~ ZHPCleaner v2018.11.1.189 by Nicolas Coolman (2018/11/01)
~ Run by ALL-TECH (Administrator)  (01/11/2018 17:59:55)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Nettoyer
~ Report : C:\Users\ALL-TECH\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\ALL-TECH\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit  (Build 17134)


---\\  ALTERNATE DATA STREAM (ADS). (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  SERVICE. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  NAVIGATEUR INTERNET. (1)
SUPPRIMÉ donnée: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\webcompanion.com\\http [Bad : Sensitive Websites]  =>PUP.Optional.LavasoftWebCompanion


---\\  FICHIER HÔTE. (1)
~ Le fichier hôte est légitime. (24)


---\\  TÂCHE PLANIFIÉE. (1)
SUPPRIMÉ tâche: [wHzBfGdSmIMCzVb] [C:\WINDOWS\Tasks\wHzBfGdSmIMCzVb.job (Not File) ]  =>PUP.Optional.FunSafeTab


---\\  EXPLORATEUR  ( Dossiers, Fichiers ). (11)
DEPLACÉ fichier: C:\Users\ALL-TECH\Desktop\µTorrent.lnk  [Bad : C:\Users\ALL-TECH\AppData\Roaming\uTorrent\uTorrent.exe](.BitTorrent Inc..)  =>BitTorrent (P2P)
DEPLACÉ fichier: C:\Users\ALL-TECH\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk  [Bad : C:\Users\ALL-TECH\AppData\Roaming\uTorrent\uTorrent.exe](.BitTorrent Inc..)  =>BitTorrent (P2P)
DEPLACÉ fichier: C:\Users\ALL-TECH\AppData\Roaming\Mozilla\Firefox\Profiles\0mfv5j1r.default\searchplugins\findit.xml    =>PUP.Optional.SmartBar
DEPLACÉ fichier: C:\Windows\Tasks\wHzBfGdSmIMCzVb.job    =>PUP.Optional.FunSafeTab
DEPLACÉ fichier: C:\Users\ALL-TECH\Downloads\Programs\RegCureProSetup_ED8797F7-2931-4070-8DFD-40977B32FC02_.exe [ParetoLogic, Inc. - RegCure Pro Installer]  =>.SUP.Paretologic
DEPLACÉ fichier: C:\Users\ALL-TECH\Downloads\Programs\uTorrent.exe [BitTorrent Inc. - µTorrent]  =>BitTorrent (P2P)
DEPLACÉ fichier: C:\Users\ALL-TECH\Downloads\Compressed\dev-point\dev-point\RegCure ProSetup.exe [ParetoLogic, Inc. - RegCure Pro Installer]  =>.SUP.Paretologic
DEPLACÉ fichier: C:\Users\ALL-TECH\Downloads\Compressed\dev-point\dev-point\crack\RegCurePro.exe [ParetoLogic, Inc. - RegCure Pro]  =>.SUP.Paretologic
DEPLACÉ dossier: C:\Users\ALL-TECH\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcnaffmmhjoiehncmejkpbgplmjnfapf  =>Hijacker.Browser ["update_url" : "https://clients88.google.com/servi]
DEPLACÉ dossier: C:\Program Files (x86)\Common Files\ParetoLogic  =>.SUP.Paretologic
DEPLACÉ dossier: C:\Users\ALL-TECH\AppData\Roaming\ParetoLogic  =>.SUP.Paretologic


---\\  BASE DE REGISTRES ( Clés, Valeurs, Données ). (15)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} [https://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKA1VtC1mRJr0-E[...]] [Search the web]  =>PUP.Optional.IMBooster
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\ielnksrch [https://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKA1VtC1mRJr0-E[...]] [Search the web]  =>PUP.Optional.IMBooster
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} [https://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKA1VtC1mRJr0-ErReQcgxN9XvHvSxPTcbN7bK0xsjQDNVHhDrIA8mD1lTmkFstoVUQIvi450RYfaFTSXyt8qPZmusI0JDzT8ZMKyw4YZxhMz0F93P4vPys-jMPx1ReYDzMmCBxa9fi8R35hnAJH9-Rp6WLEmkGDZTs3b90puOYq03KmILilgBLV&q={searchTerms}]  =>PUP.Optional.IMBooster
SUPPRIMÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\ielnksrch [https://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKA1VtC1mRJr0-ErReQcgxN9XvHvSxPTcbN7bK0xsjQDNVHhDrIA8mD1lTmkFstoVUQIvi450RYfaFTSXyt8qPZmusI0JDzT8ZMKyw4YZxhMz0F93P4vPys-jMPx1ReYDzMmCBxa9fi8R35hnAJH9-Rp6WLEmkGDZTs3b90puOYq03KmILilgBLV&q={searchTerms}]  =>PUP.Optional.IMBooster
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent [BitTorrent Inc.]  =>BitTorrent (P2P)
SUPPRIMÉ clé*: HKU\S-1-5-21-1608363478-4015215132-2699116129-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com []  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKCU\Software\Lavasoft\Web Companion []  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com []  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\SOFTWARE\Wow6432Node\Lavasoft\Web Companion []  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé: HKLM\SOFTWARE\Lavasoft\Web Companion []  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ clé*: HKLM\System\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence []  =>.SUP.ByteFence
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1655C0CA-7AE7-4012-8502-970C8675E5F8 [Company Inc.]  =>Adware.CloudAtlas
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Web Companion [C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize ]  =>PUP.Optional.LavasoftWebCompanion
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [0x03000000A76175BE3AB9D201]  =>Trojan.Dropper
SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\Web Companion [0x03000000925D0B748671D401]  =>PUP.Optional.LavasoftWebCompanion


---\\  RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION. (10)
https://nicolascoolman.eu/2017/03/12/superfluous-lavasoftwebcompanion/  =>PUP.Optional.LavasoftWebCompanion
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.FunSafeTab
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/09/09/pup-optional-smartbar/  =>PUP.Optional.SmartBar
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Paretologic
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>Hijacker.Browser ["update_url" : "https://clients88.google.com/servi]
https://nicolascoolman.eu/2017/09/08/adware-imbooster/  =>PUP.Optional.IMBooster
https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/  =>.SUP.ByteFence
https://nicolascoolman.eu/2017/08/10/adware-cloudatlas/  =>Adware.CloudAtlas
https://www.anti-malware.top/2016/09/07/trojan-dropper/  =>Trojan.Dropper


---\\  NETTOYAGE ADDITIONNEL. (29)
~ Suppression des Clés de registre Tracing. (29)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ BILAN DE LA REPARATION
~ Réparation réalisée avec succès.
~ Ce navigateur est absent  (Opera Software)


---\\ STATISTIQUES
~ Items scannés : 3599
~ Items trouvés : 0
~ Items annulés : 0
~ Items options : 0/7
~ Gain de place (Octets) : 0


~ End of clean in 00h00mn33s

---\\  LISTE DES RAPPORTS (2)
ZHPCleaner-[S]-01112018-17_59_04.txt
ZHPCleaner-[R]-01112018-18_00_28.txt