~ ZHPCleaner v2016.11.20.198 by Nicolas Coolman (2016/11/20) ~ Run by ok (Administrator) (21/11/2016 14:36:18) ~ Web: https://www.nicolascoolman.com ~ Blog: https://www.anti-malware.top ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Nettoyer ~ Report : C:\Users\ok\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\ok\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 7 Professional, 64-bit Service Pack 1 (Build 7601) ---\\ Service. (1) ARRETÉ : rtop =>.Superfluous.ByteFence ---\\ Navigateur internet. (4) REMPLACÉ Desktop: C:\Users\ok\Desktop\Google Chrome.lnk [Bad : http://www.yessearches.com/?ts=AHEqAX0tBnItBk..&v=20160501&uid=77336B866D6919E66111A3321B295ECB&ptid=dam&mode=scrp](.Google Inc..) =>Adware.YesSearches REMPLACÉ Quicklaunch: C:\Users\ok\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [Bad : http://www.yessearches.com/?ts=AHEqAX0tBnItBk..&v=20160501&uid=77336B866D6919E66111A3321B295ECB&ptid=dam&mode=scrp](.Google Inc..) =>Adware.YesSearches REMPLACÉ TaskBar: C:\Users\ok\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk [Bad : http://www.yessearches.com/?ts=AHEqAX0tBnItBk..&v=20160501&uid=77336B866D6919E66111A3321B295ECB&ptid=dam&mode=scrp](.Google Inc..) =>Adware.YesSearches REMPLACÉ TaskBar: C:\Users\ok\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk [Bad : http://www.yessearches.com/?ts=AHEqAX0tBnItBk..&v=20160501&uid=77336B866D6919E66111A3321B295ECB&ptid=dam&mode=scrp](.Mozilla Corporation.) =>Adware.YesSearches ---\\ Fichier hôte. (1) ~ Le fichier hôte est légitime. (60) ---\\ Tâche planifiée. (3) SUPPRIMÉ tâche: [ByteFence] [C:\Program Files\ByteFence\ByteFence.exe] =>.Superfluous.ByteFence SUPPRIMÉ tâche: [ParetoLogic Registration3] [C:\Windows\Tasks\ParetoLogic Registration3.job (Not File) ] =>.Superfluous.Paretologic SUPPRIMÉ tâche: [ParetoLogic Update Version3] [C:\Windows\Tasks\ParetoLogic Update Version3.job (Not File) ] =>.Superfluous.Paretologic ---\\ Explorateur ( Dossiers, Fichiers ). (33) DEPLACÉ fichier: C:\Users\ok\Desktop\ByteFence Anti-Malware.lnk [Bad : C:\Program Files (x86)\ByteFence\ByteFence.exe](..) =>.Superfluous.ByteFence DEPLACÉ fichier: C:\Users\ok\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\extensions\staged\firefox@browser-security.de.json =>.Superfluous.VondosMedia DEPLACÉ fichier: C:\Users\ok\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\extensions\staged\firefox@browser-security.de.xpi =>.Superfluous.VondosMedia DEPLACÉ fichier: C:\Users\ok\AppData\Roaming\Mozilla\Firefox\Profiles\4ubxzcgw.default\extensions\firefox@browser-security.de.xpi =>.Superfluous.VondosMedia DEPLACÉ fichier: C:\Users\ok\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\extensions\staged\firefox@browser-security.de.json =>.Superfluous.VondosMedia DEPLACÉ fichier: C:\Users\ok\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\extensions\staged\firefox@browser-security.de.xpi =>.Superfluous.VondosMedia DEPLACÉ fichier: C:\Windows\Tasks\ParetoLogic Registration3.job =>.Superfluous.Paretologic DEPLACÉ fichier: C:\Windows\Tasks\ParetoLogic Update Version3.job =>.Superfluous.Paretologic DEPLACÉ fichier: C:\Windows\Installer\wix{526002E5-7D5B-4703-A4E3-BA566AED5D8A}.SchedServiceConfig.rmi =>.Superfluous.Empty DEPLACÉ fichier: C:\Windows\Installer\wix{67619AAE-5530-4DDC-843E-426BCE8E6CAE}.SchedServiceConfig.rmi =>.Superfluous.Empty DEPLACÉ fichier: C:\Windows\Installer\wix{CB3CA48C-95CB-412B-B7AE-6F2EA8F89907}.SchedServiceConfig.rmi =>.Superfluous.Empty DEPLACÉ fichier: C:\Users\ok\Downloads\dffsetup.exe [Dll-Files.com - Dll-Files Fixer] =>PUP.Optional.DllFilesFixer DEPLACÉ fichier: C:\Users\ok\Downloads\ParetoLogic PC Health Advisor.exe [ParetoLogic Inc. - PC Health Advisor Installer] =>.Superfluous.Paretologic DEPLACÉ fichier: C:\Users\ok\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_dsms0mj1bbhn4.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet DEPLACÉ fichier: C:\Users\ok\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage =>PUP.Optional.Generic DEPLACÉ fichier: C:\Users\ok\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.softonic.com_0.localstorage =>.Superfluous.Softonic DEPLACÉ fichier: C:\Users\ok\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage =>PUP.Optional.Chatango DEPLACÉ dossier^: C:\Program Files\ByteFence =>.Superfluous.ByteFence DEPLACÉ dossier^: C:\ProgramData\ByteFence =>.Superfluous.ByteFence DEPLACÉ dossier: C:\ProgramData\ParetoLogic =>.Superfluous.Paretologic DEPLACÉ dossier: C:\Users\ok\AppData\Roaming\Browser-Security =>.Superfluous.VondosMedia DEPLACÉ dossier: C:\Users\ok\AppData\Roaming\DriverCure =>.Superfluous.Paretologic DEPLACÉ dossier: C:\Users\ok\AppData\Roaming\HMYGSetting =>Adware.Suspect DEPLACÉ dossier: C:\Users\ok\AppData\Roaming\ParetoLogic =>.Superfluous.Paretologic DEPLACÉ dossier: C:\Users\ok\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence =>.Superfluous.ByteFence DEPLACÉ dossier: C:\Users\ok\AppData\Local\Temp\scoped_dir_4228_23401 =>.Superfluous.Temporary.Steam DEPLACÉ dossier: C:\Program Files (x86)\QuickTime =>Riskware.QuickTime DEPLACÉ dossier: C:\Users\ok\AppData\Local\Google\Chrome\User Data\Default\File System\008 =>PUP.Optional.DomaIQ DEPLACÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime =>Riskware.QuickTime DEPLACÉ dossier: C:\Windows\Installer\MSI4046.tmp- =>.Superfluous.Empty DEPLACÉ dossier: C:\Windows\Installer\MSI9BF4.tmp- =>.Superfluous.Empty DEPLACÉ dossier: C:\Windows\Installer\MSIB9D1.tmp- =>.Superfluous.Empty DEPLACÉ dossier: C:\Windows\Installer\MSICCC6.tmp- =>.Superfluous.Empty ---\\ Base de Registres ( Clés, Valeurs, Données ). (22) SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\rtop [C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe] =>.Superfluous.ByteFence SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2349189330-3390248819-1284640563-1000\SOFTWARE\ByteFence [] =>.Superfluous.ByteFence SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2349189330-3390248819-1284640563-1000\SOFTWARE\ParetoLogic [] =>.Superfluous.Paretologic SUPPRIMÉ clé: HKCU\Software\ByteFence [] =>.Superfluous.ByteFence SUPPRIMÉ clé: HKCU\Software\ParetoLogic [] =>.Superfluous.Paretologic SUPPRIMÉ clé*: HKCU\Software\undefined [] =>.Superfluous.Downloader SUPPRIMÉ clé*: HKCU\Software\ProductSetup [] =>Adware.InstallCore SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\f [f] =>PUP.Optional.Funmoods SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\CscService [] =>.Superfluous.PCSpeedUp SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\ByteFence [] =>.Superfluous.ByteFence SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 [] =>.Superfluous.ByteFence SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS [] =>.Superfluous.ByteFence SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ByteFence [] =>.Superfluous.ByteFence SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\ParetoLogic [] =>.Superfluous.Paretologic SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\yessearchesSoftware [] =>Adware.YesSearches SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Browser-Security [Vondos Media GmbH] =>.Superfluous.VondosMedia SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence [Byte Technologies LLC] =>.Superfluous.ByteFence SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Uninstall - dam [yessearches - Uninstall] =>Adware.YesSearches SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} [Google Inc.] =>Heuristic.Suspect SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ParetoLogic PC Health Advisor_RASAPI32 [] =>.Superfluous.Paretologic SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ParetoLogic PC Health Advisor_RASMANCS [] =>.Superfluous.Paretologic SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task ["C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime] =>Riskware.QuickTime ---\\ Récapitulatif des éléments trouvés sur votre station. (19) https://www.anti-malware.top/2016/04/29/superfluous-bytefence/ =>.Superfluous.ByteFence https://www.anti-malware.top/2016/05/12/adware-yessearches/ =>Adware.YesSearches https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Paretologic https://www.anti-malware.top/2016/04/24/superfluous-vondosmedia/ =>.Superfluous.VondosMedia https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Empty https://www.nicolascoolman.com/fr/pup-optional-dllfilesfixer/ =>PUP.Optional.DllFilesFixer https://www.anti-malware.top/2016/08/31/cloudfront-net/ =>.Superfluous.CloudfrontNet https://www.anti-malware.top/2016/05/01/definition-dun-logiciel-pup-lpi/ =>PUP.Optional.Generic https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Softonic https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.Chatango https://www.anti-malware.top/2016/05/01/definition-dun-logiciel-pup-lpi/ =>Adware.Suspect https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Temporary.Steam https://www.anti-malware.top/2016/04/21/riskware-quicktime/ =>Riskware.QuickTime https://www.nicolascoolman.com/fr/adware-domaiq/ =>PUP.Optional.DomaIQ https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Downloader https://www.anti-malware.top/2016/04/22/adware-installcore/ =>Adware.InstallCore https://www.nicolascoolman.com/fr/pup-funmoods/ =>PUP.Optional.Funmoods https://www.nicolascoolman.com/fr/superfluous-pcspeeduppro/ =>.Superfluous.PCSpeedUp https://www.anti-malware.top/2016/04/22/heuristic-suspect/ =>Heuristic.Suspect ---\\ Nettoyage Additionnel. (139) ~ Suppression des Clés de registre Tracing. (139) ~ Suppression des anciens rapports ZHPCleaner. (0) ---\\ Bilan de la réparation ~ Réparation réalisée avec succès. ~ Ce navigateur est absent (Opera Software) ~ Le système a été redémarré. ---\\ Statistiques ~ Items scannés : 842 ~ Items trouvés : 0 ~ Items annulés : 0 ~ Items réparés : 63 ~ End of clean in 00h02mn24s ~==================== ZHPCleaner-[R]-21112016-14_38_42.txt ZHPCleaner-[S]-21112016-14_34_31.txt