~ ZHPCleaner v2017.1.21.18 by Nicolas Coolman (2017/01/21)
~ Run by Administrator (Administrator)  (22/01/2017 23:00:21)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scan
~ Report : C:\Users\Administrator\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Administrator\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)


---\\  Services (0)
~ No malicious or unnecessary items found.


---\\  Browser internet (8)
FOUND: [rw7jx3nj.default] - user_pref("extensions.jid1-TMndP6cdKgxLcQ@jetpack.promotional_table", "{\"ios\":[true,\"https://itun[...]  =>PUP.Optional.CrossRider
FOUND: [rw7jx3nj.default] - user_pref("extensions.speeddial.thumbnail-6-label", "البحث عن المواقع المشابهة - SimilarSiteSearch.c[...]  =>PUP.Optional.SimilarSites
FOUND: [rw7jx3nj.default] - user_pref("extensions.speeddial.thumbnail-6-url", "http://www.similarsitesearch.com/ar/");  =>PUP.Optional.SimilarSites
FOUND: [rw7jx3nj.default] - user_pref("network.http.request.max-start-delay", 0);  =>.Superfluous.MaxStart
FOUND file: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\rw7jx3nj.default\bprotector_prefs.js    =>PUP.Optional.BProtector
FOUND file: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\rw7jx3nj.default\similarsites.sqlite    =>PUP.Optional.SimilarSites
FOUND file: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\rw7jx3nj.default\extensions\{6614d11d-d21d-b211-ae23-815234e1ebb5}(2)\chrome(2)\linkcheker(2)\skin(2)\images(2)\vkontakte_18px.png    =>.Superfluous.VkontakteDJ
FOUND file: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\rw7jx3nj.default\conduitCommon\modules\3.8.1.0\SearchProtector.jsm    =>PUP.Optional.SearchProtect


---\\  Hosts file (1)
~ The hosts file is legitimate (20)


---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\  Explorer ( File, Folder) (22)
FOUND file: C:\Users\Administrator\Desktop\QQPlayer.lnk  [Bad : C:\Program Files\Tencent\QQPlayer\QQPlayer.exe](.腾讯科技（深圳）有限公司.)  =>.Superfluous.Tencent
FOUND file: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QQPlayer.lnk  [Bad : C:\Program Files\Tencent\QQPlayer\QQPlayer.exe](.腾讯科技（深圳）有限公司.)  =>.Superfluous.Tencent
FOUND file: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QQ影音.lnk  [Bad : C:\Program Files\Tencent\QQPlayer\QQPlayer.exe](.腾讯科技（深圳）有限公司.)  =>.Superfluous.Tencent
FOUND file: C:\Program Files\Tencent\QQPlayer\QQPlayer.exe [腾讯科技（深圳）有限公司 - QQ Player]  =>.Superfluous.Tencent
FOUND file: C:\Users\Administrator\Desktop\QQPlayer.lnk    =>.Superfluous.Tencent
FOUND file: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QQPlayer.lnk    =>.Superfluous.Tencent
FOUND file: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QQ影音.lnk    =>.Superfluous.Tencent
FOUND file: C:\Users\Administrator\AppData\Local\Temp\AskPIP_FF_.exe [Ask.com - Offercast - APN Install Manager]  =>Toolbar.Ask
FOUND folder: C:\Program Files\Tencent\QQPlayer  =>.Superfluous.Tencent
FOUND folder: C:\Program Files\BulkyPix  =>.Superfluous.Empty
FOUND folder: C:\Program Files\FreeTime  =>.Superfluous.Empty
FOUND folder: C:\Program Files\Tencent  =>.Superfluous.Tencent
FOUND folder: C:\ProgramData\SlimWare Utilities, Inc\DriverApp  =>.Superfluous.SlimWareUtilities
FOUND folder: C:\ProgramData\SlimWare Utilities, Inc  =>.Superfluous.SlimWareUtilities
FOUND folder: C:\Users\Administrator\AppData\Roaming\Tencent\QQPlayer  =>.Superfluous.Tencent
FOUND folder: C:\Users\Administrator\AppData\Roaming\Tencent  =>.Superfluous.Tencent
FOUND folder: C:\Users\Administrator\AppData\Local\CrashRpt\UnsentCrashReports  =>.Superfluous.CrashReports
FOUND folder: C:\Users\Administrator\AppData\Local\CrashRpt  =>.Superfluous.CrashReports
FOUND folder: C:\Users\Administrator\AppData\Local\DriverToolkit  =>.Superfluous.DriverToolkit
FOUND folder: C:\Users\Administrator\AppData\Local\PackageAware  =>PUP.Optional.BearShare
FOUND file: C:\Program Files\Tencent\QQPlayer\QPToolbox.exe [Tencent Ltd. - QQ影音工具箱]  =>.Superfluous.Tencent
FOUND file: C:\Program Files\Tencent\QQPlayer\QPUp.exe [Tencent - QQ影音在线升级程序]  =>.Superfluous.Tencent


---\\  Registry ( Key, Value, Data) (63)
FOUND key: HKEY_USERS\S-1-5-21-4098932066-314458288-651464026-500\SOFTWARE\APN PIP []  =>.Superfluous.Conduit
FOUND key: HKEY_USERS\S-1-5-21-4098932066-314458288-651464026-500\SOFTWARE\DriverToolkit []  =>.Superfluous.DriverToolkit
FOUND key: HKEY_USERS\S-1-5-21-4098932066-314458288-651464026-500\SOFTWARE\PIP []  =>Toolbar.Ask
FOUND key: HKEY_USERS\S-1-5-21-4098932066-314458288-651464026-500\SOFTWARE\Tencent []  =>.Superfluous.Tencent
FOUND key: HKCU\Software\APN PIP []  =>.Superfluous.Conduit
FOUND key: HKCU\Software\DriverToolkit []  =>.Superfluous.DriverToolkit
FOUND key: HKCU\Software\PIP []  =>Toolbar.Ask
FOUND key: HKCU\Software\Tencent []  =>.Superfluous.Tencent
FOUND key: HKCU\Software\csastats []  =>Adware.InstallCore
FOUND key: HKCU\Software\ProductSetup []  =>Adware.InstallCore
FOUND key: HKLM\SOFTWARE\PIP []  =>Toolbar.Ask
FOUND key: HKLM\SOFTWARE\SlimWare Utilities Inc []  =>.Superfluous.SlimWareUtilities
FOUND key: HKLM\SOFTWARE\Tencent []  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\4dotsLanguageDownloader_RASAPI32 []  =>PUP.Optional.SoftwareEngine
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\4dotsLanguageDownloader_RASMANCS []  =>PUP.Optional.SoftwareEngine
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 []  =>.Superfluous.ByteFence
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS []  =>.Superfluous.ByteFence
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\InstallMonster_Download_Manager_RASAPI32 []  =>Adware.InstallMonster
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\InstallMonster_Download_Manager_RASMANCS []  =>Adware.InstallMonster
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 []  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASMANCS []  =>.Superfluous.Tencent
FOUND key: HKCU\SOFTWARE\928f07fc4cc5a996116fead949e68785 []  =>Hijacker.Browser
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{51A00247-40A8-4845-9F17-7DBFCC9A8783}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\avi.dll]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{53D9DE0B-FC61-4650-9773-74D13CC7E582}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\mkx.dll]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{55DA30FC-F16B-49FC-BAA5-AE59FC65F82D}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{564FD788-86C9-4444-971E-CC4A243DA150}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{64F2005C-6CF5-4652-B94F-600360B15B27}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\mkx.dll]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{7B63A013-DC2C-462E-9292-CAF8C867100F}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{895322C5-84A1-450C-8478-C57793CAE86F}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{8F43B7D9-9D6B-4F48-BE18-4D787C795EEA}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{90C7D10E-CE9A-479B-A238-1A0F2396DE43}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{A28F324B-DDC5-4999-AA25-D3A7E25EF7A8}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{B3DE7EDC-0CD4-4d07-B1C5-92219CD475CC}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\mp4.dll]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{B841F346-4835-4de8-AA5E-2E7CD2D4C435}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\ts.dll]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{BD4FB4BE-809D-487b-ADD6-F7D164247E52}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\mkx.dll]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{DB43B405-43AA-4f01-82D8-D84D47E6019C}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\ogm.dll]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{F13D3732-96BD-4108-AFEB-E85F68FF64DC}\InprocServer32 [C:\Program Files\Tencent\QQPlayer\splitter.ax]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{51A00247-40A8-4845-9F17-7DBFCC9A8783} [Haali Avi Parser]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{53D9DE0B-FC61-4650-9773-74D13CC7E582} [Haali Disk File Reader]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{55DA30FC-F16B-49FC-BAA5-AE59FC65F82D} [Haali Media Splitter]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{564FD788-86C9-4444-971E-CC4A243DA150} [Haali Media Splitter (AR)]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{64F2005C-6CF5-4652-B94F-600360B15B27} [Haali Matroska Parser]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{7B63A013-DC2C-462E-9292-CAF8C867100F} [Haali Media Splitter about page]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{895322C5-84A1-450C-8478-C57793CAE86F} [Haali Media Splitter properties page]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{8F43B7D9-9D6B-4F48-BE18-4D787C795EEA} [Haali Simple Media Splitter]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{90C7D10E-CE9A-479B-A238-1A0F2396DE43} [Haali Memory Allocator]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{A28F324B-DDC5-4999-AA25-D3A7E25EF7A8} [Haali Matroska Muxer]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{B3DE7EDC-0CD4-4d07-B1C5-92219CD475CC} [Haali MP4 Parser]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{B841F346-4835-4de8-AA5E-2E7CD2D4C435} [Haali TS Parser]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{BD4FB4BE-809D-487b-ADD6-F7D164247E52} [Haali HTTP Reader]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{DB43B405-43AA-4f01-82D8-D84D47E6019C} [Haali OGM Parser]  =>.Superfluous.Tencent
FOUND key: HKLM\SOFTWARE\Classes\CLSID\{F13D3732-96BD-4108-AFEB-E85F68FF64DC} [Haali Video Sink]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{F5D4A0CF-6589-4480-B2D3-DECCF2811C24} [C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{552F90FD-46A9-49EC-9C14-9810E117879C} [C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{2AEABA7A-ADBB-4B2A-AEE0-3FD062A7A8A9} [C:\Program Files\Tencent\QQPlayer\QQPlayer.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{35C86683-06B0-48F3-9EF1-753465190920} [C:\Program Files\Tencent\QQPlayer\QQPlayer.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{C9AAF8A3-E6EA-4D51-89C4-284D114CAE19} [C:\Program Files\Tencent\QQPlayer\QPToolbox.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{4490FD31-5504-4373-90B9-4C82DECA98F2} [C:\Program Files\Tencent\QQPlayer\QPUp.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{F6B630FA-26A8-41CD-AA74-416E572AEF49} [C:\Program Files\Tencent\QQPlayer\QPUp.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{6FDC51B9-BD03-4D8D-81A6-BDF46E329436} [C:\Program Files\Common Files\Tencent\QQDownload\118\Tencentdl.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{887722A2-6735-4F9A-9168-4B2A631B8654} [C:\Program Files\Common Files\Tencent\QQDownload\118\Tencentdl.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{473DDA80-DCA4-49B9-9801-EE20F7E093EC} [C:\Program Files\Tencent\QQPlayer\Statistics.exe]  =>.Superfluous.Tencent
FOUND value: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{BEB1C23A-9130-466D-BDFB-2ABA1C886D43} [C:\Program Files\Tencent\QQPlayer\Statistics.exe]  =>.Superfluous.Tencent


---\\  Summary of the elements found (19)
https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/  =>PUP.Optional.CrossRider
https://www.nicolascoolman.com/fr/adware-similarsites/  =>PUP.Optional.SimilarSites
https://www.anti-malware.top/2016/06/07/superfluous-maxstart/  =>.Superfluous.MaxStart
https://www.anti-malware.top/2016/04/30/pup-optional-bprotector/  =>PUP.Optional.BProtector
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.VkontakteDJ
https://www.nicolascoolman.com/fr/pup-searchprotect/  =>PUP.Optional.SearchProtect
https://www.nicolascoolman.com/fr/adware-tencentaddressbar/  =>.Superfluous.Tencent
https://www.anti-malware.top/2016/09/22/toolbar-ask/  =>Toolbar.Ask
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.Empty
https://www.nicolascoolman.com/forum/post33195.html#p33195  =>.Superfluous.SlimWareUtilities
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.CrashReports
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/logiciels-superflus  =>.Superfluous.DriverToolkit
https://www.nicolascoolman.com/fr/pup-bearshare/  =>PUP.Optional.BearShare
https://www.nicolascoolman.com/fr/toolbar-conduit/  =>.Superfluous.Conduit
https://www.anti-malware.top/2016/04/22/adware-installcore/  =>Adware.InstallCore
https://www.nicolascoolman.com/fr/hijacker-trovigo/  =>PUP.Optional.SoftwareEngine
https://www.anti-malware.top/2016/04/29/superfluous-bytefence/  =>.Superfluous.ByteFence
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>Adware.InstallMonster
https://www.nicolascoolman.com/fr/hijacker-browser/  =>Hijacker.Browser


---\\ Result of repair
~ Any repair made


---\\ Statistics
~ Items scanned : 54555
~ Items found : 103
~ Items cancelled : 0
~ Items repaired : 0


~ End of search in 00h12mn04s
~====================
ZHPCleaner-[S]-22012017-23_12_25.txt