Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPCleaner v2015.6.3.265 by Nicolas Coolman (2015\06\3)
~ Run by Ludo (Administrator) (04/06/2015 08:41:23)
~ Site : http://nicolascoolman.com/fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\Ludo\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Ludo\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 8.1, 64-bit (Build 9600)
---\\ Service. (2)
[S] TROUV� : QMUdisk (Adware.TencentAddressBar)
[S] TROUV� : TS888x64 (Adware.TencentAddressBar)
---\\ Navigateur internet. (1)
TROUV� Chrome Preferences: hxxp://image.providesupport.com/ (PUP.eSupport)
---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)
---\\ T�che planifi�e. (0)
~ Aucun �l�ment malicieux trouv�.
---\\ Explorateur ( Dossiers, Fichiers ). (42)
TROUV� fichier: C:\ProgramData\SetStretch.exe (Suspect.Optional) [4A93070098539B54FDA391D4D551C880]
TROUV� fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMQuarantine.exe [Tencent - ????-????](Adware.TencentAddressBar) [C9F42E4DCDE6ECF0BD7073F4F746F5D1]
TROUV� fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMCommon.dll [Tencent - ????-???](Adware.TencentAddressBar) [9BC4D791A104B2A0623FDB9F4D7D4ED4]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC4B6.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC462.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC447.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC425.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC4B6.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC462.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC447.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC425.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\45201514616\WindApp Uninstall.exe [Nosibay - WindApp Uninstaller](PUP.Nosibay) [DE1F0B66329064DC7E78E721F918093E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\45201514226\Selection Tools Uninstall.exe [Nosibay - Selection Tools Uninstaller](PUP.Nosibay) [E5BAC64BA775E376B66ED9A46C8DA270]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\MediaViewerTracing_Camera.etl (PUP.MediaViewer) []
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\MediaViewerTracing_Camera.last.etl (PUP.MediaViewer) [A759BE16B21177FC2BB04783C7A3B441]
TROUV� dossier: C:\Program Files (x86)\Common Files\Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Common Files\_Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Common Files\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Common Files\_Tencent (Adware.TencentAddressBar)
TROUV� fichier: C:\ProgramData\dcaa3bd35f464e879b2a465a72b0322b\fcd50af4c59b483f93c586045a660ce6 (Adware.CrossRider) [CCA440CB1E9E505AC5E2508726E23020]
TROUV� dossier: C:\ProgramData\Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\QQPCMgr (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\TSVulFw (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\TSVulFw_Cache (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\TXPltSafe (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\WechatBackup (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\c9822f84c9044e618271ac92098ec10e (Adware.CrossRider)
TROUV� dossier: C:\ProgramData\dcaa3bd35f464e879b2a465a72b0322b (Adware.CrossRider)
TROUV� dossier: C:\ProgramData\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\DeskUpdate (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\Logs (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\QQPCMgr (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\DeskUpdate (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\Logs (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\QMAndroidServer (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\QQPCMgr (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\Tencentdl (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\TXSSO (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Software (Adware.Boxore)
---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (16)
TROUV� cl�: HKCU\Software\Plus HD Video 3.1cV03.05-nv-ie [] (Heuristic.CrossRider)
TROUV� cl�: [X64] HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMUdisk64.sys (Not File)] (Adware.TencentAddressBar)
TROUV� cl�: [X64] HKLM\SYSTEM\CurrentControlSet\Services\TS888x64 [C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\TS888x64.sys (Not File)] (Adware.TencentAddressBar)
TROUV� valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\mbot_fr_611 [] (Adware.CrossRider)
TROUV� cl�: HKEY_USERS\S-1-5-21-2887631969-2884431726-2870256938-1002\Software\Plus HD Video 3.1cV03.05-nv-ie [] (Adware.CrossRider)
TROUV� cl�: HKEY_USERS\S-1-5-21-2887631969-2884431726-2870256938-1002\Software\Tencent [] (Adware.TencentAddressBar)
TROUV� cl�: HKCU\Software\Plus HD Video 3.1cV03.05-nv-ie [] (Adware.CrossRider)
TROUV� cl�: HKCU\Software\Tencent [] (Adware.TencentAddressBar)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\mysearchdial.com [] (PUP.MySearchDial)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\pricepeep.net [] (Adware.PricePeep)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.boostsaves.com [580] (PUP.BoostSaves)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.pricepeep00.pricepeep.net [1074] (Adware.PricePeep)
TROUV� cl�: [X64] HKLM\SOFTWARE\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
TROUV� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Tencent [] (Adware.TencentAddressBar)
TROUV� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool] (Toolbar.Ask)
TROUV� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
---\\ Bilan de la r�paration
~ Aucune r�paration effectu�e.
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)
---\\ Statistiques
~ Items scann�s : 94246
~ Items trouv�s : 68
~ Items annul�s : 0
~ Items r�par�s : 0
End of clean at 08:46:52
===================
ZHPCleaner-[S]-04062015-08_34_29.txt
ZHPCleaner-[S]-04062015-08_46_52.txt
~ Run by Ludo (Administrator) (04/06/2015 08:41:23)
~ Site : http://nicolascoolman.com/fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\Ludo\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Ludo\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 8.1, 64-bit (Build 9600)
---\\ Service. (2)
[S] TROUV� : QMUdisk (Adware.TencentAddressBar)
[S] TROUV� : TS888x64 (Adware.TencentAddressBar)
---\\ Navigateur internet. (1)
TROUV� Chrome Preferences: hxxp://image.providesupport.com/ (PUP.eSupport)
---\\ Fichier h�te. (1)
~ Le fichier h�te est l�gitime. (21)
---\\ T�che planifi�e. (0)
~ Aucun �l�ment malicieux trouv�.
---\\ Explorateur ( Dossiers, Fichiers ). (42)
TROUV� fichier: C:\ProgramData\SetStretch.exe (Suspect.Optional) [4A93070098539B54FDA391D4D551C880]
TROUV� fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMQuarantine.exe [Tencent - ????-????](Adware.TencentAddressBar) [C9F42E4DCDE6ECF0BD7073F4F746F5D1]
TROUV� fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMCommon.dll [Tencent - ????-???](Adware.TencentAddressBar) [9BC4D791A104B2A0623FDB9F4D7D4ED4]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC4B6.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC462.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC447.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC425.tmp\dr.dll [Tencent - ????dll](Adware.TencentAddressBar) [47E5DB9C8990F133D57C564C20668D38]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC4B6.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC462.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC447.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\UNIC425.tmp\Unpin.exe [Tencent - ????-????](Adware.TencentAddressBar) [623DD482FE5E3EC62A04FEFC9F4B6D5E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\45201514616\WindApp Uninstall.exe [Nosibay - WindApp Uninstaller](PUP.Nosibay) [DE1F0B66329064DC7E78E721F918093E]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\45201514226\Selection Tools Uninstall.exe [Nosibay - Selection Tools Uninstaller](PUP.Nosibay) [E5BAC64BA775E376B66ED9A46C8DA270]
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\MediaViewerTracing_Camera.etl (PUP.MediaViewer) []
TROUV� fichier: C:\Users\Ludo\AppData\Local\Temp\MediaViewerTracing_Camera.last.etl (PUP.MediaViewer) [A759BE16B21177FC2BB04783C7A3B441]
TROUV� dossier: C:\Program Files (x86)\Common Files\Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Common Files\_Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Common Files\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Common Files\_Tencent (Adware.TencentAddressBar)
TROUV� fichier: C:\ProgramData\dcaa3bd35f464e879b2a465a72b0322b\fcd50af4c59b483f93c586045a660ce6 (Adware.CrossRider) [CCA440CB1E9E505AC5E2508726E23020]
TROUV� dossier: C:\ProgramData\Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\QQPCMgr (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\TSVulFw (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\TSVulFw_Cache (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\TXPltSafe (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\Tencent\WechatBackup (Adware.TencentAddressBar)
TROUV� dossier: C:\ProgramData\c9822f84c9044e618271ac92098ec10e (Adware.CrossRider)
TROUV� dossier: C:\ProgramData\dcaa3bd35f464e879b2a465a72b0322b (Adware.CrossRider)
TROUV� dossier: C:\ProgramData\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\DeskUpdate (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\Logs (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent\QQPCMgr (Adware.TencentAddressBar)
TROUV� dossier: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\DeskUpdate (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\Logs (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\QMAndroidServer (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\QQDownload (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\QQPCMgr (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\Tencentdl (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent\TXSSO (Adware.TencentAddressBar)
TROUV� dossier: C:\Users\Ludo\AppData\Roaming\Tencent (Adware.TencentAddressBar)
TROUV� dossier: C:\Program Files (x86)\Software (Adware.Boxore)
---\\ Base de Registres ( Cl�s, Valeurs, Donn�es ). (16)
TROUV� cl�: HKCU\Software\Plus HD Video 3.1cV03.05-nv-ie [] (Heuristic.CrossRider)
TROUV� cl�: [X64] HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\QMUdisk64.sys (Not File)] (Adware.TencentAddressBar)
TROUV� cl�: [X64] HKLM\SYSTEM\CurrentControlSet\Services\TS888x64 [C:\Program Files (x86)\Tencent\QQPCMgr\10.8.16208.227\TS888x64.sys (Not File)] (Adware.TencentAddressBar)
TROUV� valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\mbot_fr_611 [] (Adware.CrossRider)
TROUV� cl�: HKEY_USERS\S-1-5-21-2887631969-2884431726-2870256938-1002\Software\Plus HD Video 3.1cV03.05-nv-ie [] (Adware.CrossRider)
TROUV� cl�: HKEY_USERS\S-1-5-21-2887631969-2884431726-2870256938-1002\Software\Tencent [] (Adware.TencentAddressBar)
TROUV� cl�: HKCU\Software\Plus HD Video 3.1cV03.05-nv-ie [] (Adware.CrossRider)
TROUV� cl�: HKCU\Software\Tencent [] (Adware.TencentAddressBar)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\mysearchdial.com [] (PUP.MySearchDial)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\pricepeep.net [] (Adware.PricePeep)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.boostsaves.com [580] (PUP.BoostSaves)
TROUV� cl�: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.pricepeep00.pricepeep.net [1074] (Adware.PricePeep)
TROUV� cl�: [X64] HKLM\SOFTWARE\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
TROUV� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Tencent [] (Adware.TencentAddressBar)
TROUV� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool] (Toolbar.Ask)
TROUV� cl�: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)
---\\ Bilan de la r�paration
~ Aucune r�paration effectu�e.
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)
---\\ Statistiques
~ Items scann�s : 94246
~ Items trouv�s : 68
~ Items annul�s : 0
~ Items r�par�s : 0
End of clean at 08:46:52
===================
ZHPCleaner-[S]-04062015-08_34_29.txt
ZHPCleaner-[S]-04062015-08_46_52.txt