SOFTWARE\Classes\popcorntime.player [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKEY_USERS\.DEFAULT\Software\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé: HKCU\Software\1ClickDownload [] =>PUP.Optional.1ClickDownloader
SUPPRIMÉ clé: HKCU\Software\cacaoweb [C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.SUP.CacaoWeb
SUPPRIMÉ clé: HKCU\Software\LookThisUp [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé: HKCU\Software\Nosibay [] =>PUP.Optional.SPointer
SUPPRIMÉ clé: HKCU\Software\Popcorn Time [] =>.SUP.PopcornTime
SUPPRIMÉ clé: HKCU\Software\PopcornTime [] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn-Time [Popcorn Time] =>.SUP.PopcornTime
SUPPRIMÉ clé*: HKCU\Software\Store [] =>PUP.Optional.Generic
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc [SoftwareUpdate Update3Web] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc.1.0 [SoftwareUpdate Update3Web] =>PUP.Optional.Boxore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\LookThisUp_RASAPI32 [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\LookThisUp_RASMANCS [] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LookThisUp [LookThisUp] =>PUP.Optional.LookThisUp
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SoftwareUpdate.exe [] =>PUP.Optional.Boxore
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\WindApp ["C:\Users\Samy\AppData\Roaming\Store\WindApp\WindApp Update.exe" /winstartup] =>.SUP.Nosibay
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\cacaoweb ["C:\Users\Samy\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\cacaoweb [0x030000003D9AA8ECD7E5D001] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{E4EF84D7-AA01-4D07-952B-ABE89C31EF74}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{AB97C228-846A-4F9A-9B57-769A3A5A6455}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{3665611E-7C64-4D37-83C9-ABD66277F465}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{14AFE936-11AB-430B-A0B3-8B7404BE1B5D}C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\samy\appdata\roaming\cacaoweb\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{E624DAEF-F91B-4F49-9B73-960589635B6E}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{AA655213-7CD4-4081-AFD7-BC8F25A23AB9}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{9CC0BC2E-87CF-4DCE-8CE8-B6B99B9EC04B}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{8EA0013A-5D24-4579-A960-7B0DE55A56DF}C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe [C:\users\samy\appdata\local\popcorn time\node-webkit\popcorn time.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{ABA3EDBC-E580-4699-ADD1-424BE2941EC2}C:\users\samy\appdata\local\popcorn time\nw.exe [C:\users\samy\appdata\local\popcorn time\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{2AC18870-25BB-496F-A8F7-0D4BA7E1EE49}C:\users\samy\appdata\local\popcorn time\nw.exe [C:\users\samy\appdata\local\popcorn time\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{0573EF49-8882-4CC3-834F-ABABB3D068BA}C:\users\samy\downloads\cacaoweb.exe [C:\users\samy\downloads\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{CC15BE56-8D37-4FE6-A624-BA1FD24FA623}C:\users\samy\downloads\cacaoweb.exe [C:\users\samy\downloads\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{F80439F9-7EAF-4899-8EE1-EC6818117260}C:\users\samy\desktop\cacaoweb.exe [C:\users\samy\desktop\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{31EC436C-0044-4F40-B161-C43F380A2D10}C:\users\samy\desktop\cacaoweb.exe [C:\users\samy\desktop\cacaoweb.exe] =>.SUP.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{1C22087B-045C-45FB-87F1-F5500D4AC810}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{7161B134-89D3-4D9D-A156-27366A3CCA5A}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{45DB328A-E7AD-4722-A5E4-AE78643FA0CE}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{1BFCD527-DFE8-4C2A-82BC-6A86E0B095B3}C:\users\samy\appdata\local\popcorn time community\nw.exe [C:\users\samy\appdata\local\popcorn time community\nw.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{7D9C1C50-757F-488B-B3D5-BC667463CE9D} [C:\Program Files (x86)\Popcorn Time\Updater.exe] =>.SUP.PopcornTime
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{A63459FB-EFE8-46E6-9AF8-B50690EF3BD2} [C:\Program Files (x86)\Popcorn Time\Updater.exe] =>.SUP.PopcornTime
---\\ Récapitulatif des éléments trouvés sur votre station. (14)
https://nicolascoolman.eu/2017/01/15/superfluous-cacaoweb/ =>.SUP.CacaoWeb
https://nicolascoolman.eu/2017/02/26/superfluous-popcorntime/ =>.SUP.PopcornTime
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.SweetLabs
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.CMILimited
https://www.nicolascoolman.com/fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.GamesDesktop
https://www.nicolascoolman.com/fr/adware-spointer/ =>PUP.Optional.SPointer
https://www.anti-malware.top/2016/05/03/superfluous-nosibay/ =>.SUP.Nosibay
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.ZombieNews
https://www.nicolascoolman.com/fr/pup-1clickdownloader/ =>PUP.Optional.1ClickDownloader
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.LookThisUp
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Generic
https://nicolascoolman.eu/2017/03/14/pup-optional-boxore/ =>PUP.Optional.Boxore
---\\ Nettoyage Additionnel. (30)
~ Suppression des Clés de registre Tracing. (30)
~ Suppression des anciens rapports ZHPCleaner. (0)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
---\\ Statistiques
~ Items scannés : 1085
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 86
~ End of clean in 00h03mn14s
~====================
ZHPCleaner-[R]-18092017-13_33_52.txt
ZHPCleaner-[S]-18092017-13_29_43.txt