~ ZHPCleaner v2015.10.28.370 by Nicolas Coolman (2015/10/28) ~ Run by Alain (Administrator) (30/10/2015 22:05:37) ~ Site : http://www.nicolascoolman.fr ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Nettoyer ~ Report : C:\Users\Alain\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\Alain\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 8.1, 64-bit (Build 9600) ---\\ Service. (0) ~ Aucun élément malicieux ou superflu trouvé. ---\\ Navigateur internet. (4) SUPPRIMÉ: [chpwsw1w.default] - user_pref("extensions.a6c03cee0ab9442c4a67a50758d658df5a30468fabf5c7acom69063.69063.internaldb.monet[...] =>PUP.Optional.Monetization SUPPRIMÉ: [chpwsw1w.default] - user_pref("extensions.a6c03cee0ab9442c4a67a50758d658df5a30468fabf5c7acom69063.69063.name", "HQ-Video[...] =>PUP.Optional.CrossRider SUPPRIMÉ: [chpwsw1w.default] - user_pref("extensions.a6c03cee0ab9442c4a67a50758d658df5a30468fabf5c7acom69063.69063.publisher", "HQ-[...] =>PUP.Optional.CrossRider SUPPRIMÉ donnée: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride [Bad : <-loopback>] =>Hijacker.Proxy ---\\ Fichier hôte. (2) REMPLACÉ: 0.0.0.1 mssplus.mcafee.com ~ Nombre de redirections trouvées 1/25 ---\\ Tâche planifiée. (1) SUPPRIMÉ tâche: [MAPSBG] [C:\Users\Alain\AppData\Roaming\MAPSBG.exe (Not File) ] =>Heuristic.Pirrit ---\\ Explorateur ( Dossiers, Fichiers ). (18) DEPLACÉ fichier: C:\Users\Public\Desktop\Tencent QQ.lnk [Bad : C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe] =>PUP.Optional.TencentAddressBar DEPLACÉ fichier: C:\Program Files (x86)\QQMailPlugin\npQQMailWebKit.dll [Tencent - QQMail plugin for WebKit #1.0.0.22] =>PUP.Optional.TencentAddressBar DEPLACÉ fichier: C:\Program Files (x86)\QQMailPlugin\nptxftnWebKit.dll [Tencent Technology (Shenzhen) Company Limited - Tencent FTN plug-in] =>PUP.Optional.TencentAddressBar DEPLACÉ fichier: C:\Users\Alain\AppData\Roaming\Mozilla\Firefox\Profiles\chpwsw1w.default\storage\default\http+++istart.webssearches.com\.metadata =>PUP.Optional.WebsSearches DEPLACÉ fichier: C:\Users\Alain\AppData\Roaming\Mozilla\Firefox\Profiles\chpwsw1w.default\storage\default\http+++istart.webssearches.com\idb\1320802654iedibk_oeovcer.sqlite =>PUP.Optional.WebsSearches DEPLACÉ fichier: C:\Windows\Tasks\MAPSBG.job =>Heuristic.Pirrit DEPLACÉ fichier: C:\WINDOWS\System32\Tasks\MAPSBG =>Heuristic.Pirrit DEPLACÉ fichier: C:\Users\Alain\Downloads\photopadsetupSoftonicFR.exe =>PUP.Optional.Softonic DEPLACÉ fichier: C:\Users\Alain\Downloads\QQintl2.11.exe [Tencent - QQ International] =>PUP.Optional.TencentAddressBar DEPLACÉ fichier: C:\Users\Alain\AppData\Local\Microsoft\Windows\INetCache\IE\Y3METWEF\Hotspot_Shield[1].exe [ClientConnect Ltd. - Hotspot_Shield Toolbar] =>PUP.Optional.ClientConnect DEPLACÉ fichier: C:\Users\Alain\AppData\Local\Microsoft\Windows\INetCache\IE\Y3METWEF\OrbiterInstaller[1].exe [Client Connect LTD - Orbiter] =>PUP.Optional.SearchProtect DEPLACÉ fichier: C:\Users\Alain\AppData\Local\Microsoft\Windows\INetCache\IE\92X4N2XP\Stub[1].exe [ClientConnect - Search Protect] =>PUP.Optional.SearchProtect DEPLACÉ fichier: C:\Users\Alain\AppData\Local\Microsoft\Windows\INetCache\IE\3U3EV21I\QQintl2.11[1].exe [Tencent - QQ International] =>PUP.Optional.TencentAddressBar DEPLACÉ fichier: C:\Users\Alain\AppData\Local\Microsoft\Windows\INetCache\IE\3U3EV21I\Setup[1].exe [Client Connect LTD - Search Protect] =>PUP.Optional.SearchProtect DEPLACÉ dossier: C:\ProgramData\ProductData =>PUP.Optional.Generic DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software =>PUP.Optional.TencentAddressBar DEPLACÉ dossier: C:\Users\Alain\Documents\Tencent Files =>PUP.Optional.TencentAddressBar DEPLACÉ dossier: C:\WINDOWS\Installer\MSI4261.tmp- =>Empty ---\\ Base de Registres ( Clés, Valeurs, Données ). (24) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@qq.com/npchrome [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@qq.com/npqscall [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@tencent.com/npQQMailWebKit,version=1.0.0.1 [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@tencent.com/nptxftnWebKit,version=1.0.0.1 [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: HKCU\Software\MAPSBG [] =>Heuristic.Pirrit SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2000584756-3521489315-1775466080-1001\Software\Tencent [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2000584756-3521489315-1775466080-1001\Software\Classes\Tencent [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé: HKCU\Software\Tencent [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: HKCU\Software\AppDataLow\Software\Smartbar [] =>PUP.Optional.QuickShare SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\istart.webssearches.com [11363] =>PUP.Optional.IsStart SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\webssearches.com [] =>PUP.Optional.WebsSearches SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Tencent [TencentProtocol] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Tencent [] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\QQMailPlugin [Tencent QQMail Plugin] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3CA54984-A14B-42FE-9FF1-7EA90151D725} [Tencent Technology(Shenzhen) Company Limited] =>PUP.Optional.TencentAddressBar SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1FA39976-7194-44E8-8DD9-A9781D289934} [C:\Program Files (x86)\Tencent\QQIntl\Plugin\Com.Tencent.QQPet\bin\QQPet (Not File)] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{F75B71FD-9E21-4205-8A7F-36C0928991FE} [C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{F27506F3-BA92-4F0D-8F36-60BD4FE612DA} [C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{69DC7460-7BED-4650-9991-0ED08E090CDE} [C:\Program Files (x86)\Common Files\Tencent\QQDownload\119\Tencentdl.exe] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{F2813345-4BA7-488D-A9AF-DE16B62CE880} [C:\Program Files (x86)\Common Files\Tencent\QQDownload\119\Tencentdl.exe] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{895A484D-BE3A-4C7E-9FCB-BC7C201C16B8} [C:\Program Files (x86)\Common Files\Tencent\QQDownload\119\Tencentdl.exe] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{C4C1EFF5-BBD8-49CC-A623-3BD37BA39C37} [C:\Program Files (x86)\Common Files\Tencent\QQDownload\119\Tencentdl.exe] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{ABD5AB27-551D-449A-8695-55E326553A76}C:\program files (x86)\tencent\qqintl\bin\qq.exe [C:\program files (x86)\tencent\qqintl\bin\qq.exe] =>PUP.Optional.TencentAddressBar SUPPRIMÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{72EA9C1B-0D23-482F-AEF5-9AA33038CD77}C:\program files (x86)\tencent\qqintl\bin\qq.exe [C:\program files (x86)\tencent\qqintl\bin\qq.exe] =>PUP.Optional.TencentAddressBar ---\\ Bilan de la réparation ~ Réparation réalisée avec succès. ~ Ce navigateur est absent (Opera Software) ---\\ Statistiques ~ Items scannés : 1453 ~ Items trouvés : 1 ~ Items annulés : 0 ~ Items réparés : 55 ~ End of clean in 0 minutes =================== ZHPCleaner-[R]-30102015-22_06_29.txt ZHPCleaner-[S]-30102015-22_03_20.txt