~ ZHPCleaner v2017.6.7.92 by Nicolas Coolman (2017/06/07)
~ Run by DD (Administrator)  (07/06/2017 16:53:01)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version KO
~ Type : Scanner
~ Report : C:\Users\DD\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\DD\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 14393)


---\\  Service. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Navigateur internet. (3)
TROUVÉ Desktop: C:\Users\DD\Desktop\Start Tor Browser.lnk  [Bad : https://launchpage.org/?uid=oTlKGKjdhx1sXu9WcnZ358bsC9vzfPmBpaNzj00GEMqPaj4pg9jYbru8uuJxbrDDyCc%3D](.Mozilla Corporation.)  =>Hijacker.Browser
TROUVÉ Startup\Programs: C:\Users\DD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk  [Bad : https://launchpage.org/?uid=oTlKGKjdhx1sXu9WcnZ358bsC9vzfPmBpaNzj00GEMqPaj4pg9jYbru8uuJxbrDDyCc%3D](.Mozilla Corporation.)  =>Hijacker.Browser
TROUVÉ Programs: C:\Users\DD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk  [Bad : https://launchpage.org/?uid=oTlKGKjdhx1sXu9WcnZ358bsC9vzfPmBpaNzj00GEMqPaj4pg9jYbru8uuJxbrDDyCc%3D](.Mozilla Corporation.)  =>Hijacker.Browser


---\\  Fichier hôte. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  Explorateur  ( Dossiers, Fichiers ). (24)
TROUVÉ fichier: C:\WINDOWS\Installer\MSI3330.tmp    =>.Superfluous.Elex
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\9EF2.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A0C7.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A145.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A1B4.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A212.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A290.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A290.tmp.zip    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A2B1.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A3AC.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\A41A.tmp    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\CVRA459.tmp.cvr    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\JavaDeployReg.log    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\java_install_sp.log    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\jawshtml.html    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\MSI5b1d4.LOG    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\MSI68418.LOG    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\MSI6929f.LOG    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\MSIc11f8.LOG    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\MSIc11f9.LOG    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\Users\DD\AppData\Local\Temp\~DFF4127F73B7422ACD.TMP    =>.Superfluous.Temporary.Empty
TROUVÉ fichier: C:\ProgramData\VideoMemoryDiagnostic\vmdiag.exe    =>.Superfluous.Elex
TROUVÉ fichier: C:\ProgramData\VideoMemoryDiagnostic\vmdiag.exe.config    =>.Superfluous.Elex
TROUVÉ dossier: C:\ProgramData\VideoMemoryDiagnostic  =>.Superfluous.Elex


---\\  Base de Registres ( Clés, Valeurs, Données ). (33)
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\03D22C9C66915D58C88912B64C1F984B8344EF09 [Comodo Security Solutions]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\0F684EC1163281085C6AF20528878103ACEFCAAB [F-Secure Corporation]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\249BDA38A611CD746A132FA2AF995A2D3C941264 [Malwarebytes Corporation]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\331E2046A1CCA7BFEF766724394BE6112B4CA3F7 [Trend Micro]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\373C33726722D3A5D1EDD1F1585D5D25B39BEA1A [SUPERAntiSpyware.com]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F [Kaspersky Lab]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3D496FA682E65FC122351EC29B55AB94F3BB03FC [AVG Technologies CZ]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 [PC Tools]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 [K7 Computing Pvt Ltd]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4420C99742DF11DD0795BC15B7B0ABF090DC84DF [Doctor Web Ltd]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5240AB5B05D11B37900AC7712A3C6AE42F377C8C [Check Point Software Technologies Ltd]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DD3D41810F28B2A13E9A004E6412061E28FA48D [Emsisoft Ltd]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\76A9295EF4343E12DFC5FE05DC57227C1AB00D29 [BullGuard Ltd]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\775B373B33B9D15B58BC02B184704332B97C3CAF [McAfee]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\872CD334B7E7B3C3D1C6114CD6B221026D505EAB [Comodo Security Solutions]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\88AD5DFE24126872B33175D1778687B642323ACF [McAfee]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9132E8B079D080E01D52631690BE18EBC2347C1E [Adaware Software]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\982D98951CF3C0CA2A02814D474A976CBFF6BDB1 [Safer Networking Ltd]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 [Webroot Inc]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 [Avira Operations GmbH]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A59CC32724DD07A6FC33F7806945481A2D13CA2F [ESET]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 [AVG Technologies CZ]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD4C5429E10F4FF6C01840C20ABA344D7401209F [Avast Antivirus/Software]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD96BB64BA36379D2E354660780C2067B81DA2E0 [Symantec Corporation]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 [Kaspersky Lab]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB303C9B61282DE525DC754A535CA2D6A9BD3D87 [ThreatTrack Security]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB77E5CFEC34459146748B667C97B185619251BA [Avast Antivirus/Software]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF [AVG Technologies CZ]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\ED841A61C0F76025598421BC1B00E24189E68D54 [Bitdefender SR]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F83099622B4A9F72CB5081F742164AD1B8D048C9 [ESET]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FBB42F089AF2D570F2BF6F493D107A3255A9BB1A [Panda Security S.L]  =>PUM.Misplaced.Certificate
TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 [Doctor Web Ltd]  =>PUM.Misplaced.Certificate
TROUVÉ clé: [X64] HKLM\SOFTWARE\InterSect Alliance []  =>.Superfluous.InterSect


---\\  Récapitulatif des éléments trouvés sur votre station. (5)
https://nicolascoolman.eu/2017/02/02/hijacker-browser-2/  =>Hijacker.Browser
https://nicolascoolman.eu/2017/03/28/superfluous-elex/  =>.Superfluous.Elex
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.Superfluous.Temporary.Empty
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUM.Misplaced.Certificate
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.Superfluous.InterSect


---\\ Bilan de la réparation
~ Aucune réparation effectuée.
~ Ce navigateur est absent  (Google Chrome)


---\\ Statistiques
~ Items scannés : 108487
~ Items trouvés : 61
~ Items annulés : 0
~ Items réparés : 0


~ End of search in 00h08mn19s
~====================
ZHPCleaner-[R]-20052017-21_16_21.txt
ZHPCleaner-[R]-20052017-21_40_12.txt
ZHPCleaner-[R]-21052017-09_05_36.txt
ZHPCleaner-[R]-21052017-17_54_02.txt
ZHPCleaner-[R]-21052017-18_24_32.txt
ZHPCleaner-[R]-21052017-21_20_02.txt
ZHPCleaner-[R]-21112016-10_27_34.txt
ZHPCleaner-[R]-22112016-10_10_51.txt
ZHPCleaner-[R]-25112016-14_12_59.txt
ZHPCleaner-[S]-07062017-17_01_20.txt
ZHPCleaner-[S]-20052017-21_14_15.txt
ZHPCleaner-[S]-20052017-21_38_35.txt
ZHPCleaner-[S]-21052017-09_02_34.txt
ZHPCleaner-[S]-21052017-17_52_40.txt
ZHPCleaner-[S]-21052017-18_23_48.txt
ZHPCleaner-[S]-21052017-21_13_34.txt
ZHPCleaner-[S]-21112016-10_11_51.txt
ZHPCleaner-[S]-21112016-10_54_27.txt
ZHPCleaner-[S]-22112016-10_08_49.txt
ZHPCleaner-[S]-25112016-14_11_38.txt