~ ZHPFix v2023.3.6.12 by Nicolas Coolman (2023/03/06)
~ Run by UEFM LFS Hyper UEFM (Administrator)  (12/03/2023 21:14:35)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Report : C:\Users\UEFM LFS Hyper UEFM\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 19042)



---\\  SCRIPT DE L'UTILISATEUR.  (83)
Start::
O38 - TASK: {06B146DD-99F1-47BA-946E-2B44E703FA6E} [64Bits][\UCBrowserUpdaterCore] - (.UCWeb Inc - UCBrowser update task.) -- C:\Program Files (x86)\UCBrowser\Application\update_task.exe  [524176] 
O38 - TASK: {CEBCF990-F35F-423F-A0E7-4E82D8733DAB} [64Bits][\UCBrowserUpdater] - (.UCWeb Inc - UCBrowser update task.) -- C:\Program Files (x86)\UCBrowser\Application\update_task.exe  [524176] 
C:\WINDOWS\System32\Tasks\UCBrowserUpdaterCore - (.UCWeb Inc.) -- C:\Program Files (x86)\UCBrowser\Application\update_task.exe  [/task=1] 
C:\WINDOWS\System32\Tasks\UCBrowserUpdater - (.UCWeb Inc.) -- C:\Program Files (x86)\UCBrowser\Application\update_task.exe  [/update] 
O4 - HKCU\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe {6DA0E6F83A7CAEB158D4352B4F324391}.
O4 - HKUS\S-1-5-21-158993690-1269080673-3091534466-1000\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe {6DA0E6F83A7CAEB158D4352B4F324391}.
IE Restricted Site Good: webcompanion.com
O4 - GS\CommonDesktop [Public]: Advanced System Protector.lnk . (...) D:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe   [Unsigned]
HKU\S-1-5-21-158993690-1269080673-3091534466-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
HKCU\Software\OneSafe PC Cleaner
HKCU\Software\Lavasoft\Web Companion
HKCU\Software\UCBrowserPID
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
HKLM\SOFTWARE\Wow6432Node\Lavasoft\Web Companion
HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
HKLM\SOFTWARE\Lavasoft\Web Companion
HKLM\SOFTWARE\UCBrowserPID
HKLM\SOFTWARE\WOW6432Node\Systweak
HKCU\SOFTWARE\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b
HKCU\SOFTWARE\Systweak
HKCU\SOFTWARE\WinThruster
HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b
HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\Onesafe PC Cleaner
HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\Systweak
HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\WinThruster
O68 - StartMenuInternet: <UCBrowser> <UC Browser> [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.UCWeb Inc. - UC Browser.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O68 - StartMenuInternet: <UCBrowser> <UC Browser> [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.UCWeb Inc. - UC Browser.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O68 - StartMenuInternet: <UCBrowser> <UC Browser> [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.UCWeb Inc. - UC Browser.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
HKLM\SYSTEM\CurrentControlSet\Services\WCAssistantService
C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
HKLM\SYSTEM\CurrentControlSet\Services\DCIService
C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
C:\Program Files (x86)\UCBrowser\Application\update_task.exe
C:\WINDOWS\System32\Tasks\UCBrowserUpdaterCore
C:\WINDOWS\System32\Tasks\UCBrowserUpdater
C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster_is1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{e8f510b9-bc6f-44bc-9937-b3b21ed7bb4b}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster_is1
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{e8f510b9-bc6f-44bc-9937-b3b21ed7bb4b}
C:\Program Files\WinZip Driver Updater
C:\Program Files\WinZip Smart Monitor
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Onesafe PC Cleaner
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster
C:\ProgramData\Fighters
C:\ProgramData\Onesafe PC Cleaner
C:\ProgramData\Systweak
C:\ProgramData\WinThruster
C:\Users\UEFM LFS Hyper UEFM\AppData\Roaming\Onesafe PC Cleaner
C:\Users\UEFM LFS Hyper UEFM\AppData\Roaming\Systweak
C:\Users\UEFM LFS Hyper UEFM\AppData\Roaming\WinThruster
C:\Users\UEFM LFS Hyper UEFM\AppData\Local\Systweak
C:\Users\UEFM LFS Hyper UEFM\AppData\Local\UCBrowser
C:\WINDOWS\Prefetch\SETUP_WINTHRUSTER_2023.TMP-169D60D8.pf
C:\WINDOWS\Prefetch\SETUP_WINTHRUSTER_2023.TMP-9B0DFC57.pf
C:\WINDOWS\Prefetch\WINZIP SMART MONITOR SERVICE.-24C22C40.pf
C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
HKU\S-1-5-21-158993690-1269080673-3091534466-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
HKCU\Software\OneSafe PC Cleaner
HKCU\Software\Lavasoft\Web Companion
HKCU\Software\UCBrowserPID
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
HKLM\SOFTWARE\Wow6432Node\Lavasoft\Web Companion
HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
HKLM\SOFTWARE\Lavasoft\Web Companion
HKLM\SOFTWARE\UCBrowserPID
C:\Program Files (x86)\lavasoft\web companion
C:\ProgramData\lavasoft\web companion
C:\Users\UEFM LFS Hyper UEFM\AppData\Roaming\Lavasoft\Web Companion
C:\WINDOWS\System32\config\systemprofile\AppData\Local\UCBrowser
C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\UCBrowser
C:\ProgramData\WinZip\WinZip Driver Updater
C:\ProgramData\Application Data\lavasoft\web companion
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
[1B1EC21AE98AB29E1C15E384F1311011] [11/03/2023] (.Lavasoft Software Canada Inc..) - C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
EmptyPrefetch
EmptyClsid




---\\  LOGICIEL.  (0)


---\\  SERVICE.  (0)


---\\  TÃCHE PLANIFIÃE.  (0)


---\\  NAVIGATEUR INTERNET.  (2)
SUPPRIMÃ ClÃ© StartMenuInternet: HKLM64\SOFTWARE\Clients\StartMenuInternet\UCBrowser [UCBrowser.exe]
ABSENT ClÃ© StartMenuInternet: HKLM64\SOFTWARE\Clients\StartMenuInternet\UCBrowser


---\\  EXPLORATEUR ( Dossiers, Fichiers ).  (12)
DEPLACÃ Fichier  Tasks: C:\WINDOWS\System32\Tasks\UCBrowserUpdater
SUPPRIMÃ RedÃ©marrage  Fichier  Shortcut^: C:\Users\UEFM LFS Hyper UEFM\Desktop\
DEPLACÃ Fichier : C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
DEPLACÃ Fichier : C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
DEPLACÃ Fichier : C:\Program Files (x86)\UCBrowser\Application\update_task.exe
DEPLACÃ Fichier : C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
SUPPRIMÃ RedÃ©marrage  Dossier ^: C:\Program Files\WinZip Driver Updater
SUPPRIMÃ RedÃ©marrage  Dossier ^: C:\Users\UEFM LFS Hyper UEFM\AppData\Local\UCBrowser
DEPLACÃ Fichier : C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
SUPPRIMÃ RedÃ©marrage  Dossier ^: C:\Program Files (x86)\lavasoft\web companion
SUPPRIMÃ RedÃ©marrage  Dossier ^: C:\ProgramData\lavasoft\web companion
SUPPRIMÃ RedÃ©marrage  Dossier ^: C:\ProgramData\Application Data\lavasoft\web companion


---\\  REGISTRE ( ClÃ©s, Valeurs, DonnÃ©es ).  (27)
ABSENT Valeur Run: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe {6DA0E6F83A7CAEB158D4352B4F324391}.]
ABSENT Valeur Run: HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe {6DA0E6F83A7CAEB158D4352B4F324391}.]
ABSENT ClÃ©: HKU\S-1-5-21-158993690-1269080673-3091534466-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
ABSENT ClÃ©: HKCU\Software\OneSafe PC Cleaner
ABSENT ClÃ©: HKCU\Software\Lavasoft\Web Companion
ABSENT ClÃ©: HKCU\Software\UCBrowserPID
ABSENT ClÃ©: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
ABSENT ClÃ©: HKLM\SOFTWARE\Wow6432Node\Lavasoft\Web Companion
ABSENT ClÃ©: HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
ABSENT ClÃ©: HKLM\SOFTWARE\Lavasoft\Web Companion
ABSENT ClÃ©: HKLM\SOFTWARE\UCBrowserPID
ABSENT ClÃ©: HKLM\SOFTWARE\WOW6432Node\Systweak
SUPPRIMÃ ClÃ©: HKCU\SOFTWARE\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b [d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b]
ABSENT ClÃ©: HKCU\SOFTWARE\Systweak
ABSENT ClÃ©: HKCU\SOFTWARE\WinThruster
ABSENT ClÃ©: HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b
ABSENT ClÃ©: HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\Onesafe PC Cleaner
ABSENT ClÃ©: HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\Systweak
ABSENT ClÃ©: HKU\S-1-5-21-158993690-1269080673-3091534466-1000\SOFTWARE\WinThruster
SUPPRIMÃ ClÃ©: HKLM\SYSTEM\CurrentControlSet\Services\WCAssistantService [WCAssistantService]
SUPPRIMÃ ClÃ©: HKLM\SYSTEM\CurrentControlSet\Services\DCIService [DCIService]
ABSENT ClÃ©: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
ABSENT ClÃ©: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster_is1
ABSENT ClÃ©: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{e8f510b9-bc6f-44bc-9937-b3b21ed7bb4b}
ABSENT ClÃ©: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
ABSENT ClÃ©: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster_is1
ABSENT ClÃ©: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{e8f510b9-bc6f-44bc-9937-b3b21ed7bb4b}


---\\  COMMANDE.  (2)
~ EmptyPrefetch: Fichiers Prefetcher supprimÃ©s (207)
~ EmptyCSID: Dossiers CLSID vides supprimÃ©s  (0)


---\\  NON TRAITÃ.  (1)
[1B1EC21AE98AB29E1C15E384F1311011] [11/03/2023] (.Lavasoft Software Canada Inc..) - C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe

~ Le systÃ¨me a Ã©tÃ© redÃ©marrÃ©.

***** ~ Fin de rapport terminÃ© en 54mn01s