~ ZHPCleaner v2017.10.10.179 by Nicolas Coolman (2017/10/10)
~ Run by Manon (Administrator)  (11/10/2017 20:15:31)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Illegal
~ Type : Nettoyer
~ Report : C:\Users\Manon\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Manon\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 15063)


---\\  Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Navigateur internet. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Fichier hôte. (1)
~ Le fichier hôte est légitime. (401)


---\\  Tâche planifiée. (1)
SUPPRIMÉ tâche: [15811b2399d4b21b9e08329d4f8053e5] [C:\WINDOWS\15811b2399d4b21b9e08329d4f8053e5.ps1 (Not File) ]  =>PUP.Optional.Wajam


---\\  Explorateur  ( Dossiers, Fichiers ). (14)
DEPLACÉ fichier: C:\Program Files (x86)\CKCpTyVyQIE\k7t0vPUmB.dll    =>PUP.Optional.YouTubeAdBlock
DEPLACÉ fichier**: C:\Windows\Prefetch\FASTDATAX.EXE-5BE87157.pf    =>Adware.FastDataX
DEPLACÉ fichier**: C:\Windows\Prefetch\FASTDATAX.EXE-DEEE196E.pf    =>Adware.FastDataX
DEPLACÉ fichier**: C:\Windows\Prefetch\SYSTEMHEALER.EXE-8C371D16.pf    =>.SUP.SystemHealer
DEPLACÉ fichier**: C:\Windows\Prefetch\SYSTEMHEALER.TMP-57D5959E.pf    =>.SUP.SystemHealer
DEPLACÉ fichier**: C:\Windows\Prefetch\SYSTEMHEALER.TMP-C36A419C.pf    =>.SUP.SystemHealer
DEPLACÉ fichier^: C:\ProgramData\026eca29721448b4a0bded1b34c320e2\etLRASMi.exe [Windows - ]  =>.SUP.Elex
DEPLACÉ fichier**: C:\Users\Manon\AppData\Local\Temp\_iu14D2N.tmp [ - Setup/Uninstall]  =>.SUP.SystemHealer
DEPLACÉ dossier*: C:\Program Files (x86)\Mozilla Firefox\browser\features\{5C3FD6D1-9185-4195-B5E1-FAB622427F59}  =>Adware.Wizzcaster
DEPLACÉ dossier*: C:\Users\Manon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdlphncgdlaajddhdginocbkndmceaml  =>Hijacker.Browser ["update_url" : "https://clients2.google.com/servic]
DEPLACÉ dossier*: C:\Program Files (x86)\FastDataX  =>Adware.FastDataX
DEPLACÉ dossier^: C:\ProgramData\026eca29721448b4a0bded1b34c320e2  =>Adware.CrossRider
DEPLACÉ dossier^: C:\ProgramData\8e97860e3dbb4f4d9cb77a7228b9870d  =>Adware.CrossRider
DEPLACÉ dossier*: C:\Users\Manon\AppData\Local\BrowserAir  =>PUP.Optional.BrowserAir


---\\  Base de Registres ( Clés, Valeurs, Données ). (13)
SUPPRIMÉ donnée: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0a5277a9-6a81-4618-94f4-d2544494070e}\\NameServer [Bad : 82.163.143.12,82.163.142.22]  =>Adware.DNSUnlocker
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C0D38E5A-7CF8-4105-8FE8-31B81443A114} [YoutubeAdBlock]  =>PUP.Optional.YouTubeAdBlock
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C0D38E5A-7CF8-4105-8FE8-31B81443A114} []  =>PUP.Optional.YouTubeAdBlock
SUPPRIMÉ clé*: [X64] HKLM\Software\Classes\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114} [YoutubeAdBlock]  =>PUP.Optional.YouTubeAdBlock
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114} [YoutubeAdBlock]  =>PUP.Optional.YouTubeAdBlock
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C0D38E5A-7CF8-4105-8FE8-31B81443A114} [YoutubeAdBlock]  =>PUP.Optional.YouTubeAdBlock
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2075726133-1588227979-1471172636-1000\SOFTWARE\FastDataX []  =>Adware.FastDataX
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2075726133-1588227979-1471172636-1000\SOFTWARE\System Healer []  =>.SUP.SystemHealer
SUPPRIMÉ clé: HKCU\Software\FastDataX []  =>Adware.FastDataX
SUPPRIMÉ clé: HKCU\Software\System Healer []  =>.SUP.SystemHealer
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FastDataX_is1 [FastDataX 1.20]  =>Adware.FastDataX
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b []  =>Hijacker.Browser
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}\InprocServer32 [C:\Program Files (x86)\CKCpTyVyQIE\tHtR2Kk8T.dll]  =>Adware.Sambreel


---\\  Récapitulatif des éléments trouvés sur votre station. (12)
https://nicolascoolman.eu/2017/02/24/pup-optional-wajam/  =>PUP.Optional.Wajam
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.YouTubeAdBlock
https://nicolascoolman.eu/2017/06/21/adware-fastdatax/  =>Adware.FastDataX
https://nicolascoolman.eu/2017/10/03/sup-systemhealer/  =>.SUP.SystemHealer
https://nicolascoolman.eu/2017/03/28/superfluous-elex/  =>.SUP.Elex
https://nicolascoolman.eu/2017/09/15/adware-wizzcaster/  =>Adware.Wizzcaster
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>Hijacker.Browser ["update_url" : "https://clients2.google.com/servic]
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/  =>Adware.CrossRider
https://www.nicolascoolman.com/fr/pup-optional-browserair/  =>PUP.Optional.BrowserAir
https://nicolascoolman.eu/2017/09/27/adware-dnsunlocker/  =>Adware.DNSUnlocker
https://nicolascoolman.eu/2017/02/02/hijacker-browser-2/  =>Hijacker.Browser
https://nicolascoolman.eu/2017/09/24/adware-sambreel/  =>Adware.Sambreel


---\\  Nettoyage Additionnel. (26)
~ Suppression des Clés de registre Tracing. (26)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent  (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 1834
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 28


~ End of clean in 00h03mn01s
~====================
ZHPCleaner-[R]-11102017-19_00_45.txt
ZHPCleaner-[R]-11102017-20_18_32.txt
ZHPCleaner-[S]-11102017-18_50_51.txt
ZHPCleaner-[S]-11102017-20_11_07.txt