~ ZHPCleaner v2016.3.2.36 by Nicolas Coolman (2016/03/02)
~ Run by kedwy (Administrator)  (02/03/2016 17:47:59)
~ Site : http://www.nicolascoolman.com
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\kedwy\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\kedwy\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 10586)


---\\  Service. (2)
ARRETÉ : Service Mgr OurSearchWindow  =>Heuristic.OurSearchWindow
ARRETÉ : Update Mgr OurSearchWindow  =>Heuristic.OurSearchWindow


---\\  Navigateur internet. (5)
REMPLACÉ Chrome Preferences: "http://searchinterneat-a.akamaihd.net/"  =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://generousdeal-a.akamaihd.net/"  =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://hdsrc-a.akamaihd.net/"  =>PUP.Optional.Browser
REMPLACÉ Chrome Preferences: "https://msg.altruistictask.com/"  =>Toolbar.Ask
REMPLACÉ Chrome Preferences: "https://oursearchwindow-a.akamaihd.net/"  =>PUP.Optional.Browser


---\\  Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\  Tâche planifiée. (1)
SUPPRIMÉ tâche: [LaunchPreSignup] [C:\Program Files (x86)\OLBPre\OLBPre.exe (Not File) ]  =>PUP.Optional.MyPCBackup


---\\  Explorateur  ( Dossiers, Fichiers ). (46)
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_alkaeoelgidncchljehbmkohmhhbhfkd_0.localstorage-journal    =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_alkaeoelgidncchljehbmkohmhhbhfkd_0.localstorage    =>Hijacker.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbkdonameecmkdafflcomgkeedkhimpd_0.localstorage-journal    =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbkdonameecmkdafflcomgkeedkhimpd_0.localstorage    =>Hijacker.Browser
DEPLACÉ fichier: C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1\plugincontainer.exe    =>Heuristic.OurSearchWindow
DEPLACÉ fichier: C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1\updater.exe    =>Heuristic.OurSearchWindow
DEPLACÉ fichier: C:\Windows\Prefetch\OLBPRE.EXE-C6385661.pf    =>PUP.Optional.MyPCBackup
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGE.EXE-4681D307.pf    =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEPACKAGE.EXE-4B16EB5B.pf    =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\REIMAGEREPAIR.EXE-9E9BBF39.pf    =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Prefetch\SYSTEMHEALER.EXE-B61716E5.pf    =>PUP.Optional.SystemHealer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\ReimagePackage.exe [Reimage® - Reimage Package]  =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\a25bgpazY4\1bW24aYDqv\Web_Bar_Setup_2.0.5897.26069_default.exe [Web Bar Media - Web Bar Setup]  =>PUP.Optional.WebBar
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_generousdeal-a.akamaihd.net_0.localstorage    =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_generousdeal-a.akamaihd.net_0.localstorage-journal    =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_oursearchwindow-a.akamaihd.net_0.localstorage    =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_oursearchwindow-a.akamaihd.net_0.localstorage-journal    =>PUP.Optional.AkamaiHD
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage    =>PUP.Optional.PricePeep
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal    =>PUP.Optional.PricePeep
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage    =>PUP.Optional.Multiplug
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal    =>PUP.Optional.Multiplug
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage    =>PUP.Optional.PriceMoon
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage-journal    =>PUP.Optional.PriceMoon
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage    =>PUP.Optional.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage-journal    =>PUP.Optional.Browser
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.reklaam00.reklaam.co_0.localstorage    =>PUP.Optional.Revizer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.reklaam00.reklaam.co_0.localstorage-journal    =>PUP.Optional.Revizer
DEPLACÉ fichier: C:\Users\kedwy\AppData\Local\Temp\reimage.log    =>.Superfluous.ReimageRepair
DEPLACÉ fichier: C:\Windows\Reimage.ini    =>.Superfluous.ReimageRepair
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Extensions\alkaeoelgidncchljehbmkohmhhbhfkd  =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\alkaeoelgidncchljehbmkohmhhbhfkd  =>Hijacker.Browser
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbkdonameecmkdafflcomgkeedkhimpd  =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kbkdonameecmkdafflcomgkeedkhimpd  =>Hijacker.Browser
DEPLACÉ dossier^: C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1  =>Heuristic.OurSearchWindow
DEPLACÉ dossier: C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1  =>Heuristic.OurSearchWindow
DEPLACÉ dossier: C:\Program Files (x86)\ORBTR  =>.Superfluous.Conduit
DEPLACÉ dossier: C:\Program Files (x86)\SearchProtect  =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\Program Files (x86)\Security Cleaner llc  =>PUP.Optional.SecurityCleaner
DEPLACÉ dossier^: C:\windows\System32\config\systemprofile\AppData\Local\WebBar  =>PUP.Optional.WebBar
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\bvxvbyxvaa  =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\Users\kedwy\AppData\Local\SearchProtect  =>PUP.Optional.SearchProtect
DEPLACÉ dossier: C:\windows\Installer\MSIC3C1.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSICDC8.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSICE65.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSID9E2.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSIDABE.tmp-  =>Empty


---\\  Base de Registres ( Clés, Valeurs, Données ). (32)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3323130&octid=EB_ORIGINAL_CTID&ISID=MA91E2C66-E413-4D34[...]] [Trovi]  =>PUP.Optional.Trovigo
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A6F407-3B12-442F-88EA-2186F5597A04} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4AAghBElMUbQ4MAAxcFQcadhQBAg9ADAZFdgFaB[...]] [Default]  =>PUP.Optional.Browser
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3323130&octid=EB_ORIGINAL_CTID&ISID=MA91E2C66-E413-4D34-9074-1ADB34F3CF21&SearchSource=58&CUI=&UM=8&UP=SPFA58C962-1A44-4C5B-9C7E-D8062423EAF5&D=022816&q={searchTerms}&SSPV=]  =>PUP.Optional.Trovigo
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{85A6F407-3B12-442F-88EA-2186F5597A04} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4AAghBElMUbQ4MAAxcFQcadhQBAg9ADAZFdgFaBVoQRQYVdh9aFQQTSEcFME0FCFwEURNNfXZNE2oUQEdAKG5RD10eVg==&q={searchTerms}]  =>PUP.Optional.Browser
SUPPRIMÉ clé*: HKCU\SOFTWARE\SearchProtect []  =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\SearchProtect []  =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr OurSearchWindow [C:\ProgramData\3c022f79-33eb-49e6-81b8-ddaa369645b1\plugincontainer.exe (Not File)]  =>Heuristic.OurSearchWindow
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr OurSearchWindow [C:\Program Files (x86)\Common Files\3c022f79-33eb-49e6-81b8-ddaa369645b1\updater.exe (Not File)]  =>Heuristic.OurSearchWindow
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-930123857-720773727-2745221845-1001\SOFTWARE\Reimage []  =>.Superfluous.ReimageRepair
SUPPRIMÉ clé: HKEY_USERS\S-1-5-21-930123857-720773727-2745221845-1001\SOFTWARE\SearchProtect []  =>PUP.Optional.SearchProtect
SUPPRIMÉ clé: HKCU\Software\Reimage []  =>.Superfluous.ReimageRepair
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net []  =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\generousdeal-a.akamaihd.net []  =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\kingtopdeals.com []  =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\oursearchwindow-a.akamaihd.net []  =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pricemoon.co []  =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.kingtopdeals.com []  =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.pricemoon.co []  =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\systemhealer.com []  =>PUP.Optional.SystemHealer
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net []  =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\generousdeal-a.akamaihd.net [243799]  =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\kingtopdeals.com []  =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\oursearchwindow-a.akamaihd.net [244173]  =>PUP.Optional.AkamaiHD
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pricemoon.co []  =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.kingtopdeals.com [126]  =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.pricemoon.co [126]  =>PUP.Optional.PriceMoon
SUPPRIMÉ clé*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\systemhealer.com [184]  =>PUP.Optional.SystemHealer
SUPPRIMÉ clé: HKCU\Software\SearchProtect []  =>PUP.Optional.SearchProtect
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Reimage []  =>.Superfluous.ReimageRepair
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\WebBar []  =>PUP.Optional.WebBar
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ORBTR []  =>.Superfluous.Conduit
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\SPPDCOM []  =>.Superfluous.PCSpeedUp


---\\  Récapitulatif des éléments trouvés sur votre station. (19)
http://www.nicolascoolman.fr/?p=4664  =>Heuristic.OurSearchWindow
http://www.nicolascoolman.fr/?p=546  =>PUP.Optional.Browser
http://www.nicolascoolman.fr/?p=235  =>Toolbar.Ask
http://www.nicolascoolman.fr/?p=316  =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/?p=4664  =>Hijacker.Browser [{"background":{"scripts":["background.js"]},"conte]
http://www.nicolascoolman.fr/hijacker-browser/  =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=1075  =>.Superfluous.ReimageRepair
http://www.nicolascoolman.fr/pup-optional-systemhealer/  =>PUP.Optional.SystemHealer
http://www.nicolascoolman.fr/pup-optional-webbar/  =>PUP.Optional.WebBar
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.AkamaiHD
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.PricePeep
http://www.nicolascoolman.fr/?p=1402  =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.PriceMoon
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.Revizer
http://www.nicolascoolman.fr/?p=210  =>.Superfluous.Conduit
http://www.nicolascoolman.fr/?p=1633  =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.SecurityCleaner
http://www.nicolascoolman.fr/?p=1042  =>PUP.Optional.Trovigo
http://www.nicolascoolman.fr/?p=1255  =>.Superfluous.PCSpeedUp


---\\  Nettoyage Additionnel. (10)
~ Suppression des Clés de registre Tracing. (10)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent  (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 491
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 86


~ End of clean in 00h00mn45s
===================
ZHPCleaner-[R]-02032016-17_48_44.txt
ZHPCleaner-[S]-02032016-17_47_39.txt