~ ZHPCleaner v2018.4.5.57 by Nicolas Coolman (2018/04/05)
~ Run by pierr (Administrator)  (07/04/2018 19:03:22)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Nettoyer
~ Report : C:\Users\pierr\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\pierr\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit  (Build 16299)


---\\  ALTERNATE DATA STREAM (ADS). (0)
~ Aucun Ã©lÃ©ment malicieux ou superflu trouvÃ©.


---\\  SERVICE. (0)


---\\  NAVIGATEUR INTERNET. (0)
~ Aucun Ã©lÃ©ment malicieux ou superflu trouvÃ©.


---\\  FICHIER HÃTE. (1)
~ Le fichier hÃ´te est lÃ©gitime. (21)


---\\  TÃCHE PLANIFIÃE. (1)
SUPPRIMÃ tÃ¢che: [AutoPico Daily Restart] [C:\Program Files\KMSpico\AutoPico.exe (Not File) ]  =>HackTool.KMSpico


---\\  EXPLORATEUR  ( Dossiers, Fichiers ). (16)
DEPLACÃ fichier: C:\Users\pierr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\ÂµTorrent.lnk  [Bad : C:\Users\pierr\AppData\Roaming\uTorrent\uTorrent.exe](.BitTorrent Inc..)  =>BitTorrent (P2P)
DEPLACÃ fichier: C:\Users\Public\Desktop\Popcorn Time.lnk  [Bad : C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe](..)  =>.SUP.PopcornTime
DEPLACÃ fichier: C:\Program Files\KMSpico\Service_KMS.exe [ - Service_KMS]  =>HackTool.KMSpico
DEPLACÃ fichier: C:\Program Files\KMSpico\AutoPico.exe [ - AutoPico]  =>HackTool.KMSpico
DEPLACÃ fichier: C:\Windows\Prefetch\FASTDATAX.TMP-2CBA642A.pf    =>Adware.FastDataX
DEPLACÃ fichier: C:\Windows\Prefetch\FASTDATAX.TMP-E4A4B2E9.pf    =>Adware.FastDataX
DEPLACÃ fichier: C:\Windows\Prefetch\ONESYSTEMCARE.TMP-7D71C347.pf    =>PUP.Optional.OneSystemCare
DEPLACÃ fichier: C:\Windows\Prefetch\SPEEDOWNLOADER.TMP-2F007889.pf    =>Adware.SpeeDownloader
DEPLACÃ fichier: C:\Users\pierr\AppData\Local\Temp\setuplb.exe [My Company, Inc. - Browser Setup]  =>.SUP.MyCompanyInc
DEPLACÃ fichier: C:\Users\pierr\AppData\Local\Temp\The Wire Season 4 S04 (1080p Bluray x265 HEVC 10bi [BitTorrent Inc. - ÂµTorrent]  =>BitTorrent (P2P)
DEPLACÃ fichier: C:\Users\pierr\AppData\Local\Temp\uninstall.exe    =>PUP.Optional.Generic
DEPLACÃ fichier: C:\Windows\SECOH-QAD.dll    =>HackTool.KMSpico
DEPLACÃ dossier*: C:\Program Files (x86)\Popcorn Time  =>.SUP.PopcornTime
DEPLACÃ dossier*: C:\Program Files\KMSpico  =>HackTool.KMSpico
DEPLACÃ dossier*: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico  =>HackTool.KMSpico
DEPLACÃ dossier*: C:\Users\pierr\AppData\Local\PopcornTime  =>.SUP.PopcornTime


---\\  BASE DE REGISTRES ( ClÃ©s, Valeurs, DonnÃ©es ). (18)
SUPPRIMÃ clÃ©*: HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI [C:\Program Files\KMSpico\Service_KMS.exe (Not File)]  =>HackTool.KMSpico
SUPPRIMÃ clÃ©*: HKEY_USERS\S-1-5-21-870739227-962491652-328656873-1001\SOFTWARE\Popcorn Time []  =>.SUP.PopcornTime
SUPPRIMÃ clÃ©*: HKEY_USERS\S-1-5-21-870739227-962491652-328656873-1001\SOFTWARE\PopcornTime []  =>.SUP.PopcornTime
SUPPRIMÃ clÃ©: HKCU\Software\Popcorn Time []  =>.SUP.PopcornTime
SUPPRIMÃ clÃ©: HKCU\Software\PopcornTime []  =>.SUP.PopcornTime
SUPPRIMÃ clÃ©*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent [BitTorrent Inc.]  =>BitTorrent (P2P)
SUPPRIMÃ clÃ©*: HKCU\Software\webservice []  =>PUP.Optional.BitCoinMiner
SUPPRIMÃ clÃ©*: HKLM\SOFTWARE\Wow6432Node\Firefox []  =>Adware.GhokswaBrowser
SUPPRIMÃ clÃ©: HKLM\SOFTWARE\Firefox []  =>Adware.GhokswaBrowser
SUPPRIMÃ clÃ©*: [X64] HKLM\Software\Classes\Installer\Products\E19AB2E32184B8745B4989678A80C1DC [WinSnare]  =>.SUP.WinSnare
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1 [KMSpico v9.1.3]  =>HackTool.KMSpico
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15869D2EF44B7B8ABE8303D0CC29D116 [C:\Program Files (x86)\WinSnare(4.4.3)\stopweb.bat (Not File)]  =>.SUP.WinSnare
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\180537C143CA9C177AB05F1DC38942F5 [C:\Program Files (x86)\WinSnare(4.4.3)\WinSnare64.dll (Not File)]  =>.SUP.WinSnare
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn Time_is1 [Popcorn Time]  =>.SUP.PopcornTime
SUPPRIMÃ clÃ©*: HKCU\SOFTWARE\9AC889B833F3E6B11E26E438B5C85986 []  =>Hijacker.Browser
SUPPRIMÃ clÃ©*: [X64] HKLM\SOFTWARE\9AC889B833F3E6B11E26E438B5C85986 []  =>Hijacker.Browser
SUPPRIMÃ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{10B98150-9213-4E9E-A640-B5BE20988ADD} [C:\Program Files\KMSpico\AutoPico.exe]  =>HackTool.KMSpico
SUPPRIMÃ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{8DE94DC9-FF97-4AB5-92F1-A9D96F9C59BC} [C:\Program Files\KMSpico\AutoPico.exe]  =>HackTool.KMSpico


---\\  RÃCAPITULATIF DES ÃLÃMENTS TROUVÃS SUR VOTRE STATION. (12)
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/  =>HackTool.KMSpico
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/02/26/superfluous-popcorntime/  =>.SUP.PopcornTime
https://nicolascoolman.eu/2017/06/21/adware-fastdatax/  =>Adware.FastDataX
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.OneSystemCare
https://nicolascoolman.eu/2017/04/11/adware-speedownloader/  =>Adware.SpeeDownloader
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.MyCompanyInc
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.Generic
https://nicolascoolman.eu/2017/09/14/pup-optional-bitcoinminer/  =>PUP.Optional.BitCoinMiner
https://nicolascoolman.eu/2017/02/19/adware-ghokswabrowser/  =>Adware.GhokswaBrowser
https://nicolascoolman.eu/2017/01/12/superfluous-winsnare/  =>.SUP.WinSnare
https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/  =>Hijacker.Browser


---\\  NETTOYAGE ADDITIONNEL. (40)
~ Suppression des ClÃ©s de registre Tracing. (40)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ BILAN DE LA REPARATION
~ RÃ©paration rÃ©alisÃ©e avec succÃ¨s.
~ Ce navigateur est absent  (Mozilla Firefox)
~ Ce navigateur est absent  (Opera Software)


---\\ STATISTIQUES
~ Items scannÃ©s : 733
~ Items trouvÃ©s : 0
~ Items annulÃ©s : 0
~ Items options : 0/7
~ Gain de place (Octets) : 0


~ End of clean in 00h00mn51s

---\\  LISTE DES RAPPORTS (2)
ZHPCleaner-[S]-07042018-19_00_43.txt
ZHPCleaner-[R]-07042018-19_04_13.txt