~ ZHPCleaner v2017.12.11.214 by Nicolas Coolman (2017/12/11)
~ Run by siteh (Administrator)  (12/12/2017 02:10:09)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Nettoyer
~ Report : C:\Users\siteh\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\siteh\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit  (Build 15063)


---\\  Service. (1)
ARRETÉ : dagwService  =>PUP.Optional.Youndoo


---\\  Navigateur internet. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Fichier hôte. (1)
~ Le fichier hôte est légitime. (38)


---\\  Tâche planifiée. (1)
SUPPRIMÉ tâche: [OneSystemCare Task] [C:\PROGRA~2\ONESYS~1\SYSTEM~1.EXE (Not File) ]  =>PUP.Optional.OneSystemCare


---\\  Explorateur  ( Dossiers, Fichiers ). (32)
DEPLACÉ fichier: C:\ProgramData\dagwService\dagwService.exe    =>PUP.Optional.Youndoo
DEPLACÉ fichier**: C:\Windows\Prefetch\KMSPICO_11_WINDOWS.EXE-E0104CC9.pf    =>HackTool.KMSpico
DEPLACÉ fichier**: C:\Windows\Prefetch\MEDIAPLAYERAPPLICATION.EXE-41271A05.pf    =>Adware.HPDefender
DEPLACÉ fichier**: C:\Windows\Prefetch\ONESYSTEMCARE.EXE-5AD2E131.pf    =>PUP.Optional.OneSystemCare
DEPLACÉ fichier**: C:\Windows\Prefetch\ONESYSTEMCARE.EXE-85E91E87.pf    =>PUP.Optional.OneSystemCare
DEPLACÉ fichier**: C:\Windows\Prefetch\ONESYSTEMCARE.TMP-4E29A127.pf    =>PUP.Optional.OneSystemCare
DEPLACÉ fichier**: C:\Windows\Prefetch\ONESYSTEMCARE.TMP-E61758D6.pf    =>PUP.Optional.OneSystemCare
DEPLACÉ fichier**: C:\Windows\Prefetch\ONESYSTEMCARE.TMP-F19DB36C.pf    =>PUP.Optional.OneSystemCare
DEPLACÉ fichier**: C:\Windows\Prefetch\SPEEDOWNLOADER.EXE-E4B79E83.pf    =>Adware.SpeeDownloader
DEPLACÉ fichier**: C:\Windows\Prefetch\SPEEDOWNLOADER.TMP-C928C1C2.pf    =>Adware.SpeeDownloader
DEPLACÉ fichier**: C:\Users\siteh\AppData\Local\Temp\speedownloader.exe [ - Delajdshg Setup]  =>Adware.SpeeDownloader
DEPLACÉ fichier**: C:\Users\siteh\AppData\Local\Temp\UpProAddonInstaller-ff.exe [Up Pro - Up Pro Setup]  =>.SUP.UpPro
DEPLACÉ dossier*: C:\Users\siteh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdpajcdgknpendpmecafmopknefafha  =>.SUP.BrowserExtension
DEPLACÉ dossier: C:\Program Files (x86)\B1dMyRtuobPX Updater  =>PUP.Optional.B1dMyRtuobPXUpdater
DEPLACÉ dossier*: C:\Program Files (x86)\OneSystemCare  =>PUP.Optional.OneSystemCare
DEPLACÉ dossier^: C:\Program Files\I819IM3A3L  =>Heuristic.Wizzcaster
DEPLACÉ dossier^: C:\Program Files\INRSYLUP8Y  =>Heuristic.Wizzcaster
DEPLACÉ dossier^: C:\Program Files\KWIJWJ059A  =>Heuristic.Wizzcaster
DEPLACÉ dossier^: C:\Program Files\NX1EX9VL9O  =>Heuristic.Wizzcaster
DEPLACÉ dossier*: C:\ProgramData\38746fbe-2545-0  =>.SUP.Polluteware
DEPLACÉ dossier*: C:\ProgramData\38746fbe-7ed7-1  =>.SUP.Polluteware
DEPLACÉ dossier*: C:\ProgramData\698c4a9e-6683-1  =>.SUP.Polluteware
DEPLACÉ dossier*: C:\ProgramData\698c4a9e-75a3-0  =>.SUP.Polluteware
DEPLACÉ dossier*: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One System Care  =>PUP.Optional.OneSystemCare
DEPLACÉ dossier^: C:\Users\siteh\AppData\Roaming\0lpp2nu2yrr  =>Heuristic.Wizzcaster
DEPLACÉ dossier^: C:\Users\siteh\AppData\Roaming\4onpwe2cyer  =>Heuristic.Wizzcaster
DEPLACÉ dossier^: C:\Users\siteh\AppData\Roaming\dcdzseo3nnt  =>Heuristic.Wizzcaster
DEPLACÉ dossier*: C:\Users\siteh\AppData\Roaming\One System Care  =>PUP.Optional.OneSystemCare
DEPLACÉ dossier^: C:\Users\siteh\AppData\Roaming\qfcl4eocegu  =>Heuristic.Wizzcaster
DEPLACÉ dossier^: C:\Users\siteh\AppData\Roaming\y4u5rh4gu0f  =>Heuristic.Wizzcaster
DEPLACÉ dossier*: C:\Users\siteh\AppData\Local\MSfree Inc  =>HackTool.WinActivator
DEPLACÉ dossier*: C:\Users\siteh\AppData\Local\AdService  =>Trojan.Agent


---\\  Base de Registres ( Clés, Valeurs, Données ). (20)
SUPPRIMÉ donnée: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{de1e6ead-eed7-495e-95a8-f67b69c28a71}\\NameServer [Bad : 82.163.143.198,82.163.142.13]  =>Adware.DNSUnlocker
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\B1dMyRtuobPX Updater [C:\Program Files (x86)\B1dMyRtuobPX Updater\B1dMyRtuobPX Updater.exe (Not File)]  =>PUP.Optional.B1dMyRtuobPXUpdater
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\dagwService [C:\ProgramData\dagwService\dagwService.exe (Not File)]  =>PUP.Optional.Youndoo
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-4009766753-2876665748-4057158324-1001\SOFTWARE\One System Care []  =>PUP.Optional.OneSystemCare
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-4009766753-2876665748-4057158324-1001\SOFTWARE\System Healer []  =>.SUP.SystemHealer
SUPPRIMÉ clé: HKCU\Software\One System Care []  =>PUP.Optional.OneSystemCare
SUPPRIMÉ clé: HKCU\Software\System Healer []  =>.SUP.SystemHealer
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net []  =>.SUP.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cdncache-a.akamaihd.net []  =>.SUP.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net []  =>.SUP.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cdncache-a.akamaihd.net [1203]  =>.SUP.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\akamaihd.net []  =>.SUP.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdncache-a.akamaihd.net [212]  =>.SUP.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\utop.it []  =>PUP.Optional.Browser
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114} [YoutubeAdBlock]  =>PUP.Optional.YouTubeAdBlock
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Speedownloader0099 []  =>Adware.SoftwareEngine
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\B1dMyRtuobPX Updater []  =>PUP.Optional.B1dMyRtuobPXUpdater
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A97606DF-0FE1-4390-B0DD-ADA8B303AE61}_is1 [VidsqaurE]  =>Adware.MSIL
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b []  =>Hijacker.Browser
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{C0D38E5A-7CF8-4105-8FE8-31B81443A114}\InprocServer32 [C:\Program Files (x86)\gVEKLTxUjIE\tjj6QGpTn.dll (Not File)]  =>Adware.Sambreel


---\\  Récapitulatif des éléments trouvés sur votre station. (21)
https://nicolascoolman.eu/2017/03/11/superfluous-youndoo/  =>PUP.Optional.Youndoo
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.OneSystemCare
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/  =>HackTool.KMSpico
https://nicolascoolman.eu/2017/08/27/adware-hpdefender/  =>Adware.HPDefender
https://nicolascoolman.eu/2017/04/11/adware-speedownloader/  =>Adware.SpeeDownloader
https://nicolascoolman.eu/2017/01/03/pup-optional-uppro/  =>.SUP.UpPro
https://nicolascoolman.eu/2017/10/05/sup-browserextension/  =>.SUP.BrowserExtension
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.B1dMyRtuobPXUpdater
https://nicolascoolman.eu/2017/09/15/adware-wizzcaster/  =>Heuristic.Wizzcaster
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Polluteware
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/  =>HackTool.WinActivator
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>Trojan.Agent
https://nicolascoolman.eu/2017/09/27/adware-dnsunlocker/  =>Adware.DNSUnlocker
https://nicolascoolman.eu/2017/10/03/sup-systemhealer/  =>.SUP.SystemHealer
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.AkamaiHD
https://nicolascoolman.eu/2017/01/26/hijacker-browser/  =>PUP.Optional.Browser
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.YouTubeAdBlock
https://nicolascoolman.eu/2017/10/07/adware-softwareengine/  =>Adware.SoftwareEngine
https://nicolascoolman.eu/2017/09/13/adware-msil/  =>Adware.MSIL
https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/  =>Hijacker.Browser
https://nicolascoolman.eu/2017/09/24/adware-sambreel/  =>Adware.Sambreel


---\\  Nettoyage Additionnel. (34)
~ Suppression des Clés de registre Tracing. (34)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent  (Mozilla Firefox)
~ Ce navigateur est absent  (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 512
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 55


~ End of clean in 00h00mn34s
~====================
ZHPCleaner-[R]-12122017-02_10_43.txt
ZHPCleaner-[S]-12122017-02_09_33.txt