cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2016.12.24.222 by Nicolas Coolman (2016/12/24)
~ Run by pro (Administrator) (11/05/2017 10:09:39)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\pro\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\pro\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 14393)


---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Navigateur internet. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (42)
DEPLACÉ fichier: C:\Windows\Installer\wix{1B444AF9-1DBE-4884-8F35-969BEFCF69A8}.SchedServiceConfig.rmi =>.Superfluous.Empty
DEPLACÉ fichier: C:\Windows\Reimage.ini =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Users\pro\AppData\Roaming\cacaoweb\cacaoweb.exe =>.Superfluous.CacaoWeb
DEPLACÉ dossier: C:\Program Files (x86)\Security Cleaner llc =>PUP.Optional.SecurityCleaner
DEPLACÉ dossier: C:\ProgramData\24f7e318-2195-1 =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\24f7e318-4743-0 =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\7775cdac-36a3-1 =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\7775cdac-49f7-0 =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\7775cdac-6715-0 =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\{471e0fc5-312c-1} =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\{5bdf3a39-212c-1} =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\{5be02f3a-712c-0} =>.Superfluous.Polluteware
DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Cleaner llc =>PUP.Optional.SecurityCleaner
DEPLACÉ dossier: C:\Users\pro\AppData\Roaming\cacaoweb =>.Superfluous.CacaoWeb
DEPLACÉ dossier: C:\Users\pro\AppData\Roaming\SafetyBrowsing =>.Superfluous.BalmainManagement
DEPLACÉ dossier: C:\Users\pro\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence =>.Superfluous.ByteFence
DEPLACÉ dossier: C:\Users\pro\AppData\Local\Temp\lptmp323911817 =>.Superfluous.Empty.Lastpass
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI17BE.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1A73.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1C78.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1DF0.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI1F87.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI20FF.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI2EBA.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI39B7.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI3D13.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI3F76.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI443A.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI4FE6.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI6AAE.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI6AF4.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI718C.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI8E84.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSI91CF.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSIAC41.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSIAEA3.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSIB6D6.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSIB792.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSID87C.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSIDB1E.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSIEC6B.tmp- =>.Superfluous.Empty
DEPLACÉ dossier: C:\WINDOWS\Installer\MSIF789.tmp- =>.Superfluous.Empty


---\\ Base de Registres ( Clés, Valeurs, Données ). (37)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_mlvi_16_01&cd=2XzuyEtN2Y1L1QzutA0A0BtC0[...]] [Google] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_coinisre_15_38&cd=2XzuyEtN2Y1L1QzutA0A0[...]] [Palikan] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_coinisre_15_38&cd=2XzuyEtN2Y1L1QzutA0A0[...]] [Palikan] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_mlvi_16_01&cd=2XzuyEtN2Y1L1QzutA0A0BtC0[...]] [Google] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} [https://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mdaffmarmarie_1[...]] [Yahoo! Powered] =>.Superfluous.YahooPowered
SUPPRIMÉ donnée: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4305725e-f403-4f58-947a-4703c11a4d1b}\\DhcpNameServer [Bad : 82.163.143.176] =>PUP.Optional.DNSUnlocker
SUPPRIMÉ donnée: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4d0f7fd9-d0af-42cf-9080-5b1196abd89f}\\DhcpNameServer [Bad : 82.163.143.176] =>PUP.Optional.DNSUnlocker
SUPPRIMÉ donnée: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\NameServer [Bad : 82.163.143.176 82.163.142.178] =>PUP.Optional.DNSUnlocker
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30EE14EC-1867-4389-8543-FB83602EAB61} [Treasure Track] =>PUP.Optional.TreasureTrack
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_mlvi_16_01&cd=2XzuyEtN2Y1L1QzutA0A0BtC0D0B0FtD0EzyyDyDzzyE0DzztN0D0Tzu0StCyEyCyEtN1L2XzutAtFtCyCtFtAtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StBtC0DtCtB0EyBzztGtByE0DtDtG0FtDtByDtGtDtAtC0DtGyDyCyEyEtDyCtAtBtDtCyDyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0CyE0AzzzytAyCtGyByC0E0AtGyE0BtB0AtG0B0ByD0FtGyD0CtD0DyEyByE0AtDtC0D0B2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtAyEtA&cr=1748430620&ir=] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_coinisre_15_38&cd=2XzuyEtN2Y1L1QzutA0A0BtC0D0B0FtD0EzyyDyDzzyE0DzztN0D0Tzu0StCtAyDtAtN1L2XzutAtFtCtBtFyDtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2S0DyC0CtBtBtBtC0AtGyDtCzz0CtGyEtAyEyCtGzzyEyByBtG0B0B0A0FtAyCtA0C0Bzy0E0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0CyE0AzzzytAyCtGyByC0E0AtGyE0BtB0AtG0B0ByD0FtGyD0CtD0DyEyByE0AtDtC0D0B2QtN0A0LzuyE&cr=1775318050&ir=&rlz=1I7GGHP_frFR655] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_coinisre_15_38&cd=2XzuyEtN2Y1L1QzutA0A0BtC0D0B0FtD0EzyyDyDzzyE0DzztN0D0Tzu0StCtAyDtAtN1L2XzutAtFtCtBtFyDtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2S0DyC0CtBtBtBtC0AtGyDtCzz0CtGyEtAyEyCtGzzyEyByBtG0B0B0A0FtAyCtA0C0Bzy0E0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0CyE0AzzzytAyCtGyByC0E0AtGyE0BtB0AtG0B0ByD0FtGyD0CtD0DyEyByE0AtDtC0D0B2QtN0A0LzuyE&cr=1775318050&ir=] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45} [http://www.palikan.com/results.php?f=4&q={searchTerms}&a=plk_mlvi_16_01&cd=2XzuyEtN2Y1L1QzutA0A0BtC0D0B0FtD0EzyyDyDzzyE0DzztN0D0Tzu0StCyEyCyEtN1L2XzutAtFtCyCtFtAtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StBtC0DtCtB0EyBzztGtByE0DtDtG0FtDtByDtGtDtAtC0DtGyDyCyEyEtDyCtAtBtDtCyDyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0CyE0AzzzytAyCtGyByC0E0AtGyE0BtB0AtG0B0ByD0FtGyD0CtD0DyEyByE0AtDtC0D0B2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtAyEtA&cr=1748430620&ir=] =>PUP.Optional.GoPalikan
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} [https://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_mdaffmarmarie_16_27_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutA0A0BtC0D0B0FtD0EzyyDyDzzyE0DzztN0D0Tzu0StCyCyEyBtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyC0CyD0C0DyD0E0AtGyDyCtAyEtGyBtA0AyEtGtA0EyB0AtGyBtDyE0FyDzz0CzytB0Fzz0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0CyE0AzzzytAyCtGyByC0E0AtGyE0BtB0AtG0B0ByD0FtGyD0CtD0DyEyByE0AtDtC0D0B2QtN0A0LzuyE%26cr%3D2136417991%26a%3Dwbf_mdaffmarmarie_16_27_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}] =>.Superfluous.YahooPowered
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-1817580383-1317029755-1127610557-1001\SOFTWARE\cacaoweb [C:\Users\pro\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-1817580383-1317029755-1127610557-1001\SOFTWARE\Safety Browsing [] =>.Superfluous.BalmainManagement
SUPPRIMÉ clé*: HKEY_USERS\.DEFAULT\Software\ByteFence [] =>.Superfluous.ByteFence
SUPPRIMÉ clé: HKCU\Software\cacaoweb [C:\Users\pro\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé: HKCU\Software\Safety Browsing [] =>.Superfluous.BalmainManagement
SUPPRIMÉ clé*: HKCU\Software\csastats [] =>Adware.InstallCore
SUPPRIMÉ clé*: HKCU\Software\undefined [] =>.Superfluous.Downloader
SUPPRIMÉ clé*: HKCU\Software\ProductSetup [] =>Adware.InstallCore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\TypeLib\{07F45468-1F84-45B5-91EB-9A7C63A3D164} [TreasureTrackIEClientLib] =>Adware.BrowseFox
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\protector_dll.Protector [Protector Class] =>PUP.Optional.BProtector
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1 [Protector Class] =>PUP.Optional.BProtector
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib [ProtectorLib Class] =>PUP.Optional.BProtector
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1 [ProtectorLib Class] =>PUP.Optional.BProtector
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\SafetyBrowsingService [] =>.Superfluous.BalmainManagement
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Safety Browsing [] =>.Superfluous.BalmainManagement
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 [] =>.Superfluous.ByteFence
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS [] =>.Superfluous.ByteFence
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Safety Browsing [Balmain Management Ltd] =>.Superfluous.BalmainManagement
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Security Cleaner llc System Optimizer [Security Cleaner llc] =>PUP.Optional.SystemOptimizer
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\TypeLib\{07F45468-1F84-45B5-91EB-9A7C63A3D164} [TreasureTrackIEClientLib] =>Adware.BrowseFox
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\cacaoweb [0x03000000AD3C73CD20B8D101] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{71A58D47-40EE-4754-A87F-81F47A441627}C:\users\pro\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\pro\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{184E4F1A-AAE3-49EA-87C7-A5A5EE49356D}C:\users\pro\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\pro\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb


---\\ Récapitulatif des éléments trouvés sur votre station. (17)
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Empty
https://www.anti-malware.top/2016/08/06/superfluous-reimagerepair/ =>.Superfluous.ReimageRepair
https://www.anti-malware.top/2016/04/30/superfluous-cacaoweb/ =>.Superfluous.CacaoWeb
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.SecurityCleaner
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Polluteware
https://www.anti-malware.top/2016/04/22/superfluous-balmainmanagement/ =>.Superfluous.BalmainManagement
https://www.anti-malware.top/2016/04/29/superfluous-bytefence/ =>.Superfluous.ByteFence
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Empty.Lastpass
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.GoPalikan
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.YahooPowered
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.DNSUnlocker
https://www.nicolascoolman.com/fr/pup-optional-treasuretrack/ =>PUP.Optional.TreasureTrack
https://www.anti-malware.top/2016/04/22/adware-installcore/ =>Adware.InstallCore
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Downloader
https://www.nicolascoolman.com/fr/adware-browsefox/ =>Adware.BrowseFox
https://www.anti-malware.top/2016/04/30/pup-optional-bprotector/ =>PUP.Optional.BProtector
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.SystemOptimizer


---\\ Nettoyage Additionnel. (36)
~ Suppression des Clés de registre Tracing. (36)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scannés : 624
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 79


~ End of clean in 00h00mn50s
~====================
ZHPCleaner-[R]-11052017-10_10_29.txt
ZHPCleaner-[S]-11052017-10_08_45.txt

Publicité


Signaler le contenu de ce document

Publicité