Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPCleaner v2016.3.2.36 by Nicolas Coolman (2016/03/02)
~ Run by kedwy (Administrator) (02/03/2016 17:47:59)
~ Site : http://www.nicolascoolman.com
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\kedwy\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\kedwy\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 10586)
---\\ Service. (2)
ARRETÉ : Service Mgr OurSearchWindow =>Heuristic.OurSearchWindow
ARRETÉ : Update Mgr OurSearchWindow =>Heuristic.OurSearchWindow
---\\ Navigateur internet. (5)
REMPLACÉ Chrome Preferences: "http://searchinterneat-a.akamaihd.net/" =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://generousdeal-a.akamaihd.net/" =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://hdsrc-a.akamaihd.net/" =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://msg.altruistictask.com/" =>Toolbar.Ask
REMPLACÉ Chrome Preferences: "https://oursearchwindow-a.akamaihd.net/" =>PUP.Optional.Browser
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (1)
SUPPRIMÉ tâche: [LaunchPreSignup] [C:\Program Files (x86)\OLBPre\OLBPre.exe (Not File) ] =>PUP.Optional.MyPCBackup
---\\ Explorateur ( Dossiers, Fichiers ). (46)
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_alkaeoelgidncchljehbmkohmhhbhfkd_0.localstorage-journal =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_alkaeoelgidncchljehbmkohmhhbhfkd_0.localstorage =>Hijacker.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbkdonameecmkdafflcomgkeedkhimpd_0.localstorage-journal =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbkdonameecmkdafflcomgkeedkhimpd_0.localstorage =>Hijacker.Browser
DEPLACÉ fichier: C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1\plugincontainer.exe =>Heuristic.OurSearchWindow
DEPLACÉ fichier: C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1\updater.exe =>Heuristic.OurSearchWindow
DEPLACÉ fichier: C:\Windows\Prefetch\OLBPRE.EXE-C6385661.pf =>PUP.Optional.MyPCBackup
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGE.EXE-4681D307.pf =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEPACKAGE.EXE-4B16EB5B.pf =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEREPAIR.EXE-9E9BBF39.pf =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\SYSTEMHEALER.EXE-B61716E5.pf =>PUP.Optional.SystemHealer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\ReimagePackage.exe [Reimage® - Reimage Package] =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\a25bgpazY4\1bW24aYDqv\Web_Bar_Setup_2.0.5897.26069_default.exe [Web Bar Media - Web Bar Setup] =>PUP.Optional.WebBar
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_generousdeal-a.akamaihd.net_0.localstorage =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_generousdeal-a.akamaihd.net_0.localstorage-journal =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_oursearchwindow-a.akamaihd.net_0.localstorage =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_oursearchwindow-a.akamaihd.net_0.localstorage-journal =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage =>PUP.Optional.PricePeep
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal =>PUP.Optional.PricePeep
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage =>PUP.Optional.Multiplug
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal =>PUP.Optional.Multiplug
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage =>PUP.Optional.PriceMoon
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage-journal =>PUP.Optional.PriceMoon
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage =>PUP.Optional.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage-journal =>PUP.Optional.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.reklaam00.reklaam.co_0.localstorage =>PUP.Optional.Revizer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.reklaam00.reklaam.co_0.localstorage-journal =>PUP.Optional.Revizer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\reimage.log =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Reimage.ini =>.Superfluous.ReimageRepair
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Extensions\alkaeoelgidncchljehbmkohmhhbhfkd =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\alkaeoelgidncchljehbmkohmhhbhfkd =>Hijacker.Browser
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbkdonameecmkdafflcomgkeedkhimpd =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kbkdonameecmkdafflcomgkeedkhimpd =>Hijacker.Browser
DEPLACÉ dossier^: C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1 =>Heuristic.OurSearchWindow
DEPLACÉ dossier: C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1 =>Heuristic.OurSearchWindow
DEPLACÉ dossier: C:\Program Files (x86)\ORBTR =>.Superfluous.Conduit
DEPLACÉ dossier: C:\Program Files (x86)\SearchProtect =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\Program Files (x86)\Security Cleaner llc =>PUP.Optional.SecurityCleaner
DEPLACÉ dossier^: C:\windows\System32\config\systemprofile\AppData\Local\WebBar =>PUP.Optional.WebBar
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\bvxvbyxvaa =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\windows\Installer\MSIC3C1.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSICDC8.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSICE65.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSID9E2.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSIDABE.tmp- =>Empty
---\\ Base de Registres ( Clés, Valeurs, Données ). (32)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3323130&octid=EB_ORIGINAL_CTID&ISID=MA91E2C66-E413-4D34[...]] [Trovi] =>PUP.Optional.Trovigo
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A6F407-3B12-442F-88EA-2186F5597A04} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4AAghBElMUbQ4MAAxcFQcadhQBAg9ADAZFdgFaB[...]] [Default] =>PUP.Optional.Browser
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3323130&octid=EB_ORIGINAL_CTID&ISID=MA91E2C66-E413-4D34-9074-1ADB34F3CF21&SearchSource=58&CUI=&UM=8&UP=SPFA58C962-1A44-4C5B-9C7E-D8062423EAF5&D=022816&q={searchTerms}&SSPV=] =>PUP.Optional.Trovigo
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A6F407-3B12-442F-88EA-2186F5597A04} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4AAghBElMUbQ4MAAxcFQcadhQBAg9ADAZFdgFaBVoQRQYVdh9aFQQTSEcFME0FCFwEURNNfXZNE2oUQEdAKG5RD10eVg==&q={searchTerms}] =>PUP.Optional.Browser
SUPPRIMÉ clé*: HKCU\SOFTWARE\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr OurSearchWindow [C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1\plugincontainer.exe (Not File)] =>Heuristic.OurSearchWindow
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr OurSearchWindow [C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1\updater.exe (Not File)] =>Heuristic.OurSearchWindow
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-930123857-720773727-2745221845-1001\SOFTWARE\Reimage [] =>.Superfluous.ReimageRepair
SUPPRIMÉ clé: HKEY_USERS\S-1-5-21-930123857-720773727-2745221845-1001\SOFTWARE\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé: HKCU\Software\Reimage [] =>.Superfluous.ReimageRepair
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\generousdeal-a.akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\kingtopdeals.com [] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\oursearchwindow-a.akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pricemoon.co [] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.kingtopdeals.com [] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.pricemoon.co [] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\systemhealer.com [] =>PUP.Optional.SystemHealer
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\generousdeal-a.akamaihd.net [243799] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\kingtopdeals.com [] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\oursearchwindow-a.akamaihd.net [244173] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pricemoon.co [] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.kingtopdeals.com [126] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.pricemoon.co [126] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\systemhealer.com [184] =>PUP.Optional.SystemHealer
SUPPRIMÉ clé: HKCU\Software\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Reimage [] =>.Superfluous.ReimageRepair
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\WebBar [] =>PUP.Optional.WebBar
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ORBTR [] =>.Superfluous.Conduit
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\SPPDCOM [] =>.Superfluous.PCSpeedUp
---\\ Récapitulatif des éléments trouvés sur votre station. (19)
http://www.nicolascoolman.fr/?p=4664 =>Heuristic.OurSearchWindow
http://www.nicolascoolman.fr/?p=546 =>PUP.Optional.Browser
http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask
http://www.nicolascoolman.fr/?p=316 =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
http://www.nicolascoolman.fr/hijacker-browser/ =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=1075 =>.Superfluous.ReimageRepair
http://www.nicolascoolman.fr/pup-optional-systemhealer/ =>PUP.Optional.SystemHealer
http://www.nicolascoolman.fr/pup-optional-webbar/ =>PUP.Optional.WebBar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.AkamaiHD
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.PricePeep
http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.PriceMoon
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Revizer
http://www.nicolascoolman.fr/?p=210 =>.Superfluous.Conduit
http://www.nicolascoolman.fr/?p=1633 =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SecurityCleaner
http://www.nicolascoolman.fr/?p=1042 =>PUP.Optional.Trovigo
http://www.nicolascoolman.fr/?p=1255 =>.Superfluous.PCSpeedUp
---\\ Nettoyage Additionnel. (10)
~ Suppression des Clés de registre Tracing. (10)
~ Suppression des anciens rapports ZHPCleaner. (0)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 491
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 86
~ End of clean in 00h00mn45s
===================
ZHPCleaner-[R]-02032016-17_48_44.txt
ZHPCleaner-[S]-02032016-17_47_39.txt
~ Run by kedwy (Administrator) (02/03/2016 17:47:59)
~ Site : http://www.nicolascoolman.com
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\kedwy\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\kedwy\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 10586)
---\\ Service. (2)
ARRETÉ : Service Mgr OurSearchWindow =>Heuristic.OurSearchWindow
ARRETÉ : Update Mgr OurSearchWindow =>Heuristic.OurSearchWindow
---\\ Navigateur internet. (5)
REMPLACÉ Chrome Preferences: "http://searchinterneat-a.akamaihd.net/" =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://generousdeal-a.akamaihd.net/" =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://hdsrc-a.akamaihd.net/" =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://msg.altruistictask.com/" =>Toolbar.Ask
REMPLACÉ Chrome Preferences: "https://oursearchwindow-a.akamaihd.net/" =>PUP.Optional.Browser
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (1)
SUPPRIMÉ tâche: [LaunchPreSignup] [C:\Program Files (x86)\OLBPre\OLBPre.exe (Not File) ] =>PUP.Optional.MyPCBackup
---\\ Explorateur ( Dossiers, Fichiers ). (46)
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_alkaeoelgidncchljehbmkohmhhbhfkd_0.localstorage-journal =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_alkaeoelgidncchljehbmkohmhhbhfkd_0.localstorage =>Hijacker.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbkdonameecmkdafflcomgkeedkhimpd_0.localstorage-journal =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbkdonameecmkdafflcomgkeedkhimpd_0.localstorage =>Hijacker.Browser
DEPLACÉ fichier: C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1\plugincontainer.exe =>Heuristic.OurSearchWindow
DEPLACÉ fichier: C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1\updater.exe =>Heuristic.OurSearchWindow
DEPLACÉ fichier: C:\Windows\Prefetch\OLBPRE.EXE-C6385661.pf =>PUP.Optional.MyPCBackup
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGE.EXE-4681D307.pf =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEPACKAGE.EXE-4B16EB5B.pf =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEREPAIR.EXE-9E9BBF39.pf =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\SYSTEMHEALER.EXE-B61716E5.pf =>PUP.Optional.SystemHealer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\ReimagePackage.exe [Reimage® - Reimage Package] =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\a25bgpazY4\1bW24aYDqv\Web_Bar_Setup_2.0.5897.26069_default.exe [Web Bar Media - Web Bar Setup] =>PUP.Optional.WebBar
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_generousdeal-a.akamaihd.net_0.localstorage =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_generousdeal-a.akamaihd.net_0.localstorage-journal =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_oursearchwindow-a.akamaihd.net_0.localstorage =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_oursearchwindow-a.akamaihd.net_0.localstorage-journal =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage =>PUP.Optional.PricePeep
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal =>PUP.Optional.PricePeep
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage =>PUP.Optional.Multiplug
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal =>PUP.Optional.Multiplug
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage =>PUP.Optional.PriceMoon
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage-journal =>PUP.Optional.PriceMoon
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage =>PUP.Optional.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage-journal =>PUP.Optional.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.reklaam00.reklaam.co_0.localstorage =>PUP.Optional.Revizer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.reklaam00.reklaam.co_0.localstorage-journal =>PUP.Optional.Revizer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\reimage.log =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Reimage.ini =>.Superfluous.ReimageRepair
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Extensions\alkaeoelgidncchljehbmkohmhhbhfkd =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\alkaeoelgidncchljehbmkohmhhbhfkd =>Hijacker.Browser
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbkdonameecmkdafflcomgkeedkhimpd =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kbkdonameecmkdafflcomgkeedkhimpd =>Hijacker.Browser
DEPLACÉ dossier^: C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1 =>Heuristic.OurSearchWindow
DEPLACÉ dossier: C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1 =>Heuristic.OurSearchWindow
DEPLACÉ dossier: C:\Program Files (x86)\ORBTR =>.Superfluous.Conduit
DEPLACÉ dossier: C:\Program Files (x86)\SearchProtect =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\Program Files (x86)\Security Cleaner llc =>PUP.Optional.SecurityCleaner
DEPLACÉ dossier^: C:\windows\System32\config\systemprofile\AppData\Local\WebBar =>PUP.Optional.WebBar
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\bvxvbyxvaa =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\windows\Installer\MSIC3C1.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSICDC8.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSICE65.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSID9E2.tmp- =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSIDABE.tmp- =>Empty
---\\ Base de Registres ( Clés, Valeurs, Données ). (32)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3323130&octid=EB_ORIGINAL_CTID&ISID=MA91E2C66-E413-4D34[...]] [Trovi] =>PUP.Optional.Trovigo
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A6F407-3B12-442F-88EA-2186F5597A04} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4AAghBElMUbQ4MAAxcFQcadhQBAg9ADAZFdgFaB[...]] [Default] =>PUP.Optional.Browser
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3323130&octid=EB_ORIGINAL_CTID&ISID=MA91E2C66-E413-4D34-9074-1ADB34F3CF21&SearchSource=58&CUI=&UM=8&UP=SPFA58C962-1A44-4C5B-9C7E-D8062423EAF5&D=022816&q={searchTerms}&SSPV=] =>PUP.Optional.Trovigo
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A6F407-3B12-442F-88EA-2186F5597A04} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4AAghBElMUbQ4MAAxcFQcadhQBAg9ADAZFdgFaBVoQRQYVdh9aFQQTSEcFME0FCFwEURNNfXZNE2oUQEdAKG5RD10eVg==&q={searchTerms}] =>PUP.Optional.Browser
SUPPRIMÉ clé*: HKCU\SOFTWARE\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr OurSearchWindow [C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1\plugincontainer.exe (Not File)] =>Heuristic.OurSearchWindow
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr OurSearchWindow [C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1\updater.exe (Not File)] =>Heuristic.OurSearchWindow
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-930123857-720773727-2745221845-1001\SOFTWARE\Reimage [] =>.Superfluous.ReimageRepair
SUPPRIMÉ clé: HKEY_USERS\S-1-5-21-930123857-720773727-2745221845-1001\SOFTWARE\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé: HKCU\Software\Reimage [] =>.Superfluous.ReimageRepair
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\generousdeal-a.akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\kingtopdeals.com [] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\oursearchwindow-a.akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pricemoon.co [] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.kingtopdeals.com [] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.pricemoon.co [] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\systemhealer.com [] =>PUP.Optional.SystemHealer
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net [] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\generousdeal-a.akamaihd.net [243799] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\kingtopdeals.com [] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\oursearchwindow-a.akamaihd.net [244173] =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pricemoon.co [] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.kingtopdeals.com [126] =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.pricemoon.co [126] =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\systemhealer.com [184] =>PUP.Optional.SystemHealer
SUPPRIMÉ clé: HKCU\Software\SearchProtect [] =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Reimage [] =>.Superfluous.ReimageRepair
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\WebBar [] =>PUP.Optional.WebBar
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ORBTR [] =>.Superfluous.Conduit
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\SPPDCOM [] =>.Superfluous.PCSpeedUp
---\\ Récapitulatif des éléments trouvés sur votre station. (19)
http://www.nicolascoolman.fr/?p=4664 =>Heuristic.OurSearchWindow
http://www.nicolascoolman.fr/?p=546 =>PUP.Optional.Browser
http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask
http://www.nicolascoolman.fr/?p=316 =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
http://www.nicolascoolman.fr/hijacker-browser/ =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=1075 =>.Superfluous.ReimageRepair
http://www.nicolascoolman.fr/pup-optional-systemhealer/ =>PUP.Optional.SystemHealer
http://www.nicolascoolman.fr/pup-optional-webbar/ =>PUP.Optional.WebBar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.AkamaiHD
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.PricePeep
http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.PriceMoon
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Revizer
http://www.nicolascoolman.fr/?p=210 =>.Superfluous.Conduit
http://www.nicolascoolman.fr/?p=1633 =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SecurityCleaner
http://www.nicolascoolman.fr/?p=1042 =>PUP.Optional.Trovigo
http://www.nicolascoolman.fr/?p=1255 =>.Superfluous.PCSpeedUp
---\\ Nettoyage Additionnel. (10)
~ Suppression des Clés de registre Tracing. (10)
~ Suppression des anciens rapports ZHPCleaner. (0)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 491
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 86
~ End of clean in 00h00mn45s
===================
ZHPCleaner-[R]-02032016-17_48_44.txt
ZHPCleaner-[S]-02032016-17_47_39.txt