~ ZHPCleaner v2024.10.21.29 by Nicolas Coolman (2024/10/21)
~ Run by lelar (Administrator)  (16/11/2024 09:45:22)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Nettoyer
~ Report : C:\Users\lelar\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\lelar\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ System Restore Point : OK
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 11, 64-bit  (Build 22631)


---\\  ALTERNATE DATA STREAM (ADS). (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  SERVICE. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  NAVIGATEUR INTERNET. (0)


---\\  FICHIER HÔTE. (1)
~ Le fichier hôte est légitime. (1)


---\\  TÂCHE PLANIFIÉE. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  EXPLORATEUR  ( Dossiers, Fichiers ). (25)
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Microsoft\Edge\User Data\Default\History    =>.SUP.BrowserHistoric
DEPLACÉ fichier: C:\Users\lelar\AppData\Local\Microsoft\Edge\User Data\Default\Preferences    =>Préférences Chromium
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\06112417-5e8f-40a1-b1c2-962a2976e219.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\69fa23e0-5819-41e8-b400-d355860807db.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\81c33110-d69e-40c3-be38-152bcff2043b.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\a26028cf-014f-4c89-aa9f-d238dfb5cbe4.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\APPX.018v5tz3n3hxr4ct8cg3rto0c.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\APPX.nvsapqckihon2sv_cp8smhbsd.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\bf86b97a-80c6-4aca-afe8-9b52e3722f33.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\eec12dca-ad12-4598-b39d-4ebca1e22f1d.tmp    =>.SUP.Temporary.Empty
DEPLACÉ fichier: C:\Users\lelar\AppData\Local\Temp\mat-debug-13688.log    =>.SUP.Temporary.Empty
DEPLACÉ fichier: C:\Users\lelar\AppData\Local\Temp\mat-debug-18784.log    =>.SUP.Temporary.Empty
DEPLACÉ fichier^: C:\Users\lelar\AppData\Local\Temp\mat-debug-21272.log    =>.SUP.Temporary.Empty
DEPLACÉ fichier: C:\Users\lelar\AppData\Local\Temp\mat-debug-22236.log    =>.SUP.Temporary.Empty
DEPLACÉ fichier: C:\Users\lelar\AppData\Local\Temp\wctD310.tmp    =>.SUP.Temporary.Office
DEPLACÉ dossier: C:\Users\lelar\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data  =>.SUP.BrowserCache
DEPLACÉ dossier: C:\Users\lelar\AppData\Local\Mozilla\Firefox\Profiles\vjszpzpw.default\Cache2  =>.SUP.BrowserCache
DEPLACÉ dossier: C:\Users\lelar\AppData\Local\Mozilla\Firefox\Profiles\x43s42p8.default-release\Cache2  =>.SUP.BrowserCache
DEPLACÉ dossier: C:\Users\lelar\AppData\Local\Thunderbird\Profiles\vjszpzpw.default\Cache2  =>.SUP.BrowserCache
DEPLACÉ dossier: C:\Users\lelar\AppData\Local\Thunderbird\Profiles\x43s42p8.default-release\Cache2  =>.SUP.BrowserCache
DEPLACÉ dossier: C:\windows\Installer\MSI26FF.tmp-  =>.SUP.Empty
DEPLACÉ dossier: C:\windows\Installer\MSI2913.tmp-  =>.SUP.Empty
DEPLACÉ dossier: C:\windows\Installer\MSI5044.tmp-  =>.SUP.Empty
DEPLACÉ dossier: C:\Users\lelar\AppData\LocalLow\Canon Easy-WebPrint EX  =>.SUP.Empty
DEPLACÉ dossier: C:\Users\lelar\AppData\LocalLow\Canon Easy-WebPrint EX2  =>.SUP.Empty


---\\  BASE DE REGISTRES ( Clés, Valeurs, Données ). (31)
SUPPRIMÉ donnée: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{fa188035-a51c-4483-8fcd-f4ee84714ae6}\\DhcpNameServer [Bad : 202.96.134.133 202.96.128.166]  =>Hijacker.Browser
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2452244457-2917760525-2260722594-1004\SOFTWARE\Classes\AppXq0pwa73vfcn2qdexp8cexcc6qk87xh1r []  =>Adware.Navipromo
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05B6C6C5DBD17C8588F381F8D78C5F3A [C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\Lang\ja-JP\LayerPanelToolPlugin_strings_ja-JP.xml.fx]  =>PUP.Optional.ToolPlugin
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\logioptionsplus_setup.exe.FriendlyAppName [Logi Options+ Setup]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\logioptionsplus_setup.exe.ApplicationCompany [Logitech, Inc.]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\7zS8E97348E\setup-stub.exe.FriendlyAppName [Firefox Installer]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\7zS8E97348E\setup-stub.exe.ApplicationCompany [Mozilla Corporation]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\MSETUP4.EXE.FriendlyAppName [Master Setup]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\MSETUP4.EXE.ApplicationCompany [CANON INC.]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\win-mg7100-1_1-mcd\win\TUTO\StartHtm.exe.FriendlyAppName [StartHtm MFC]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\win-mg7100-1_1-mcd\win\TUTO\StartHtm.exe.ApplicationCompany [CANON INC.]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\Canon\IJ Setup Guide\Easy Tutorial Viewer\ctview.exe.FriendlyAppName [Easy Tutorial Viewer]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\Canon\IJ Setup Guide\Easy Tutorial Viewer\ctview.exe.ApplicationCompany [CANON INC.]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\win-mg7100-1_1-mcd\win\DL_FOLDER\MPDRIVER_DL\MPDRIVER_DL\mp68-win-mg7100-1_01-ea32_2\DrvSetup\SETUP64.exe.FriendlyAppName [Canon IJ Driver Installer]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\win-mg7100-1_1-mcd\win\DL_FOLDER\MPDRIVER_DL\MPDRIVER_DL\mp68-win-mg7100-1_01-ea32_2\DrvSetup\SETUP64.exe.ApplicationCompany [CANON INC.]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\win-mg7100-1_1-mcd\win\DL_FOLDER\EGV_DL\EGV_DL\emnl-win-mg7100-1_00-mcd\StartHtm.exe.FriendlyAppName [StartHtm MFC]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\win-mg7100-1_1-mcd\win\DL_FOLDER\EGV_DL\EGV_DL\emnl-win-mg7100-1_00-mcd\StartHtm.exe.ApplicationCompany [CANON INC.]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\06555a8c-4d99-4b53-9297-99005c2bac35_NPE_free.zip.c35\NPE_free.exe.FriendlyAppName [NIUBI Partition Editor Free Edition]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\06555a8c-4d99-4b53-9297-99005c2bac35_NPE_free.zip.c35\NPE_free.exe.ApplicationCompany [NIUBI Technology Co., Ltd.]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\LogiCaptureInstall\LCaptureInstallerUI.exe.FriendlyAppName [LogiInstaller]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\LogiCaptureInstall\LCaptureInstallerUI.exe.ApplicationCompany [Logitech]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\5be7af46-300d-40c9-8032-766b5c25b958_paint.net.5.0.13.install.anycpu.web.zip.958\paint.net.5.0.13.install.anycpu.web.exe.FriendlyAppName [paint.net Setup]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\7zS855C722A\x64\SetupDownloader\SetupDownloader.exe.FriendlyAppName [paint.net Setup Downloader]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\7zS855C722A\x64\SetupDownloader\SetupDownloader.exe.ApplicationCompany [dotPDN LLC]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\PdnSetupDownloader\0ea6dc8f-a588-4b7f-ace8-f6642c9fb22e\paint.net.5.0.13.install.x64.exe.FriendlyAppName [paint.net Setup]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\7zS08D8B71B\x64\SetupFrontEnd.exe.FriendlyAppName [paint.net Setup Wizard]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\7zS08D8B71B\x64\SetupFrontEnd.exe.ApplicationCompany [dotPDN LLC]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\Downloads\adwcleaner.exe.FriendlyAppName [AdwCleaner]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\Downloads\adwcleaner.exe.ApplicationCompany [Malwarebytes]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe [Foxit PDF Reader]  =>.SUP.Orphan.MUICache
SUPPRIMÉ valeur: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\\C:\Users\lelar\AppData\Local\Temp\downloader_easeus\1.0.0\47trial\EDownloader.exe.FriendlyAppName [EDownloader]  =>.SUP.Orphan.MUICache


---\\  RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION. (10)
https://nicolascoolman.eu/2023/07/18/les-caches-et-historiques-de-navigateurs/  =>.SUP.BrowserHistoric
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>Préférences Chromium
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.Temporary.Empty
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.Temporary.Office
https://nicolascoolman.eu/2023/07/18/les-caches-et-historiques-de-navigateurs/  =>.SUP.BrowserCache
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.Empty
https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/  =>Hijacker.Browser
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>Adware.Navipromo
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>PUP.Optional.ToolPlugin
https://nicolascoolman.eu/forum/Topic/2024/08/26/muicache-cle-de-registre/  =>.SUP.Orphan.MUICache


---\\  NETTOYAGE ADDITIONNEL. (24)
~ Suppression des Clés de registre Tracing. (24)
~ Suppression des anciens rapports ZHPCleaner. (0)


---\\ BILAN DE LA REPARATION
~ Réparation réalisée avec succès.
~ Microsoft Edge OK
~ Mozilla Firefox OK
~ Microsoft Internet Explorer OK
~ Thunderbird OK
~ Le système a été redémarré.


---\\ STATISTIQUES
~ Items scannés : 1829
~ Items trouvés : 0
~ Items annulés : 0
~ Gain de place (Octets) : 1779
~ Items options : 15/18


---\\ OPTIONS DESACTIVÉES
~ Afficher le bilan
~ Afficher le rapport
~ Initialiser les navigateurs avec suppression des extensions





~ End of clean in 00h01mn51s

---\\  LISTE DES RAPPORTS (2)
ZHPCleaner-[S]-16112024-09_42_55.txt
ZHPCleaner-[R]-16112024-09_47_13.txt