Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPCleaner v2017.7.17.123 by Nicolas Coolman (2017/07/17)
~ Run by Morgane (Administrator) (31/07/2017 18:05:43)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Illegal
~ Type : Nettoyer
~ Report : C:\Users\Morgane\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Morgane\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Navigateur internet. (0)
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (34)
DEPLACÉ fichier^: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\chrome =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\chrome.manifest =>.Superfluous.CacaoWeb
DEPLACÉ fichier^: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\defaults =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\install.rdf =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\defaults\preferences\prefs.js =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\skin\cacaoweb-64.png =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\skin\cacaoweb.css =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\skin\cacaoweb.png =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\fr-FR\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\es-ES\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\en-US\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\de-DE\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\content\cacaoweb.js =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\content\cacaoweb.xul =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\Desktop\cacaoweb.exe =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\Downloads\cacaoweb.exe =>.Superfluous.CacaoWeb
DEPLACÉ fichier^: C:\Users\Morgane\AppData\Roaming\PDAppFlex =>Trojan.Elpman
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe =>.Superfluous.CacaoWeb
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org =>.Superfluous.CacaoWeb
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Roaming\cacaoweb =>.Superfluous.CacaoWeb
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign06af199254013449 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign33f8a529852bce85 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign385906662562ce65 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign424d784764dc3809 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign45416d2383a1411c =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign4fefd58ef279c16c =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign653208e3c862536d =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign672b0192d1b5d545 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign8b6b9b636660b10e =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign94fab6ab3f97e21d =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsigna28cc3ae8e450440 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsignc481fed028c720b1 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsignc83920599c89b52c =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsignfadab986ee24c55b =>.Superfluous.Temporary
---\\ Base de Registres ( Clés, Valeurs, Données ). (50)
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CACAOWEB ["C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-149995995-2078184482-40734123-1000\SOFTWARE\cacaoweb [C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé: HKCU\Software\cacaoweb [C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\atwola.com [] =>.Superfluous.Atwola
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\cdn.at.atwola.com [15] =>.Superfluous.Atwola
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\chatango.com [] =>PUP.Optional.Chatango
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d10lpsik1i8c69.cloudfront.net [1190] =>.Superfluous.CloudfrontNet
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d16fk4ms6rqz1v.cloudfront.net [2499] =>.Superfluous.CloudfrontNet
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\fr.igraal.com [4296] =>Toolbar.Graal
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\gameofthrones6.fr [] =>.Superfluous.IronSourceLtd
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\gameofthronesvf.com [] =>.Superfluous.IronSourceLtd
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\igraal.com [] =>Toolbar.Graal
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\putlocker.is [121] =>PUP.Optional.PutLocker
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\soundcloud.com [] =>PUP.Optional.SoundCloud
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\st.chatango.com [33] =>PUP.Optional.Chatango
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.audienceinsights.net [43] =>.Superfluous.AudienceInsights
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.olark.com [39331] =>PUP.Optional.Generic
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\uk.at.atwola.com [] =>.Superfluous.Atwola
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.gameofthrones6.fr [43] =>.Superfluous.IronSourceLtd
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{B9E847EE-E3B2-4373-9824-0D56A939C932}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{89615E98-AAA7-45BA-AD12-142F4DDD812B}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{8A66A818-94D1-4B55-80D6-B76D9043E868}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{92997F36-E3B5-40A7-BF0E-67BD0708835D}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
---\\ Récapitulatif des éléments trouvés sur votre station. (13)
https://nicolascoolman.eu/2017/01/15/superfluous-cacaoweb/ =>.Superfluous.CacaoWeb
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Elpman
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Temporary
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate
https://nicolascoolman.eu/2017/02/04/superfluous-atwola/ =>.Superfluous.Atwola
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Chatango
https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/ =>.Superfluous.CloudfrontNet
https://www.nicolascoolman.com/fr/toolbar-igraal/ =>Toolbar.Graal
https://www.anti-malware.top/2016/05/02/superfluous-ironsourceltd/ =>.Superfluous.IronSourceLtd
https://www.nicolascoolman.com/fr/spyware-putlocker/ =>PUP.Optional.PutLocker
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.SoundCloud
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.AudienceInsights
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Generic
---\\ Nettoyage Additionnel. (32)
~ Suppression des Clés de registre Tracing. (32)
~ Suppression des anciens rapports ZHPCleaner. (0)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 960
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 84
~ End of clean in 00h01mn27s
~====================
ZHPCleaner-[R]-31072017-18_07_10.txt
ZHPCleaner-[S]-31072017-18_03_39.txt
~ Run by Morgane (Administrator) (31/07/2017 18:05:43)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Illegal
~ Type : Nettoyer
~ Report : C:\Users\Morgane\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Morgane\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Service. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Navigateur internet. (0)
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (34)
DEPLACÉ fichier^: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\chrome =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\chrome.manifest =>.Superfluous.CacaoWeb
DEPLACÉ fichier^: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\defaults =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org\install.rdf =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\defaults\preferences\prefs.js =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\skin\cacaoweb-64.png =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\skin\cacaoweb.css =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\skin\cacaoweb.png =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\fr-FR\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\es-ES\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\en-US\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\locale\de-DE\cacaoweb.properties =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\content\cacaoweb.js =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\extensions\cacaoweb@cacaoweb.org\chrome\content\cacaoweb.xul =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\Desktop\cacaoweb.exe =>.Superfluous.CacaoWeb
DEPLACÉ fichier: C:\Users\Morgane\Downloads\cacaoweb.exe =>.Superfluous.CacaoWeb
DEPLACÉ fichier^: C:\Users\Morgane\AppData\Roaming\PDAppFlex =>Trojan.Elpman
DEPLACÉ fichier: C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe =>.Superfluous.CacaoWeb
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Roaming\Mozilla\Firefox\Profiles\a5e79dtv.default\Extensions\cacaoweb@cacaoweb.org =>.Superfluous.CacaoWeb
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Roaming\cacaoweb =>.Superfluous.CacaoWeb
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign06af199254013449 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign33f8a529852bce85 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign385906662562ce65 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign424d784764dc3809 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign45416d2383a1411c =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign4fefd58ef279c16c =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign653208e3c862536d =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign672b0192d1b5d545 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign8b6b9b636660b10e =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsign94fab6ab3f97e21d =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsigna28cc3ae8e450440 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsignc481fed028c720b1 =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsignc83920599c89b52c =>.Superfluous.Temporary
DEPLACÉ dossier*: C:\Users\Morgane\AppData\Local\Tempzxpsignfadab986ee24c55b =>.Superfluous.Temporary
---\\ Base de Registres ( Clés, Valeurs, Données ). (50)
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CACAOWEB ["C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-149995995-2078184482-40734123-1000\SOFTWARE\cacaoweb [C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé: HKCU\Software\cacaoweb [C:\Users\Morgane\AppData\Roaming\cacaoweb\cacaoweb.exe (Not File)] =>.Superfluous.CacaoWeb
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\atwola.com [] =>.Superfluous.Atwola
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\cdn.at.atwola.com [15] =>.Superfluous.Atwola
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\chatango.com [] =>PUP.Optional.Chatango
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d10lpsik1i8c69.cloudfront.net [1190] =>.Superfluous.CloudfrontNet
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d16fk4ms6rqz1v.cloudfront.net [2499] =>.Superfluous.CloudfrontNet
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\fr.igraal.com [4296] =>Toolbar.Graal
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\gameofthrones6.fr [] =>.Superfluous.IronSourceLtd
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\gameofthronesvf.com [] =>.Superfluous.IronSourceLtd
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\igraal.com [] =>Toolbar.Graal
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\putlocker.is [121] =>PUP.Optional.PutLocker
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\soundcloud.com [] =>PUP.Optional.SoundCloud
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\st.chatango.com [33] =>PUP.Optional.Chatango
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.audienceinsights.net [43] =>.Superfluous.AudienceInsights
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.olark.com [39331] =>PUP.Optional.Generic
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\uk.at.atwola.com [] =>.Superfluous.Atwola
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.gameofthrones6.fr [43] =>.Superfluous.IronSourceLtd
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{B9E847EE-E3B2-4373-9824-0D56A939C932}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{89615E98-AAA7-45BA-AD12-142F4DDD812B}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{8A66A818-94D1-4B55-80D6-B76D9043E868}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{92997F36-E3B5-40A7-BF0E-67BD0708835D}C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe [C:\users\morgane\appdata\roaming\cacaoweb\cacaoweb.exe] =>.Superfluous.CacaoWeb
---\\ Récapitulatif des éléments trouvés sur votre station. (13)
https://nicolascoolman.eu/2017/01/15/superfluous-cacaoweb/ =>.Superfluous.CacaoWeb
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Elpman
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Temporary
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate
https://nicolascoolman.eu/2017/02/04/superfluous-atwola/ =>.Superfluous.Atwola
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Chatango
https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/ =>.Superfluous.CloudfrontNet
https://www.nicolascoolman.com/fr/toolbar-igraal/ =>Toolbar.Graal
https://www.anti-malware.top/2016/05/02/superfluous-ironsourceltd/ =>.Superfluous.IronSourceLtd
https://www.nicolascoolman.com/fr/spyware-putlocker/ =>PUP.Optional.PutLocker
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.SoundCloud
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.AudienceInsights
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Generic
---\\ Nettoyage Additionnel. (32)
~ Suppression des Clés de registre Tracing. (32)
~ Suppression des anciens rapports ZHPCleaner. (0)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 960
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 84
~ End of clean in 00h01mn27s
~====================
ZHPCleaner-[R]-31072017-18_07_10.txt
ZHPCleaner-[S]-31072017-18_03_39.txt