~ ZHPCleaner v2016.11.8.191 by Nicolas Coolman (2016/11/08)
~ Run by Jerome (Administrator)  (09/11/2016 17:42:19)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\Jerome\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Jerome\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1, 64-bit  (Build 9600)


---\\  Service. (2)
ARRETÃ : ManyCam Service  =>.Superfluous.VisicomMedia
ARRETÃ : Service KMSELDI  =>HackTool.KMSpico


---\\  Navigateur internet. (0)
~ Aucun Ã©lÃ©ment malicieux ou superflu trouvÃ©.


---\\  Fichier hÃ´te. (0)
~ Aucun Ã©lÃ©ment malicieux ou superflu trouvÃ©.


---\\  TÃ¢che planifiÃ©e. (1)
SUPPRIMÃ tÃ¢che: [AutoPico Daily Restart] [C:\Program Files\KMSpico\AutoPico.exe (Not File) ]  =>HackTool.KMSpico


---\\  Explorateur  ( Dossiers, Fichiers ). (43)
DEPLACÃ fichier: C:\Users\Jerome\Desktop\PackBarre.lnk  [Bad : C:\Users\Jerome\AppData\Roaming\Microsoft\Installer\{3F570BAB-FAD8-4F7F-97D8-3300186E4FF6}\DesktopIcon.exe](.BPMconcept.)  =>PUP.Optional.ADON
DEPLACÃ fichier: C:\Users\Jerome\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ManyCam.lnk  [Bad : C:\Program Files (x86)\ManyCam\ManyCam.exe](..)  =>.Superfluous.VisicomMedia
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal    =>Hijacker.Browser [https://epicunitscan.info/00service/update2/crx]
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage    =>Hijacker.Browser
DEPLACÃ fichier: C:\ProgramData\ManyCam\Service\service.exe [Visicom Media Inc. - ManyCam Service]  =>.Superfluous.VisicomMedia
DEPLACÃ fichier: C:\Program Files\KMSpico\Service_KMS.exe [@ByELDI - Service_KMS]  =>HackTool.KMSpico
DEPLACÃ fichier: C:\Windows\System32\DRIVERS\mcvidrv.sys [Visicom Media Inc. - ManyCam Virtual Webcam Driver]  =>.Superfluous.VisicomMedia
DEPLACÃ fichier: C:\Windows\System32\drivers\mcaudrv_x64.sys [Visicom Media Inc. - ManyCam Virtual Microphone]  =>.Superfluous.VisicomMedia
DEPLACÃ fichier: C:\Program Files\KMSpico\AutoPico.exe [@ByELDI - AutoPico]  =>HackTool.KMSpico
DEPLACÃ fichier: C:\Windows\Prefetch\KMSPICO_SETUP.TMP-3C8FE89E.pf    =>HackTool.KMSpico
DEPLACÃ fichier: C:\Windows\Prefetch\KMSPICO_SETUP.TMP-98A80E87.pf    =>HackTool.KMSpico
DEPLACÃ fichier: C:\Windows\Prefetch\MANYCAM.EXE-BC7F740F.pf    =>.Superfluous.VisicomMedia
DEPLACÃ fichier: C:\Windows\Prefetch\PACKBARRE.EXE-CA9A0331.pf    =>PUP.Optional.ADON
DEPLACÃ fichier: C:\Windows\Installer\wix{B5E06417-A4AC-4225-B36E-7E34C91616E7}.SchedServiceConfig.rmi    =>.Superfluous.Empty
DEPLACÃ fichier: C:\ProgramData\ManyCam\youtubesource.dll [Visicom Media Inc. - ManyCam Virtual Webcam]  =>.Superfluous.VisicomMedia
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage    =>.Superfluous.CloudfrontNet
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage-journal    =>.Superfluous.CloudfrontNet
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage    =>.Superfluous.CloudfrontNet
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage-journal    =>.Superfluous.CloudfrontNet
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage    =>.Superfluous.AudienceInsights
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage-journal    =>.Superfluous.AudienceInsights
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.packbarre.com_0.localstorage    =>PUP.Optional.ADON
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.packbarre.com_0.localstorage-journal    =>PUP.Optional.ADON
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage    =>PUP.Optional.Chatango
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal    =>PUP.Optional.Chatango
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage    =>.Superfluous.AudienceInsights
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal    =>.Superfluous.AudienceInsights
DEPLACÃ fichier: C:\Users\Jerome\AppData\Local\Temp\etilqs_jHjqZlOhwWpmr8o    =>PUP.Optional.WpManager
DEPLACÃ fichier: C:\Windows\SECOH-QAD.exe    =>HackTool.KMSpico
DEPLACÃ dossier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek  =>Hijacker.Browser [https://epicunitscan.info/00service/update2/crx]
DEPLACÃ dossier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake  =>Hijacker.Browser [https://epicunitscan.info/00service/update2/crx]
DEPLACÃ dossier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap  =>Hijacker.Browser [https://epicunitscan.info/00service/update2/crx]
DEPLACÃ dossier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom  =>Hijacker.Browser [https://epicunitscan.info/00service/update2/crx]
DEPLACÃ dossier: C:\Program Files (x86)\ManyCam  =>.Superfluous.VisicomMedia
DEPLACÃ dossier: C:\Program Files (x86)\PackBarre  =>PUP.Optional.ADON
DEPLACÃ dossier: C:\Program Files\KMSpico  =>HackTool.KMSpico
DEPLACÃ dossier: C:\ProgramData\ManyCam  =>.Superfluous.VisicomMedia
DEPLACÃ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico  =>HackTool.KMSpico
DEPLACÃ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam  =>.Superfluous.VisicomMedia
DEPLACÃ dossier: C:\Users\Jerome\AppData\Roaming\ManyCam  =>.Superfluous.VisicomMedia
DEPLACÃ dossier^: C:\Users\Jerome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PackBarre  =>PUP.Optional.ADON
DEPLACÃ dossier: C:\Users\Jerome\AppData\Local\ManyCam  =>.Superfluous.VisicomMedia
DEPLACÃ dossier: C:\Users\Jerome\AppData\Local\Google\Chrome\User Data\Default\File System\008  =>PUP.Optional.DomaIQ


---\\  Base de Registres ( ClÃ©s, Valeurs, DonnÃ©es ). (12)
SUPPRIMÃ clÃ©*: HKLM\SYSTEM\CurrentControlSet\Services\ManyCam Service [C:\ProgramData\ManyCam\Service\service.exe (Not File)]  =>.Superfluous.VisicomMedia
SUPPRIMÃ clÃ©*: HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI [C:\Program Files\KMSpico\Service_KMS.exe (Not File)]  =>HackTool.KMSpico
SUPPRIMÃ clÃ©*: HKLM\SYSTEM\CurrentControlSet\Services\ManyCam [C:\Windows\System32\DRIVERS\mcvidrv.sys (Not File)]  =>.Superfluous.VisicomMedia
SUPPRIMÃ clÃ©*: HKLM\SYSTEM\CurrentControlSet\Services\mcaudrv_simple [C:\Windows\System32\drivers\mcaudrv_x64.sys (Not File)]  =>.Superfluous.VisicomMedia
SUPPRIMÃ clÃ©*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6215D639-C75-482D-860-B6F7FA3A8CD} [C:\Program Files (x86)\HQ-Video-Pro-2.1cV08.01 (Not File)]  =>PUP.Optional.CrossRider
SUPPRIMÃ clÃ©*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8BF8047D-98E2-4278-887A-58354AE442C} [C:\Program Files (x86)\HQ-Video-Pro-2.1cV08.01 (Not File)]  =>PUP.Optional.CrossRider
SUPPRIMÃ clÃ©*: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BF21FE25-7C01-4D40-BC35-A9D29FD7942} [C:\Program Files (x86)\HQ-Video-Pro-2.1cV08.01 (Not File)]  =>PUP.Optional.CrossRider
SUPPRIMÃ clÃ©*: HKCU\Software\WEBAPP []  =>.Superfluous.Downloader
SUPPRIMÃ clÃ©*: HKCU\Software\TeleCharger []  =>.Superfluous.Downloader
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 [KMSpico]  =>HackTool.KMSpico
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ManyCam [Visicom Media Inc.]  =>.Superfluous.VisicomMedia
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F570BAB-FAD8-4F7F-97D8-3300186E4FF6} [BPMconcept]  =>PUP.Optional.ADON


---\\  RÃ©capitulatif des Ã©lÃ©ments trouvÃ©s sur votre station. (13)
https://www.anti-malware.top/2016/05/06/superfluous-visicommedia/  =>.Superfluous.VisicomMedia
https://www.anti-malware.top/2016/09/08/hacktool-kmspico/  =>HackTool.KMSpico
https://www.nicolascoolman.com/fr/adware-adon/  =>PUP.Optional.ADON
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>Hijacker.Browser [https://epicunitscan.info/00service/update2/crx]
https://www.nicolascoolman.com/fr/hijacker-browser/  =>Hijacker.Browser
https://www.nicolascoolman.com/fr/logiciels-superflus  =>.Superfluous.Empty
https://www.anti-malware.top/2016/08/31/cloudfront-net/  =>.Superfluous.CloudfrontNet
https://www.nicolascoolman.com/fr/logiciels-superflus  =>.Superfluous.AudienceInsights
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>PUP.Optional.Chatango
https://www.anti-malware.top/2016/06/18/superfluous-wpmanager/  =>PUP.Optional.WpManager
https://www.nicolascoolman.com/fr/adware-domaiq/  =>PUP.Optional.DomaIQ
https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/  =>PUP.Optional.CrossRider
https://www.nicolascoolman.com/fr/logiciels-superflus  =>.Superfluous.Downloader


---\\  Nettoyage Additionnel. (12)
~ Suppression des ClÃ©s de registre Tracing. (9)
~ Suppression des anciens rapports ZHPCleaner. (3)


---\\ Bilan de la rÃ©paration
~ RÃ©paration rÃ©alisÃ©e avec succÃ¨s.
~ Ce navigateur est absent  (Mozilla Firefox)
~ Le systÃ¨me a Ã©tÃ© redÃ©marrÃ©.


---\\ Statistiques
~ Items scannÃ©s : 568
~ Items trouvÃ©s : 0
~ Items annulÃ©s : 0
~ Items rÃ©parÃ©s : 58


~ End of clean in 00h00mn29s
~====================
ZHPCleaner-[R]-07062015-13_13_05.txt
ZHPCleaner-[R]-09112016-17_42_48.txt
ZHPCleaner-[S]-09112016-17_35_12.txt