ï»¿~ ZHPCleaner v2017.8.27.146 by Nicolas Coolman (2017/08/27)
~ Run by as (Administrator)  (28/08/2017 14:09:27)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version KO
~ Certificate ZHPCleaner: Legal
~ Type : Nettoyer
~ Report : C:\Users\as\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\as\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)


---\\  Service. (0)
~ Aucun Ã©lÃ©ment malicieux ou superflu trouvÃ©.


---\\  Navigateur internet. (1)
SUPPRIMÃ donnÃ©e: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride [Bad : *.univ-poitiers.fr;*.sci.univ-poitiers.fr;<local>]  =>Hijacker.Proxy


---\\  Fichier hÃ´te. (1)
~ Le fichier hÃ´te est lÃ©gitime. (21)


---\\  TÃ¢che planifiÃ©e. (0)
~ Aucun Ã©lÃ©ment malicieux ou superflu trouvÃ©.


---\\  Explorateur  ( Dossiers, Fichiers ). (14)
DEPLACÃ fichier: C:\Users\as\AppData\Roaming\Mozilla\Firefox\Profiles\ezqk9f2x.default-1459320504896\storage\default\https+++ol.uk.at.atwola.com\.metadata    =>.SUP.Atwola
DEPLACÃ fichier: C:\Users\as\AppData\Roaming\Mozilla\Firefox\Profiles\ezqk9f2x.default-1459320504896\storage\default\https+++ol.uk.at.atwola.com\.metadata-v2    =>.SUP.Atwola
DEPLACÃ fichier: C:\Users\as\AppData\Roaming\Mozilla\Firefox\Profiles\ezqk9f2x.default-1459320504896\storage\default\https+++ol.uk.at.atwola.com\idb\12183338011.sqlite    =>.SUP.Atwola
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage    =>.SUP.CloudfrontNet
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage-journal    =>.SUP.CloudfrontNet
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ol.uk.at.atwola.com_0.localstorage    =>.SUP.Atwola
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ol.uk.at.atwola.com_0.localstorage-journal    =>.SUP.Atwola
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage    =>.SUP.AudienceInsights
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage-journal    =>.SUP.AudienceInsights
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage    =>.SUP.AudienceInsights
DEPLACÃ fichier: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal    =>.SUP.AudienceInsights
DEPLACÃ dossier*: C:\ProgramData\Solvusoft  =>.SUP.Solvusoft
DEPLACÃ dossier*: C:\Users\as\AppData\Roaming\Solvusoft  =>.SUP.Solvusoft
DEPLACÃ dossier*: C:\Users\as\AppData\Local\Google\Chrome\User Data\Default\File System\008  =>PUP.Optional.DomaIQ


---\\  Base de Registres ( ClÃ©s, Valeurs, DonnÃ©es ). (40)
SUPPRIMÃ donnÃ©e: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{6D72FECD-E1F7-41CC-8510-A1D20400DFBB}\\DhcpNameServer [Bad : 195.83.66.42]  =>Hijacker.Browser
SUPPRIMÃ donnÃ©e: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{D4F0A983-CCDB-4068-A5A7-2C47601C1069}\\DhcpNameServer [Bad : 195.220.223.2 195.220.223.1]  =>Hijacker.Browser
SUPPRIMÃ donnÃ©e: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer [Bad : 195.220.223.2 195.220.223.1]  =>Hijacker.Browser
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97 [Avast Software]  =>PUM.Misplaced.Certificate
SUPPRIMÃ clÃ©*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\atwola.com []  =>.SUP.Atwola
SUPPRIMÃ clÃ©*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ol.uk.at.atwola.com [83]  =>.SUP.Atwola
SUPPRIMÃ clÃ©*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.olark.com [3399]  =>PUP.Optional.Generic
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Classes\Applications\WinThrusterSetup.exe []  =>.SUP.WinThruster
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07B51C13962E8BF49BAFEA042FB2D4A6 [C?\Program Files (x86)\Solvusoft\Tray\SuiteClient.dll]  =>.SUP.Solvusoft
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool]  =>Toolbar.Ask
SUPPRIMÃ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\sfhtml.dll [1]  =>.SUP.Solvusoft
SUPPRIMÃ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe [1]  =>.SUP.Solvusoft
SUPPRIMÃ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\SuiteClient.dll [1]  =>.SUP.Solvusoft
SUPPRIMÃ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\MsgSys.exe [1]  =>.SUP.Solvusoft


---\\  RÃ©capitulatif des Ã©lÃ©ments trouvÃ©s sur votre station. (11)
https://nicolascoolman.eu/2017/04/03/hijacker-proxy/  =>Hijacker.Proxy
https://nicolascoolman.eu/2017/02/04/superfluous-atwola/  =>.SUP.Atwola
https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/  =>.SUP.CloudfrontNet
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.AudienceInsights
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Solvusoft
https://www.nicolascoolman.com/fr/adware-domaiq/  =>PUP.Optional.DomaIQ
https://nicolascoolman.eu/2017/02/02/hijacker-browser-2/  =>Hijacker.Browser
https://nicolascoolman.eu/2017/06/26/trojan-certlock/  =>PUM.Misplaced.Certificate
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.Generic
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.WinThruster
https://nicolascoolman.eu/2017/02/28/toolbar-ask/  =>Toolbar.Ask


---\\  Nettoyage Additionnel. (29)
~ Suppression des ClÃ©s de registre Tracing. (29)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ Bilan de la rÃ©paration
~ RÃ©paration rÃ©alisÃ©e avec succÃ¨s.
~ Ce navigateur est absent  (Opera Software)


---\\ Statistiques
~ Items scannÃ©s : 1240
~ Items trouvÃ©s : 0
~ Items annulÃ©s : 0
~ Items rÃ©parÃ©s : 55


~ End of clean in 00h02mn03s
~====================
ZHPCleaner-[R]-28082017-14_11_30.txt
ZHPCleaner-[S]-28082017-13_02_29.txt
ZHPCleaner-[S]-28082017-14_08_11.txt