~ ZHPCleaner v2017.1.21.18 by Nicolas Coolman (2017/01/21)
~ Run by H!ch@m (Administrator)  (22/01/2017 01:43:02)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\H!ch@m\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\H!ch@m\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)


---\\  Service. (1)
WINSOCK [Protocol_Catalog9\Catalog_Entries]: Remise à zéro du socket qui gère la couche TCP/IP  =>Hijacker.Winsock


---\\  Navigateur internet. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Fichier hôte. (3)
REMPLACÉ: 127.0.0.3                   www.anchorfree.net
REMPLACÉ: 127.0.0.2                   mefeedia.com
~ Nombre de redirections trouvées 2/38


---\\  Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Explorateur  ( Dossiers, Fichiers ). (27)
DEPLACÉ fichier: C:\Users\H!ch@m\AppData\Roaming\Dom-Hold.exe    =>PUP.Optional.Pirrit
DEPLACÉ fichier: C:\Users\H!ch@m\AppData\Roaming\Lablex.exe    =>PUP.Optional.Pirrit
DEPLACÉ fichier: C:\Users\H!ch@m\AppData\Roaming\Lexi-Tex.exe    =>PUP.Optional.Pirrit
DEPLACÉ fichier: C:\Users\H!ch@m\AppData\Roaming\Nimtop.exe    =>PUP.Optional.Pirrit
DEPLACÉ fichier: C:\Windows\System32\drivers\wcmvcam.sys [Windows (R) Win 7 DDK provider - WebcamMax Capture]  =>.Superfluous.TenkiTechnology
DEPLACÉ fichier: C:\Windows\Installer\wix{459699C3-9430-4381-964B-4248D87B49F9}.SchedServiceConfig.rmi    =>.Superfluous.Empty
DEPLACÉ fichier: C:\Windows\Installer\wix{D9F3D66A-9885-4DDD-A800-9DDF488359A1}.SchedServiceConfig.rmi    =>.Superfluous.Empty
DEPLACÉ fichier: C:\Windows\Installer\wix{E1DB0812-2D60-43DB-AE09-6C7027D93B28}.SchedServiceConfig.rmi    =>.Superfluous.Empty
DEPLACÉ fichier: C:\Users\H!ch@m\AppData\Roaming\ApplicationHosting.dat    =>PUP.Optional.ApplicationHosting
DEPLACÉ fichier: C:\Users\H!ch@m\Downloads\Programs\BullyPC_EFIGS_PatchTo_v1200.exe [Program - Web Program Setup]  =>Adware.Amonetize
DEPLACÉ fichier: C:\Users\H!ch@m\Downloads\Programs\DriverToolkitInstaller_2.exe [Megaify Software - DriverToolkit Setup]  =>.Superfluous.Megaify
DEPLACÉ fichier: C:\Users\H!ch@m\AppData\Local\nsm72A8.tmp [CMI Limited - Setup]  =>.Superfluous.CMILimited
DEPLACÉ dossier: C:\Program Files\Solvusoft  =>.Superfluous.Solvusoft
DEPLACÉ dossier: C:\Program Files\Common Files\ClaraUpdater  =>PUP.Optional.SupTab
DEPLACÉ dossier: C:\ProgramData\8132436595601708080  =>PUP.Optional.CrossRider
DEPLACÉ dossier: C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft  =>.Superfluous.Solvusoft
DEPLACÉ dossier: C:\Windows\System32\config\systemprofile\AppData\Local\CrashRpt  =>.Superfluous.CrashReports
DEPLACÉ dossier: C:\Windows\System32\config\systemprofile\AppData\Local\LavasoftTcpService  =>PUP.Optional.LavasoftWebCompanion
DEPLACÉ dossier: C:\Users\H!ch@m\AppData\LocalLow\SmartWeb  =>PUP.Optional.SmartWebSearch
DEPLACÉ dossier: C:\Users\H!ch@m\AppData\Local\CrashRpt  =>.Superfluous.CrashReports
DEPLACÉ dossier: C:\Users\H!ch@m\AppData\Local\Temp\scoped_dir20886  =>.Superfluous.Temporary.Steam
DEPLACÉ dossier: C:\Program Files\Windows Loader  =>HackTool.WinActivator
DEPLACÉ dossier: C:\Windows\Installer\MSI1294.tmp-  =>.Superfluous.Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI357E.tmp-  =>.Superfluous.Empty
DEPLACÉ dossier: C:\Windows\Installer\MSI42F6.tmp-  =>.Superfluous.Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE10.tmp-  =>.Superfluous.Empty
DEPLACÉ dossier: C:\Windows\Installer\MSIE7CF.tmp-  =>.Superfluous.Empty


---\\  Base de Registres ( Clés, Valeurs, Données ). (51)
REMPLACÉ : HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 [C:\Windows\System32\LavasoftTcpService.dll]  =>Hijacker.Winsock
REMPLACÉ : HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 [C:\Windows\System32\LavasoftTcpService.dll]  =>Hijacker.Winsock
REMPLACÉ : HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003 [C:\Windows\System32\LavasoftTcpService.dll]  =>Hijacker.Winsock
REMPLACÉ : HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004 [C:\Windows\System32\LavasoftTcpService.dll]  =>Hijacker.Winsock
REMPLACÉ : HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000016 [C:\Windows\System32\LavasoftTcpService.dll]  =>Hijacker.Winsock
SUPPRIMÉ clé*: HKCU\Software\Cinem Plus 2.4cV02.06-nv []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKCU\Software\Cinem Plus 2.4cV02.06-nv-ie []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\49300447-d224-405a-159f-b85756e80568 []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\e823ea74-8fea-444c-86c4-ec03bc6b4ead []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Cinem Plus 2.4cV02.06-nv []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\Cinem Plus 2.4cV02.06-nv-ie []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé: HKEY_USERS\S-1-5-21-2460075080-491719790-2508453021-1000\SOFTWARE\Cinem Plus 2.4cV02.06-nv []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé: HKEY_USERS\S-1-5-21-2460075080-491719790-2508453021-1000\SOFTWARE\Cinem Plus 2.4cV02.06-nv-ie []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2460075080-491719790-2508453021-1000\SOFTWARE\Magicbit []  =>.Superfluous.Magicbit
SUPPRIMÉ clé: HKCU\Software\Magicbit []  =>.Superfluous.Magicbit
SUPPRIMÉ clé*: HKCU\Software\undefined []  =>.Superfluous.Downloader
SUPPRIMÉ clé*: HKCU\Software\Mozilla\Extends []  =>PUP.Optional.FastStart
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool]  =>Toolbar.Ask
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman]  =>PUP.Optional.Camec
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer [DataContainer Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1 [DataContainer Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController [DataController Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1 [DataController Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable [DataTable Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1 [DataTable Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields [DataTableFields Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1 [DataTableFields Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder [DataTableHolder Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1 [DataTableHolder Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic [LSPLogic Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1 [LSPLogic Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager [ReadOnlyManager Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1 [ReadOnlyManager Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController [WFPController Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1 [WFPController Class]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Pf00a6254_9b88_41a3_9639_8950a3ab10d0_.Pf00a6254_9b88_41a3_9639_8950a3ab10d0_ [bestadblocker]  =>PUP.Optional.BestADBlocker
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Pf00a6254_9b88_41a3_9639_8950a3ab10d0_.Pf00a6254_9b88_41a3_9639_8950a3ab10d0_.9 [bestadblocker]  =>PUP.Optional.BestADBlocker
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Pf18e1d8a_68df_421d_b50e_c3d851991e4d_.Pf18e1d8a_68df_421d_b50e_c3d851991e4d_ [SalePlus]  =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\Pf18e1d8a_68df_421d_b50e_c3d851991e4d_.Pf18e1d8a_68df_421d_b50e_c3d851991e4d_.9 [SalePlus]  =>PUP.Optional.Multiplug
SUPPRIMÉ clé*: HKLM\SOFTWARE\Cinem Plus 2.4cV02.06 []  =>PUP.Optional.CrossRider
SUPPRIMÉ clé*: HKLM\SOFTWARE\QuickRef_1.10.0.12 []  =>PUP.Optional.QuickRef
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\ASPackage_RASAPI32 []  =>PUP.Optional.ASPackage
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\ASPackage_RASMANCS []  =>PUP.Optional.ASPackage
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\CloudPrinter_RASAPI32 []  =>.Superfluous.Linkury
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\CloudPrinter_RASMANCS []  =>.Superfluous.Linkury
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\SmartWebApp_RASAPI32 []  =>PUP.Optional.SmartWebSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\SmartWebApp_RASMANCS []  =>PUP.Optional.SmartWebSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\wpc_mystartsearch_RASAPI32 []  =>PUP.Optional.StartSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Tracing\wpc_mystartsearch_RASMANCS []  =>PUP.Optional.StartSearch
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{438e213f} [SovereignCore]  =>PUP.Optional.Graftor
SUPPRIMÉ clé*: HKCU\SOFTWARE\ccef101c788a83e32f7f8699b62633fe []  =>Hijacker.Browser


---\\  Récapitulatif des éléments trouvés sur votre station. (29)
https://www.anti-malware.top/2016/09/25/hijacker-winsock/  =>Hijacker.Winsock
https://www.nicolascoolman.com/fr/pup-pirritsuggestor/  =>PUP.Optional.Pirrit
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.TenkiTechnology
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.Empty
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>PUP.Optional.ApplicationHosting
https://www.anti-malware.top/2016/05/24/adware-amonetize/  =>Adware.Amonetize
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.Megaify
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.CMILimited
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.Solvusoft
https://www.nicolascoolman.com/fr/pup-suptab/  =>PUP.Optional.SupTab
https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/  =>PUP.Optional.CrossRider
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.CrashReports
https://www.anti-malware.top/2016/04/26/superfluous-lavasoftwebcompanion/  =>PUP.Optional.LavasoftWebCompanion
https://www.nicolascoolman.com/fr/pup-smartwebsearch/  =>PUP.Optional.SmartWebSearch
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.Temporary.Steam
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/  =>HackTool.WinActivator
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.Magicbit
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.Downloader
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>PUP.Optional.FastStart
https://www.anti-malware.top/2016/09/22/toolbar-ask/  =>Toolbar.Ask
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>PUP.Optional.Camec
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>PUP.Optional.BestADBlocker
https://www.anti-malware.top/2016/04/28/pup-optional-multiplug/  =>PUP.Optional.Multiplug
https://www.nicolascoolman.com/fr/pup-optional-quickref/  =>PUP.Optional.QuickRef
https://www.nicolascoolman.com/fr/pup-optional-aspackage/  =>PUP.Optional.ASPackage
https://www.anti-malware.top/2016/08/02/superfluous-linkury/  =>.Superfluous.Linkury
https://www.nicolascoolman.com/fr/pup-optional-startsearch/  =>PUP.Optional.StartSearch
https://www.anti-malware.top/2016/05/02/pup-optional-graftor/  =>PUP.Optional.Graftor
https://www.nicolascoolman.com/fr/hijacker-browser/  =>Hijacker.Browser


---\\  Nettoyage Additionnel. (174)
~ Suppression des Clés de registre Tracing. (174)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent  (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 832
~ Items trouvés : 2
~ Items annulés : 0
~ Items réparés : 79


~ End of clean in 00h01mn12s
~====================
ZHPCleaner-[R]-22012017-01_44_14.txt
ZHPCleaner-[S]-22012017-01_41_42.txt