~ ZHPCleaner v2016.5.3.61 by Nicolas Coolman (2016/05/03)
~ Run by Louis (Administrator)  (05/05/2016 15:49:59)
~ Site : http://www.nicolascoolman.com
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Louis\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Louis\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)


---\\  Service. (1)
WINSOCK [Protocol_Catalog9\Catalog_Entries]: Remise à zéro du socket qui gère la couche TCP/IP (Hijacker.Winsock)


---\\  Navigateur internet. (1)
SUPPRIMÉ: [ffktpkwa.default-1420724438078] - user_pref("extensions.DigitalMore.cg", "a7f724e7-e3bc-4c8c-89f5-49f197afcf8d");  =>PUP.Optional.DigitalMore


---\\  Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\  Tâche planifiée. (1)
SUPPRIMÉ tâche: [SimpleFiles Installer Starter] [C:\Users\Louis\AppData\Local\Temp\SimpleFiles1cP8b7vKmt.exe (Not File) ]  =>PUP.Optional.SimpleFiles


---\\  Explorateur  ( Dossiers, Fichiers ). (14)
DEPLACÉ dossier: C:\windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService  =>PUP.Optional.LavasoftWebCompanion
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\Microsoft Toolkit  =>HackTool.AutoKMS
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\{430AF562-19AD-43BB-9193-E0E64A7E1F9F}  =>Empty
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\{6C5A5909-2729-4E69-BFAB-286CEF91F082}  =>Empty
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\{74B17ECF-7DEF-4D06-8D7B-BF372BE5899A}  =>Empty
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\{A45117B3-03C5-414B-8F10-544C67712DF7}  =>Empty
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\{CD864604-97B0-4A36-AABB-85DEE74854FB}  =>Empty
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\{DF2DD7F0-33B4-4FD2-AF13-47111138E4E9}  =>Empty
DEPLACÉ dossier: C:\Users\Louis\AppData\Local\{F6C3B843-0619-45B8-BE72-9717057A97AE}  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSI48FD.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSI4FE4.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSI71BA.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSI79DF.tmp-  =>Empty
DEPLACÉ dossier: C:\windows\Installer\MSICF1B.tmp-  =>Empty


---\\  Base de Registres ( Clés, Valeurs, Données ). (31)
REMPLACÉ : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 [C:\windows\system32\LavasoftTcpService.dll (Not File)] (Hijacker.Winsock)
REMPLACÉ : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 [C:\windows\system32\LavasoftTcpService.dll (Not File)] (Hijacker.Winsock)
REMPLACÉ : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 [C:\windows\system32\LavasoftTcpService.dll (Not File)] (Hijacker.Winsock)
REMPLACÉ : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 [C:\windows\system32\LavasoftTcpService.dll (Not File)] (Hijacker.Winsock)
REMPLACÉ : HKLM64\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016 [C:\windows\system32\LavasoftTcpService.dll (Not File)] (Hijacker.Winsock)
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Browser Extensions ["C:\Users\Louis\AppData\Roaming\BrowserExtensions\BEHelper.exe" (Not File)]  =>PUP.Optional.BrowserExtensions
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-747087753-916202334-1647123776-1001\SOFTWARE\Smartbar []  =>PUP.Optional.QuickShare
SUPPRIMÉ clé: HKCU\Software\Smartbar []  =>PUP.Optional.QuickShare
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{80e71540-acdd-405a-ae41-aa11a461d73b} [Linkury Inc.]  =>PUP.Optional.Linkury
SUPPRIMÉ clé*: HKCU\Software\TeleCharger []  =>.Superfluous.Downloader
SUPPRIMÉ clé*: HKCU\Software\ProductSetup []  =>Adware.InstallCore
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552} [OCComSDK 1.0 Type Library]  =>PUP.Optional.OpenCandy
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Record\{181480C8-90AC-3430-B39A-CD121E034A1A} [IESmartBar.MSG]  =>PUP.Optional.SmartBar
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\Record\{8F54FA54-1DF8-3B20-890C-CDD95364BC95} [IESmartBar.DBIM]  =>PUP.Optional.SmartBar
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1672163f-8651-4c0d-9c05-4ba941123972} [C:\Users\Louis\AppData\Roaming\BrowserExtensions (Not File)]  =>PUP.Optional.BrowserExtensions
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61db39d5-034c-45c0-8bb2-daf857edcf3b} [C:\Users\Louis\AppData\Roaming\BrowserExtensions (Not File)]  =>PUP.Optional.BrowserExtensions
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-747087753-916202334-1647123776-1001\Products\363FB0CBBA367FF4E81FEAD0F717B142 [LPT System Updater Service]  =>.Superfluous.MyPopShop
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-747087753-916202334-1647123776-1001\Products\D5E237E4775EA154B91BBC6EA4C2CBF2 [Yahoo Community Smartbar]  =>PUP.Optional.QuickShare
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5 []  =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D []  =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20 []  =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B []  =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5 []  =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC []  =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739 []  =>PUP.Optional.IMBooster
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552} [OCComSDK 1.0 Type Library]  =>PUP.Optional.OpenCandy
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} [Google Inc.]  =>Heuristic.Suspect
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1672163f-8651-4c0d-9c05-4ba941123972} [C:\Users\Louis\AppData\Roaming\BrowserExtensions (Not File)]  =>PUP.Optional.BrowserExtensions
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61db39d5-034c-45c0-8bb2-daf857edcf3b} [C:\Users\Louis\AppData\Roaming\BrowserExtensions (Not File)]  =>PUP.Optional.BrowserExtensions
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{90E4CD0C-426F-4207-805B-7885AB32D43F} [C:\Users\Louis\AppData\Roaming\BrowserExtensions (Not File)]  =>PUP.Optional.BrowserExtensions
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CAE9BEC8-4723-4347-AFC6-25EE3326BA5B} [C:\Users\Louis\AppData\Roaming\BrowserExtensions (Not File)]  =>PUP.Optional.BrowserExtensions


---\\  Récapitulatif des éléments trouvés sur votre station. (14)
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.DigitalMore
http://www.nicolascoolman.fr/pup-optional-simplefiles/  =>PUP.Optional.SimpleFiles
http://www.nicolascoolman.fr/http://www.nicolascoolman.info/2016/04/26/superfluous-lavasoftwebcompanion/  =>PUP.Optional.LavasoftWebCompanion
http://www.nicolascoolman.fr/?p=1804  =>HackTool.AutoKMS
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/?p=433  =>PUP.Optional.QuickShare
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.Linkury
http://www.nicolascoolman.fr/?p=5145  =>.Superfluous.Downloader
http://www.nicolascoolman.fr/http://www.nicolascoolman.info/2016/04/22/adware-installcore/  =>Adware.InstallCore
http://www.nicolascoolman.fr/?p=197  =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/?p=308  =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/http://www.nicolascoolman.com/forum/post33280.html#p33280  =>.Superfluous.MyPopShop
http://www.nicolascoolman.fr/?p=224  =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/http://www.nicolascoolman.info/2016/04/22/heuristic-suspect/  =>Heuristic.Suspect


---\\  Nettoyage Additionnel. (6)
~ Suppression des Clés de registre Tracing. (6)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent  (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 2583
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 48


~ End of clean in 00h00mn44s
~====================
ZHPCleaner-[R]-05052016-15_50_43.txt
ZHPCleaner-[S]-05052016-15_49_14.txt