~ ZHPCleaner v2015.11.2.372 by Nicolas Coolman (2015/11/02) ~ Run by julien (Administrator) (03/11/2015 10:32:04) ~ Site : http://www.nicolascoolman.fr ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Nettoyer ~ Report : C:\Users\julien\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\julien\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 10 Home, 64-bit (Build 10240) ---\\ Service. (0) ~ Aucun élément malicieux ou superflu trouvé. ---\\ Navigateur internet. (43) SUPPRIMÉ: [zkgfrul2.default] - user_pref("browser.search.order.1", "Mysearchdial"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.irmysearch.aflt", "ir_14_17_ff"); =>PUP.Optional.MyWebSearch SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzuyDyE0B0E0FyByDtCzyzyzytB0F0EtBzytN0D0Tzu0Szzy[...] =>PUP.Optional.MyWebSearch SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.irmysearch.cr", "1412202328"); =>PUP.Optional.MyWebSearch SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.irmysearch.instlRef", "140305_b"); =>PUP.Optional.MyWebSearch SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.AL", 2); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.aflt", "ir_14_17_ff"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzuyDyE0B0E0FyByDtCzyzyzytB0F0EtBzytN0D0Tzu0Sz[...] =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.cntry", "FR"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.cr", "1412202328"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.dfltLng", ""); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.dfltSrch", true); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.dnsErr", true); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,6[...] =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.excTlbr", false); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.hdrMd5", "24CBA5858EFFB8D4867A160D6C9ECBB2"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.hmpg", true); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=ir_14_17_ff&cd=2X[...] =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.id", "54BEF7519992FE29"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.instlDay", "16183"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.instlRef", "140305_b"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.lastB", "http://start.mysearchdial.com/?f=1&a=ir_14_17_ff&cd=2Xzu[...] =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.29.07:41:27"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=ir_14_17_ff&cd=[...] =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"95\",\"lastVrsn\":\"95\",\"vrsnLoad\":[...] =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.prdct", "mysearchdial"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.prtnrId", "mysearchdial"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.sg", "none"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.tlbrId", "base"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=ir_14_17_ff&c[...] =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.vrsn", "1.8.29.0"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial.vrsni", "1.8.29.0"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial_i.newTab", false); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial_i.smplGrp", "none"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.29.07:41:27"); =>PUP.Optional.MySearchDial SUPPRIMÉ: [zkgfrul2.default] - user_pref("iminent.BirthDate", "1413549504"); =>PUP.Optional.IMBooster SUPPRIMÉ: [zkgfrul2.default] - user_pref("iminent.enableToolbar", "true"); =>PUP.Optional.IMBooster SUPPRIMÉ: [zkgfrul2.default] - user_pref("iminent.enabledAds", "false"); =>PUP.Optional.IMBooster SUPPRIMÉ: [zkgfrul2.default] - user_pref("iminent.newtabredirect", "true"); =>PUP.Optional.IMBooster SUPPRIMÉ: [zkgfrul2.default] - user_pref("iminent.searchindex", "1"); =>PUP.Optional.IMBooster REMPLACÉ Startup\Programs: C:\Users\julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk [Bad : http://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=FR&userid=d23d2b1b-e086-2d93-0a68-80d3bec1b13e&searchtype=sc&fr=linkury-tb&installDate=08/08/2014&barcodeid=1262&um=0&type=hp1000] =>Hijacker.Browser ---\\ Fichier hôte. (1) ~ Le fichier hôte est légitime. (21) ---\\ Tâche planifiée. (0) ~ Aucun élément malicieux ou superflu trouvé. ---\\ Explorateur ( Dossiers, Fichiers ). (99) DEPLACÉ fichier: C:\Users\julien\AppData\Roaming\CrashSender1402.exe =>PUP.Optional.Pirrit DEPLACÉ fichier: C:\WINDOWS\System32\roboot64.exe [RCP,Advanced System Optimizer - Registry Optimizer] =>PUP.Optional.Systweak DEPLACÉ fichier: C:\Users\julien\AppData\Roaming\CrashRpt1402.dll [Copyright 2003-2013 The CrashRpt Project Authors - Crash Handling Module] =>.Superfluous.CrashReports DEPLACÉ fichier: C:\Users\julien\AppData\Roaming\crashrpt_lang.ini =>.Superfluous.CrashReports DEPLACÉ dossier: C:\Users\julien\AppData\Roaming\GameoUpdater =>PUP.Optional.Gameo DEPLACÉ dossier: C:\Users\julien\AppData\Local\CrashRpt =>.Superfluous.CrashReports DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1108.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI138A.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI15AD.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI165A.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1729.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI17E5.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI190B.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1BBB.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1C68.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1CA2.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1D16.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1FF3.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI25D2.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI35F2.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI3B98.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI3CB3.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI3DCE.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI3EF8.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI437D.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI46BA.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI47D4.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI492D.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI4937.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI4A57.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI4BBF.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI4D18.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI55BE.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI5886.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI5962.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI636D.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI6A0.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI74B.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI7BDC.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI7DE.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI828B.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSI9A64.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIA526.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIA60.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIA6E6.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIAB7F.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIAE20.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIB059.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIB3B6.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIB49F.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIC60B.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIC7E7.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSICB05.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSICB93.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSICCA3.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSICD50.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSICDFE.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSICE7C.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSICFB5.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID1C9.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID238.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID2DB.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID2E5.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID363.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID3F0.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID46E.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID4CD.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID4CC.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID54A.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID5B9.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID6C3.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID81C.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSID89A.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIDC79.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIDDC2.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIDF2B.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIE04F.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIE049.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIE046.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIE1FC.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIE691.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIE7EA.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIE923.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIEA6C.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIEB67.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIECA1.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF00E.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF261.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF2C6.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF39B.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF429.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF4E5.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF5E3.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF6C7.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF7D4.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF8A7.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF8D1.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIFA75.tmp- =>Empty DEPLACÉ dossier: C:\WINDOWS\Installer\MSIFAE4.tmp- =>Empty ---\\ Base de Registres ( Clés, Valeurs, Données ). (6) SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-1964711109-14206694-2946039922-1002\Software\GameoUpdater [] =>PUP.Optional.Gameo SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-1964711109-14206694-2946039922-1002\Software\Softonic [] =>PUP.Optional.Softonic SUPPRIMÉ clé: HKCU\Software\GameoUpdater [] =>PUP.Optional.Gameo SUPPRIMÉ clé: HKCU\Software\Softonic [] =>PUP.Optional.Softonic SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Gameo Updater [Gameo Updater] =>PUP.Optional.Gameo SUPPRIMÉ clé*: HKLM\SOFTWARE\Wow6432Node\Policies\Google\Update [] =>PUM.Security.Hijack ---\\ Bilan de la réparation ~ Réparation réalisée avec succès. ~ Ce navigateur est absent (Google Chrome) ~ Ce navigateur est absent (Opera Software) ---\\ Statistiques ~ Items scannés : 1462 ~ Items trouvés : 0 ~ Items annulés : 0 ~ Items réparés : 148 ~ End of clean in 0 minutes =================== ZHPCleaner-[R]-03112015-10_32_26.txt ZHPCleaner-[S]-03112015-10_31_09.txt