Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPCleaner v2016.2.22.34 by Nicolas Coolman (2016/02/22)
~ Run by joachim (Administrator) (23/02/2016 16:56:58)
~ Site : http://www.nicolascoolman.com
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\joachim\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\joachim\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)
---\\ Service. (2)
ARRETÉ : ihpmServer =>PUP.Optional.CrossRider
ARRETÉ : QQPCRTP =>.Superfluous.Tencent
---\\ Navigateur internet. (1)
REMPLACÉ TaskBar: C:\Users\joachim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk [Bad : http://www.yoursearching.com/?type=sc&ts=1456185628&z=838074ab897fcefaf46343bg2zbw3q1gabcw9qao5b&from=itr&uid=wdcxwd10jpvx-22jc3t0_wd-wx21a14n9349n9349] =>Hijacker.Browser
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (30)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (35)
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\npQMExtensionsMozilla.dll [Tencent Technology (Shenzhen) Company Limited - QQPCMgr Mozilla Extenstion] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Program Files (x86)\RayDld\ihpmServer.exe [RayDl - RayDl] =>PUP.Optional.CrossRider
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMUdisk64.sys [Tencent - QMCommDriver] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCRTP.exe [Tencent - 电脑管家-实时防护服务] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQSysMonX64.sys [电脑管家 - 电脑管家-驱动模块] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\softaal64.sys [Tencent - SoftAALDriver] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Windows\System32\drivers\TAOAccelerator64.sys [Tencent - 电脑管家-TAO游戏启动加速驱动] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Windows\System32\drivers\TAOKernelEx64.sys [Tencent Technology(Shenzhen) Company Limited - TAOKernel] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Windows\System32\drivers\TFsFltX64.sys [电脑管家 - 电脑管家-驱动模块] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSDefenseBT64.sys [Tencent - Tencent TSDefense Boot (电脑管家主动防御模块)] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TsNetHlpX64.sys =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSSysKit64.sys [电脑管家 - 电脑管家-驱动模块] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Windows\Prefetch\TENCENTDL.EXE-C83FB433.pf =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMCommon.dll [Tencent - 电脑管家-公共库] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMQuarantine.exe [Tencent - 电脑管家-文件监控] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Users\joachim\Downloads\BloodyTonemaker1_V2015.1204.exe =>PUP.Optional.SPointer
DEPLACÉ fichier: C:\program files (x86)\common files\Tencent\qqdownload\130\bugreport_xf.exe =>.Superfluous.Tencent
DEPLACÉ fichier: C:\program files (x86)\common files\Tencent\qqdownload\130\tencentdl.exe [Tencent - 腾讯高速下载引擎] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCmgrInstallGuide.exe [Tencent - 电脑管家-安装引导] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCTray.exe [Tencent - 电脑管家] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCMgr.exe [Tencent - 电脑管家] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMDL.exe [Tencent - 电脑管家-下载中心] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\bugreport.exe [Tencent - 电脑管家-crash上报] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCFileOpen.exe [Tencent - 电脑管家-未知文件打开] =>.Superfluous.Tencent
DEPLACÉ dossier: C:\Program Files (x86)\BloodyToneMaker =>PUP.Optional.SPointer
DEPLACÉ dossier: C:\Program Files (x86)\RayDld =>PUP.Optional.CrossRider
DEPLACÉ dossier^: C:\Program Files (x86)\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\Program Files (x86)\Common Files\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier^: C:\ProgramData\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\ProgramData\aWinManProa =>PUP.Optional.WpManager
DEPLACÉ dossier: C:\ProgramData\MWinManProM =>PUP.Optional.WpManager
DEPLACÉ dossier: C:\Users\joachim\AppData\Roaming\ASPackage =>PUP.Optional.ASPackage
DEPLACÉ dossier^: C:\Users\joachim\AppData\Roaming\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\Users\joachim\AppData\Roaming\yoursearching =>PUP.Optional.YourSearching
DEPLACÉ dossier: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent =>.Superfluous.Tencent
---\\ Base de Registres ( Clés, Valeurs, Données ). (54)
SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\deskCutv2@gmail.com [C:\Users\joachim\AppData\Roaming\Mozilla\Firefox\Profiles\3y9gxzke.default-1448381549259\extensions\deskCutv2@gmail.com] =>PUP.Optional.DeskCut
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@qq.com/QQPCMgr [Tencent] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\ihpmServer [C:\Program Files (x86)\RayDld\ihpmServer.exe (Not File)] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMUdisk64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\QQPCRTP [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCRTP.exe] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\QQSysMonX64 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQSysMonX64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\softaal [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\softaal64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TAOAccelerator [C:\Windows\System32\drivers\TAOAccelerator64.sys (Not File)] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TAOKernelDriver [C:\Windows\System32\drivers\TAOKernelEx64.sys (Not File)] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\TFsFlt [C:\Windows\System32\drivers\TFsFltX64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\TSDefenseBt [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSDefenseBT64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\ihpmServer [C:\Program Files (x86)\RayDld\ihpmServer.exe (Not File)] =>PUP.Optional.CrossRider
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMUdisk64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\softaal [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\softaal64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\tsnethlpx64 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TsNetHlpX64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TSSysKit [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSSysKit64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-1787595587-3364626949-477821656-1001\SOFTWARE\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKEY_USERS\.DEFAULT\Software\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKCU\Software\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKCR\AllFilesystemObjects\shellex\ContextMenuHandlers\QMContextUninstall [{CBDECEF7-7A29-4cbf-A009-2673D82C7BF9}] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKCU\Software\Mozilla\Extends [] =>PUP.Optional.FastStart
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552} [OCComSDK 1.0 Type Library] =>PUP.Optional.OpenCandy
SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP [service] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ihpmserver [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\RayDld [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé^: [X64] HKLM\SOFTWARE\Wow6432Node\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\yoursearchingSoftware [] =>PUP.Optional.YourSearching
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552} [OCComSDK 1.0 Type Library] =>PUP.Optional.OpenCandy
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage [CMI Limited] =>PUP.Optional.CMILimited
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater [Satellite Comma] =>PUP.Optional.SoftwareUpdater
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\yoursearching [yoursearching] =>PUP.Optional.YourSearching
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{16EE6530-8649-4F42-A9E4-F6A3295AF975} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{63332668-8CE1-445D-A5EE-25929176714E} [QMContextScanMenu Class] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{63332668-8CE1-445D-A5EE-25929176714E}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextScan64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} [电脑管家网页防火墙] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSWebMon64.dat] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6} [PCMgr Garbage Cleaner ShellExtension] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMGCShellExt64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{CBDECEF7-7A29-4cbf-A009-2673D82C7BF9} [QMContextUninstallMenu Class] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{CBDECEF7-7A29-4cbf-A009-2673D82C7BF9}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextUninstall64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{D4801E96-E7A1-45F6-B124-7A36DFB40B81} [PSFactoryBuffer] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{D4801E96-E7A1-45F6-B124-7A36DFB40B81}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextUninstall64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{E52EB753-1F56-4DF7-BE53-2C314AC5F8A1} [PSFactoryBuffer] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{E52EB753-1F56-4DF7-BE53-2C314AC5F8A1}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextScan64.dll] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\ QQPCTray ["C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCTRAY.EXE" /regrun /qqrepair] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{4D4B5681-7465-47E0-A395-23EDA9BC4A90} [C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{7243AA97-A82F-43D2-AAAF-A62D0D603528} [C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{E718FE96-8696-40B7-AF8F-102D3BB80FA4} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCmgrInstallGuide.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{7588F2D6-A51C-4D12-984B-46EAD07C20C1} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCTray.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{25F0B813-FDE5-4C35-BF19-9E1A4422E953} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCMgr.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{50FB1288-9B52-4BBC-A5F8-BA50A0B6CA49} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCRTP.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{1CA3BA10-B665-455B-A15D-7E7DE84972B7} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMDL.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{BD309090-5DFF-4C28-B9E5-63BB1155B5DE} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\bugreport.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{21123F8D-34E4-4F33-9549-00F2A687BFCE} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCFileOpen.exe] =>.Superfluous.Tencent
---\\ Récapitulatif des éléments trouvés sur votre station. (12)
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=368 =>.Superfluous.Tencent
http://www.nicolascoolman.fr/hijacker-browser/ =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=205 =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/?p=173 =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-optional-aspackage/ =>PUP.Optional.ASPackage
http://www.nicolascoolman.fr/pup-optional-yoursearching =>PUP.Optional.YourSearching
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.FastStart
http://www.nicolascoolman.fr/?p=197 =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.CMILimited
http://www.nicolascoolman.fr/?p=641 =>PUP.Optional.SoftwareUpdater
---\\ Nettoyage Additionnel. (36)
~ Suppression des Clés de registre Tracing. (33)
~ Suppression des anciens rapports ZHPCleaner. (3)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 4569
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 95
~ End of clean in 00h06mn34s
===================
ZHPCleaner-[R]-07012016-19_59_57.txt
ZHPCleaner-[R]-23022016-17_03_32.txt
ZHPCleaner-[S]-23022016-01_34_51.txt
ZHPCleaner-[S]-23022016-16_55_58.txt
~ Run by joachim (Administrator) (23/02/2016 16:56:58)
~ Site : http://www.nicolascoolman.com
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\joachim\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\joachim\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)
---\\ Service. (2)
ARRETÉ : ihpmServer =>PUP.Optional.CrossRider
ARRETÉ : QQPCRTP =>.Superfluous.Tencent
---\\ Navigateur internet. (1)
REMPLACÉ TaskBar: C:\Users\joachim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk [Bad : http://www.yoursearching.com/?type=sc&ts=1456185628&z=838074ab897fcefaf46343bg2zbw3q1gabcw9qao5b&from=itr&uid=wdcxwd10jpvx-22jc3t0_wd-wx21a14n9349n9349] =>Hijacker.Browser
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (30)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (35)
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\npQMExtensionsMozilla.dll [Tencent Technology (Shenzhen) Company Limited - QQPCMgr Mozilla Extenstion] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Program Files (x86)\RayDld\ihpmServer.exe [RayDl - RayDl] =>PUP.Optional.CrossRider
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMUdisk64.sys [Tencent - QMCommDriver] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCRTP.exe [Tencent - 电脑管家-实时防护服务] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQSysMonX64.sys [电脑管家 - 电脑管家-驱动模块] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\softaal64.sys [Tencent - SoftAALDriver] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Windows\System32\drivers\TAOAccelerator64.sys [Tencent - 电脑管家-TAO游戏启动加速驱动] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Windows\System32\drivers\TAOKernelEx64.sys [Tencent Technology(Shenzhen) Company Limited - TAOKernel] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Windows\System32\drivers\TFsFltX64.sys [电脑管家 - 电脑管家-驱动模块] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSDefenseBT64.sys [Tencent - Tencent TSDefense Boot (电脑管家主动防御模块)] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TsNetHlpX64.sys =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSSysKit64.sys [电脑管家 - 电脑管家-驱动模块] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Windows\Prefetch\TENCENTDL.EXE-C83FB433.pf =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMCommon.dll [Tencent - 电脑管家-公共库] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\ProgramData\Tencent\QQPCMgr\Quarantine\QMQuarantine.exe [Tencent - 电脑管家-文件监控] =>.Superfluous.Tencent
DEPLACÉ fichier: C:\Users\joachim\Downloads\BloodyTonemaker1_V2015.1204.exe =>PUP.Optional.SPointer
DEPLACÉ fichier: C:\program files (x86)\common files\Tencent\qqdownload\130\bugreport_xf.exe =>.Superfluous.Tencent
DEPLACÉ fichier: C:\program files (x86)\common files\Tencent\qqdownload\130\tencentdl.exe [Tencent - 腾讯高速下载引擎] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCmgrInstallGuide.exe [Tencent - 电脑管家-安装引导] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCTray.exe [Tencent - 电脑管家] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCMgr.exe [Tencent - 电脑管家] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMDL.exe [Tencent - 电脑管家-下载中心] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\bugreport.exe [Tencent - 电脑管家-crash上报] =>.Superfluous.Tencent
DEPLACÉ fichier^: C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCFileOpen.exe [Tencent - 电脑管家-未知文件打开] =>.Superfluous.Tencent
DEPLACÉ dossier: C:\Program Files (x86)\BloodyToneMaker =>PUP.Optional.SPointer
DEPLACÉ dossier: C:\Program Files (x86)\RayDld =>PUP.Optional.CrossRider
DEPLACÉ dossier^: C:\Program Files (x86)\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\Program Files (x86)\Common Files\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier^: C:\ProgramData\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\ProgramData\aWinManProa =>PUP.Optional.WpManager
DEPLACÉ dossier: C:\ProgramData\MWinManProM =>PUP.Optional.WpManager
DEPLACÉ dossier: C:\Users\joachim\AppData\Roaming\ASPackage =>PUP.Optional.ASPackage
DEPLACÉ dossier^: C:\Users\joachim\AppData\Roaming\Tencent =>.Superfluous.Tencent
DEPLACÉ dossier: C:\Users\joachim\AppData\Roaming\yoursearching =>PUP.Optional.YourSearching
DEPLACÉ dossier: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent =>.Superfluous.Tencent
---\\ Base de Registres ( Clés, Valeurs, Données ). (54)
SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\deskCutv2@gmail.com [C:\Users\joachim\AppData\Roaming\Mozilla\Firefox\Profiles\3y9gxzke.default-1448381549259\extensions\deskCutv2@gmail.com] =>PUP.Optional.DeskCut
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@qq.com/QQPCMgr [Tencent] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\ihpmServer [C:\Program Files (x86)\RayDld\ihpmServer.exe (Not File)] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMUdisk64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\QQPCRTP [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCRTP.exe] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\QQSysMonX64 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQSysMonX64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\softaal [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\softaal64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TAOAccelerator [C:\Windows\System32\drivers\TAOAccelerator64.sys (Not File)] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TAOKernelDriver [C:\Windows\System32\drivers\TAOKernelEx64.sys (Not File)] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\TFsFlt [C:\Windows\System32\drivers\TFsFltX64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\TSDefenseBt [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSDefenseBT64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\ihpmServer [C:\Program Files (x86)\RayDld\ihpmServer.exe (Not File)] =>PUP.Optional.CrossRider
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\QMUdisk [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMUdisk64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\softaal [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\softaal64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\tsnethlpx64 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TsNetHlpX64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\TSSysKit [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSSysKit64.sys] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-1787595587-3364626949-477821656-1001\SOFTWARE\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKEY_USERS\.DEFAULT\Software\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé: HKCU\Software\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKCR\AllFilesystemObjects\shellex\ContextMenuHandlers\QMContextUninstall [{CBDECEF7-7A29-4cbf-A009-2673D82C7BF9}] =>.Superfluous.Tencent
SUPPRIMÉ clé*: HKCU\Software\Mozilla\Extends [] =>PUP.Optional.FastStart
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552} [OCComSDK 1.0 Type Library] =>PUP.Optional.OpenCandy
SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP [service] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ihpmserver [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\RayDld [] =>PUP.Optional.CrossRider
SUPPRIMÉ clé^: [X64] HKLM\SOFTWARE\Wow6432Node\Tencent [] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\yoursearchingSoftware [] =>PUP.Optional.YourSearching
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552} [OCComSDK 1.0 Type Library] =>PUP.Optional.OpenCandy
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage [CMI Limited] =>PUP.Optional.CMILimited
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater [Satellite Comma] =>PUP.Optional.SoftwareUpdater
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\yoursearching [yoursearching] =>PUP.Optional.YourSearching
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{16EE6530-8649-4F42-A9E4-F6A3295AF975} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{63332668-8CE1-445D-A5EE-25929176714E} [QMContextScanMenu Class] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{63332668-8CE1-445D-A5EE-25929176714E}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextScan64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} [电脑管家网页防火墙] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\TSWebMon64.dat] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6} [PCMgr Garbage Cleaner ShellExtension] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMGCShellExt64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{CBDECEF7-7A29-4cbf-A009-2673D82C7BF9} [QMContextUninstallMenu Class] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{CBDECEF7-7A29-4cbf-A009-2673D82C7BF9}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextUninstall64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{D4801E96-E7A1-45F6-B124-7A36DFB40B81} [PSFactoryBuffer] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{D4801E96-E7A1-45F6-B124-7A36DFB40B81}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextUninstall64.dll] =>.Superfluous.Tencent
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\CLSID\{E52EB753-1F56-4DF7-BE53-2C314AC5F8A1} [PSFactoryBuffer] =>.Superfluous.Tencent
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{E52EB753-1F56-4DF7-BE53-2C314AC5F8A1}\InprocServer32 [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMContextScan64.dll] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\ QQPCTray ["C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCTRAY.EXE" /regrun /qqrepair] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{4D4B5681-7465-47E0-A395-23EDA9BC4A90} [C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{7243AA97-A82F-43D2-AAAF-A62D0D603528} [C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{E718FE96-8696-40B7-AF8F-102D3BB80FA4} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCmgrInstallGuide.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{7588F2D6-A51C-4D12-984B-46EAD07C20C1} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCTray.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{25F0B813-FDE5-4C35-BF19-9E1A4422E953} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCMgr.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{50FB1288-9B52-4BBC-A5F8-BA50A0B6CA49} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCRTP.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{1CA3BA10-B665-455B-A15D-7E7DE84972B7} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QMDL.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{BD309090-5DFF-4C28-B9E5-63BB1155B5DE} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\bugreport.exe] =>.Superfluous.Tencent
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{21123F8D-34E4-4F33-9549-00F2A687BFCE} [C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17201.218\QQPCFileOpen.exe] =>.Superfluous.Tencent
---\\ Récapitulatif des éléments trouvés sur votre station. (12)
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=368 =>.Superfluous.Tencent
http://www.nicolascoolman.fr/hijacker-browser/ =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=205 =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/?p=173 =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-optional-aspackage/ =>PUP.Optional.ASPackage
http://www.nicolascoolman.fr/pup-optional-yoursearching =>PUP.Optional.YourSearching
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.FastStart
http://www.nicolascoolman.fr/?p=197 =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.CMILimited
http://www.nicolascoolman.fr/?p=641 =>PUP.Optional.SoftwareUpdater
---\\ Nettoyage Additionnel. (36)
~ Suppression des Clés de registre Tracing. (33)
~ Suppression des anciens rapports ZHPCleaner. (3)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 4569
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 95
~ End of clean in 00h06mn34s
===================
ZHPCleaner-[R]-07012016-19_59_57.txt
ZHPCleaner-[R]-23022016-17_03_32.txt
ZHPCleaner-[S]-23022016-01_34_51.txt
ZHPCleaner-[S]-23022016-16_55_58.txt