Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPCleaner v2015.9.4.342 by Nicolas Coolman (2015/09/04)
~ Run by Vincent (Administrator) (06/09/2015 10:58:03)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Vincent\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Vincent\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Home Basic, 32-bit Service Pack 1 (Build 7601)
---\\ Service. (1)
ARRETÉ : QQPCRtp =>PUP.Optional.TencentAddressBar
---\\ Navigateur internet. (3)
REMPLACÉ TaskBar: C:\Users\Vincent\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D] (Hijacker.Browser)
REMPLACÉ Startup\Programs: C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook - camelo.vincent@hotmail.com.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D] (Hijacker.Browser)
REMPLACÉ SystemTools: C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D] (Hijacker.Browser)
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (80)
DEPLACÉ fichier: C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll [腾讯公司 - QQPhoneManager Onekey-Install plug-in for A] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TAOAccelerator.sys [Tencent - 电脑管家-TAO游戏启动加速驱动] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TSDefenseBt.sys [Tencent - Tencent TSDefense Boot (电脑管家主动防御模块)] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\Prefetch\CROSSBROWSE.EXE-F6F882CE.pf =>PUP.Optional.CrossBrowse
DEPLACÉ fichier: C:\Windows\Prefetch\GLOBALUPDATE.EXE-B66D5BF9.pf =>PUP.Optional.GlobalUpdate
DEPLACÉ fichier: C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-C9210A99.pf =>PUP.Optional.GlobalUpdate
DEPLACÉ fichier: C:\Windows\Prefetch\IQIYISETUP_L_HUAYUKEJI@KB006.-DA41BE76.pf =>PUP.Optional.IQIYIVideo
DEPLACÉ fichier: C:\Windows\Prefetch\PCSULAUNCHER.EXE-2FB7B2EC.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\PCSUNOTIFIER.EXE-52ADFE12.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\PCSUSERVICE.EXE-A8F9406F.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\PCSUUCC.EXE-B998F989.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\SPEEDCHECKERSERVICE.EXE-06C08B86.pf =>PUP.Optional.InternetSpeedChecker
DEPLACÉ fichier: C:\Windows\Prefetch\WPM_V20.0.0.2294.EXE-9B5CD665.pf =>PUP.Optional.WpManager
DEPLACÉ fichier: C:\Windows\System32\drivers\TFsFlt.sys [电脑管家 - 电脑管家-驱动模块] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TS888.sys [Tencent - Tencent TS888 (电脑管家主动防御模块)] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TsFltMgr.sys [电脑管家 - 电脑管家-驱动模块] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMCommon.dll [Tencent - 电脑管家-公共库] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMQuarantine.exe [Tencent - 电脑管家-文件监控] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\ProgramData\Tencent\QQ\qmdr\dr.dll [Tencent - QQ电脑管家dll] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Users\Vincent\Downloads\expressfiles (1).exe [Application Program - Program Web Setup] =>PUP.Optional.ExpressFiles
DEPLACÉ fichier: C:\Users\Vincent\Downloads\expressfiles.exe [Application Program - Program Web Setup] =>PUP.Optional.ExpressFiles
DEPLACÉ fichier: C:\Users\Vincent\Downloads\ReimageRepair (1).exe [Reimage® - Reimage Downloader] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Vincent\Downloads\ReimageRepair.exe [Reimage® - Reimage Downloader] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Temp\ReimagePackage.exe [Reimage® - Reimage Package] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage-journal =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Temp\reimage.log =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Windows\Reimage.ini =>PUP.Optional.ReImageRepair
DEPLACÉ fichier*: C:\Users\Vincent\AppData\Local\Installer =>PUP.Optional.InstallPedia
DEPLACÉ fichier: C:\program files\common files\Tencent\qqdownload\130\tencentdl.exe [Tencent - 腾讯高速下载引擎] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe [Tencent - 电脑管家-实时防护服务] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\program files\common files\Tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\acklnhgjphbhhomkneonohbjnbmkclfb =>Orphean
DEPLACÉ dossier: C:\Program Files\018a488c-8ac8-462e-bd94-293b087c07f7 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\205a37a4-db7d-4f95-be4a-8d6b3f942b33 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\5542c225-e76d-491d-8dbb-b284ddb053d1 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\69dc8177-a574-4dff-8461-b3267b078dcf =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\b26e3c48-9c9f-4888-874f-b6e69c5f4c79 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
DEPLACÉ dossier^: C:\Program Files\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Program Files\uniisales =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\Program Files\uNisalles =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\Program Files\XTab =>PUP.Optional.AgentODR
DEPLACÉ dossier^: C:\Program Files\Common Files\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\ProgramData\13691a53000023ba =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\17327108556115546786 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\694b3800000030c6 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\abf92dd300007cfb =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\kkapnnjaidmlbmlkhkehlgigpgbbjgai =>Toolbar.Ask
DEPLACÉ dossier: C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
DEPLACÉ dossier^: C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Public\Documents\GOOBZO =>PUP.Optional.Goobzo
DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer =>PUP.Optional.FLVPlayer
DEPLACÉ dossier: C:\Windows\System32\config\systemprofile\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Vincent\AppData\Roaming\DSite =>PUP.Optional.SimpleSearches
DEPLACÉ dossier: C:\Users\Vincent\AppData\Roaming\systweak =>PUP.Optional.Systweak
DEPLACÉ dossier: C:\Users\Vincent\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Vincent\AppData\LocalLow\Goobzo =>PUP.Optional.Goobzo
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\CrashRpt =>.Superfluous.CrashReports
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
DEPLACÉ dossier: C:\Windows\Installer\MSI248F.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI651F.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI6CF5.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI8C51.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIA121.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIAFD9.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIB834.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIBDD0.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIC4B4.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE4FA.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE7F8.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE984.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIEE08.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIF0F6.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIF5D7.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIF8FB.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIFF04.tmp- =>Empty
---\\ Base de Registres ( Clés, Valeurs, Données ). (34)
SUPPRIMÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.mystartsearch.com/web/?type=ds&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o[...]] [mystartsearch] (PUP.Optional.StartSearch)
SUPPRIMÉ clé*: HKLM\SOFTWARE\MozillaPlugins\@qq.com/npAndroidAssistant [Tencent, Inc.] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\MozillaPlugins\@qq.com/QQPCMgr [Tencent] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904} [QPMIEHelper] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{50F4150A-48B2-417A-BE4C-C83F580FB904} [] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50F4150A-48B2-417A-BE4C-C83F580FB904} [] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\Software\Classes\CLSID\{50F4150A-48B2-417A-BE4C-C83F580FB904} [Ó¦Óñ¦Ò»¼ü°²×°²å¼þ] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.mystartsearch.com/web/?type=ds&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D&q={searchTerms}] =>PUP.Optional.StartSearch
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QQPCRtp ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe" -r (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TAOAccelerator [C:\Windows\System32\drivers\TAOAccelerator.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TsDefenseBt [C:\Windows\System32\drivers\TSDefenseBt.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\YouTubeAcceleratorService [C:\PROGRA~1\YOUTUB~1\YouTubeAcceleratorService.exe (Not File)] =>PUP.Optional.Goobzo
SUPPRIMÉ clé*: HKLM\SOFTWARE\81160179-e9b9-d832-2b02-31f5586f05d6 [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QMUdisk.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\QQPCRtp ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe" -r (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QQSysMon [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQSysMon.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TS888 [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\TS888.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ QQPCTray ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCTray.exe" /regrun (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Registry Helper ["C:\Program Files\Registry Helper\RegistryHelper.Exe" /boot (Not File)] =>PUP.Optional.RegistryHelper
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Super Optimizer [C:\Program Files\Super Optimizer\SupOptLauncher.exe (Not File)] =>PUP.Optional.SuperOptimizer
SUPPRIMÉ clé*: HKLM\Software\Reimage [] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Prod.cap [] =>PUP.Optional.ClaroSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\P0059315d_6a16_4c7d_9933_d690c56949c0_.P0059315d_6a16_4c7d_9933_d690c56949c0_ [youtubeadblocker] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\P0059315d_6a16_4c7d_9933_d690c56949c0_.P0059315d_6a16_4c7d_9933_d690c56949c0_.9 [youtubeadblocker] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} [globalUpdate.OneClickProcessLauncher] =>PUP.Optional.GlobalUpdate
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{50F4150A-48B2-417A-BE4C-C83F580FB904}\InprocServer32 [C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6} [PCMgr Garbage Cleaner ShellExtension] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6}\InprocServer32 [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QMGCShellExt.dll] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\ QQPCTray ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCTray.exe" /regrun] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{6A467CD2-19EB-424C-8AAC-650842097C3C}C:\program files\common files\tencent\qqdownload\130\tencentdl.exe [C:\program files\common files\tencent\qqdownload\130\tencentdl.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{06901561-F976-41BC-8962-8F6814E69A89}C:\program files\common files\tencent\qqdownload\130\tencentdl.exe [C:\program files\common files\tencent\qqdownload\130\tencentdl.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{4DB95419-C780-4892-BB85-27EC26B753CA} [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{679D26BC-8AC9-4CCB-849F-1C65203AF41E} [C:\program files\common files\tencent\qqdownload\130\tencentdl.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{F662511C-875B-450F-B7AE-F34581A43898} [C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe] =>PUP.Optional.TencentAddressBar
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 1643
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 119
~ End of clean in 5 minutes
===================
ZHPCleaner-[R]-06092015-11_04_03.txt
ZHPCleaner-[S]-06092015-10_53_06.txt
~ Run by Vincent (Administrator) (06/09/2015 10:58:03)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Vincent\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Vincent\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Home Basic, 32-bit Service Pack 1 (Build 7601)
---\\ Service. (1)
ARRETÉ : QQPCRtp =>PUP.Optional.TencentAddressBar
---\\ Navigateur internet. (3)
REMPLACÉ TaskBar: C:\Users\Vincent\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D] (Hijacker.Browser)
REMPLACÉ Startup\Programs: C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook - camelo.vincent@hotmail.com.lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D] (Hijacker.Browser)
REMPLACÉ SystemTools: C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk [Bad : http://www.mystartsearch.com/?type=sc&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D] (Hijacker.Browser)
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (80)
DEPLACÉ fichier: C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll [腾讯公司 - QQPhoneManager Onekey-Install plug-in for A] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TAOAccelerator.sys [Tencent - 电脑管家-TAO游戏启动加速驱动] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TSDefenseBt.sys [Tencent - Tencent TSDefense Boot (电脑管家主动防御模块)] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\Prefetch\CROSSBROWSE.EXE-F6F882CE.pf =>PUP.Optional.CrossBrowse
DEPLACÉ fichier: C:\Windows\Prefetch\GLOBALUPDATE.EXE-B66D5BF9.pf =>PUP.Optional.GlobalUpdate
DEPLACÉ fichier: C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-C9210A99.pf =>PUP.Optional.GlobalUpdate
DEPLACÉ fichier: C:\Windows\Prefetch\IQIYISETUP_L_HUAYUKEJI@KB006.-DA41BE76.pf =>PUP.Optional.IQIYIVideo
DEPLACÉ fichier: C:\Windows\Prefetch\PCSULAUNCHER.EXE-2FB7B2EC.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\PCSUNOTIFIER.EXE-52ADFE12.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\PCSUSERVICE.EXE-A8F9406F.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\PCSUUCC.EXE-B998F989.pf =>Superfluous.PCSpeedUp
DEPLACÉ fichier: C:\Windows\Prefetch\SPEEDCHECKERSERVICE.EXE-06C08B86.pf =>PUP.Optional.InternetSpeedChecker
DEPLACÉ fichier: C:\Windows\Prefetch\WPM_V20.0.0.2294.EXE-9B5CD665.pf =>PUP.Optional.WpManager
DEPLACÉ fichier: C:\Windows\System32\drivers\TFsFlt.sys [电脑管家 - 电脑管家-驱动模块] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TS888.sys [Tencent - Tencent TS888 (电脑管家主动防御模块)] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Windows\System32\drivers\TsFltMgr.sys [电脑管家 - 电脑管家-驱动模块] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMCommon.dll [Tencent - 电脑管家-公共库] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMQuarantine.exe [Tencent - 电脑管家-文件监控] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\ProgramData\Tencent\QQ\qmdr\dr.dll [Tencent - QQ电脑管家dll] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Users\Vincent\Downloads\expressfiles (1).exe [Application Program - Program Web Setup] =>PUP.Optional.ExpressFiles
DEPLACÉ fichier: C:\Users\Vincent\Downloads\expressfiles.exe [Application Program - Program Web Setup] =>PUP.Optional.ExpressFiles
DEPLACÉ fichier: C:\Users\Vincent\Downloads\ReimageRepair (1).exe [Reimage® - Reimage Downloader] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Vincent\Downloads\ReimageRepair.exe [Reimage® - Reimage Downloader] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Temp\ReimagePackage.exe [Reimage® - Reimage Package] =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage-journal =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal =>PUP.Optional.BestPriceNinja
DEPLACÉ fichier: C:\Users\Vincent\AppData\Local\Temp\reimage.log =>PUP.Optional.ReImageRepair
DEPLACÉ fichier: C:\Windows\Reimage.ini =>PUP.Optional.ReImageRepair
DEPLACÉ fichier*: C:\Users\Vincent\AppData\Local\Installer =>PUP.Optional.InstallPedia
DEPLACÉ fichier: C:\program files\common files\Tencent\qqdownload\130\tencentdl.exe [Tencent - 腾讯高速下载引擎] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe [Tencent - 电脑管家-实时防护服务] =>PUP.Optional.TencentAddressBar
DEPLACÉ fichier: C:\program files\common files\Tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\Google\Chrome\User Data\Default\Extensions\acklnhgjphbhhomkneonohbjnbmkclfb =>Orphean
DEPLACÉ dossier: C:\Program Files\018a488c-8ac8-462e-bd94-293b087c07f7 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\205a37a4-db7d-4f95-be4a-8d6b3f942b33 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\5542c225-e76d-491d-8dbb-b284ddb053d1 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\69dc8177-a574-4dff-8461-b3267b078dcf =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\b26e3c48-9c9f-4888-874f-b6e69c5f4c79 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
DEPLACÉ dossier^: C:\Program Files\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Program Files\uniisales =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\Program Files\uNisalles =>PUP.Optional.Multiplug
DEPLACÉ dossier: C:\Program Files\XTab =>PUP.Optional.AgentODR
DEPLACÉ dossier^: C:\Program Files\Common Files\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\ProgramData\13691a53000023ba =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\17327108556115546786 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\694b3800000030c6 =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\abf92dd300007cfb =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\ProgramData\kkapnnjaidmlbmlkhkehlgigpgbbjgai =>Toolbar.Ask
DEPLACÉ dossier: C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
DEPLACÉ dossier^: C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Public\Documents\GOOBZO =>PUP.Optional.Goobzo
DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer =>PUP.Optional.FLVPlayer
DEPLACÉ dossier: C:\Windows\System32\config\systemprofile\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Vincent\AppData\Roaming\DSite =>PUP.Optional.SimpleSearches
DEPLACÉ dossier: C:\Users\Vincent\AppData\Roaming\systweak =>PUP.Optional.Systweak
DEPLACÉ dossier: C:\Users\Vincent\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
DEPLACÉ dossier: C:\Users\Vincent\AppData\LocalLow\Goobzo =>PUP.Optional.Goobzo
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\CrashRpt =>.Superfluous.CrashReports
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
DEPLACÉ dossier: C:\Users\Vincent\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
DEPLACÉ dossier: C:\Windows\Installer\MSI248F.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI651F.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI6CF5.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI8C51.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIA121.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIAFD9.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIB834.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIBDD0.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIC4B4.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE4FA.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE7F8.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE984.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIEE08.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIF0F6.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIF5D7.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIF8FB.tmp- =>Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIFF04.tmp- =>Empty
---\\ Base de Registres ( Clés, Valeurs, Données ). (34)
SUPPRIMÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.mystartsearch.com/web/?type=ds&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o[...]] [mystartsearch] (PUP.Optional.StartSearch)
SUPPRIMÉ clé*: HKLM\SOFTWARE\MozillaPlugins\@qq.com/npAndroidAssistant [Tencent, Inc.] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\MozillaPlugins\@qq.com/QQPCMgr [Tencent] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904} [QPMIEHelper] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{50F4150A-48B2-417A-BE4C-C83F580FB904} [] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50F4150A-48B2-417A-BE4C-C83F580FB904} [] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\Software\Classes\CLSID\{50F4150A-48B2-417A-BE4C-C83F580FB904} [Ó¦Óñ¦Ò»¼ü°²×°²å¼þ] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} [http://www.mystartsearch.com/web/?type=ds&ts=1439924941&z=b41c891efc10b40632a6308g7zecat6t5o4z9bcg6o&from=cmi&uid=126614527_266178_6856673D&q={searchTerms}] =>PUP.Optional.StartSearch
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QQPCRtp ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe" -r (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TAOAccelerator [C:\Windows\System32\drivers\TAOAccelerator.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TsDefenseBt [C:\Windows\System32\drivers\TSDefenseBt.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\YouTubeAcceleratorService [C:\PROGRA~1\YOUTUB~1\YouTubeAcceleratorService.exe (Not File)] =>PUP.Optional.Goobzo
SUPPRIMÉ clé*: HKLM\SOFTWARE\81160179-e9b9-d832-2b02-31f5586f05d6 [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QMUdisk.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\QQPCRtp ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe" -r (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QQSysMon [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQSysMon.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TS888 [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\TS888.sys (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ QQPCTray ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCTray.exe" /regrun (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Registry Helper ["C:\Program Files\Registry Helper\RegistryHelper.Exe" /boot (Not File)] =>PUP.Optional.RegistryHelper
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Super Optimizer [C:\Program Files\Super Optimizer\SupOptLauncher.exe (Not File)] =>PUP.Optional.SuperOptimizer
SUPPRIMÉ clé*: HKLM\Software\Reimage [] =>PUP.Optional.ReImageRepair
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Prod.cap [] =>PUP.Optional.ClaroSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\P0059315d_6a16_4c7d_9933_d690c56949c0_.P0059315d_6a16_4c7d_9933_d690c56949c0_ [youtubeadblocker] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\P0059315d_6a16_4c7d_9933_d690c56949c0_.P0059315d_6a16_4c7d_9933_d690c56949c0_.9 [youtubeadblocker] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} [globalUpdate.OneClickProcessLauncher] =>PUP.Optional.GlobalUpdate
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{50F4150A-48B2-417A-BE4C-C83F580FB904}\InprocServer32 [C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll (Not File)] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6} [PCMgr Garbage Cleaner ShellExtension] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ clé: HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6}\InprocServer32 [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QMGCShellExt.dll] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\ QQPCTray ["C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCTray.exe" /regrun] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{6A467CD2-19EB-424C-8AAC-650842097C3C}C:\program files\common files\tencent\qqdownload\130\tencentdl.exe [C:\program files\common files\tencent\qqdownload\130\tencentdl.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{06901561-F976-41BC-8962-8F6814E69A89}C:\program files\common files\tencent\qqdownload\130\tencentdl.exe [C:\program files\common files\tencent\qqdownload\130\tencentdl.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{4DB95419-C780-4892-BB85-27EC26B753CA} [C:\Program Files\Tencent\QQPCMgr\10.10.16443.223\QQPCRTP.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{679D26BC-8AC9-4CCB-849F-1C65203AF41E} [C:\program files\common files\tencent\qqdownload\130\tencentdl.exe] =>PUP.Optional.TencentAddressBar
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{F662511C-875B-450F-B7AE-F34581A43898} [C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe] =>PUP.Optional.TencentAddressBar
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 1643
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 119
~ End of clean in 5 minutes
===================
ZHPCleaner-[R]-06092015-11_04_03.txt
ZHPCleaner-[S]-06092015-10_53_06.txt