Commentaire : ZHPCleaner
Format du document : text/plain
Prévisualisation
~ ZHPCleaner v2017.7.17.123 by Nicolas Coolman (2017/07/17)
~ Run by Mamoudou (Administrator) (30/07/2017 23:53:09)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Illegal
~ Type : Nettoyer
~ Report : C:\Users\Mamoudou\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Mamoudou\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
---\\ Service. (0)
---\\ Navigateur internet. (2)
SUPPRIMÉ: [yoqv6ey6.default] - user_pref("browser.newtab.url", "http://www.trovi.com/?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISI[...] =>PUP.Optional.TroviCom
SUPPRIMÉ: [yoqv6ey6.default] - user_pref("extensions.xpiState", "{\"app-profile\":{\"uBlock0@raymondhill.net\":{\"d\":\"C:\\\\Users[...] =>PUP.Optional.KeepVid
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (2)
SUPPRIMÉ tâche: [WinThruster64-Mamoudou-Notification] [C:\Windows\Tasks\WinThruster64-Mamoudou-Notification.job (Not File) ] =>.Superfluous.WinThruster
SUPPRIMÉ tâche: [WinThruster64-Mamoudou-Startup] [C:\Windows\Tasks\WinThruster64-Mamoudou-Startup.job (Not File) ] =>.Superfluous.WinThruster
---\\ Explorateur ( Dossiers, Fichiers ). (19)
DEPLACÉ fichier: C:\Users\Mamoudou\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\KeepVid Pro.lnk [Bad : C:\Program Files (x86)\KeepVid\KeepVid Pro\KeepVidPro.exe](.KeepVid.) =>PUP.Optional.KeepVid
DEPLACÉ fichier: C:\Users\Public\Desktop\KeepVid Pro.lnk [Bad : C:\Program Files (x86)\KeepVid\KeepVid Pro\KeepVidPro.exe](.KeepVid.) =>PUP.Optional.KeepVid
DEPLACÉ fichier^: C:\Program Files (x86)\KeepVid\KeepVid Pro\BrowserPlugin\kvallmytube@keepvid.com_xpi =>PUP.Optional.KeepVid
DEPLACÉ fichier: C:\Program Files (x86)\KeepVid\KeepVid Pro\BrowserPlugin\KVBrowserAppMgr.dll [ - Browser Helper Object] =>PUP.Optional.KeepVid
DEPLACÉ fichier: C:\Program Files (x86)\KeepVid\KeepVid Pro\KeepVidProUpdateHelper.exe [Copyright (C) 2017 Studio. All rights reserved. - WsUpdateHelper] =>PUP.Optional.KeepVid
DEPLACÉ fichier: C:\Windows\Tasks\WinThruster64-Mamoudou-Notification.job =>.Superfluous.WinThruster
DEPLACÉ fichier: C:\Windows\Tasks\WinThruster64-Mamoudou-Startup.job =>.Superfluous.WinThruster
DEPLACÉ fichier: C:\Users\Mamoudou\Downloads\keepvid-pro-desktop_full2957.exe [KeepVid Studio - KeepVid Pro Setup] =>PUP.Optional.KeepVid
DEPLACÉ fichier: C:\Users\Mamoudou\Downloads\Setup_DriverDoc_2016.exe [Solvusoft Corporation - DriverDoc Installation] =>.Superfluous.Solvusoft
DEPLACÉ fichier: C:\Users\Mamoudou\Downloads\Setup_WinThruster_2016.exe [Solvusoft Corporation - WinThruster Installation] =>.Superfluous.WinThruster
DEPLACÉ dossier*: C:\Program Files (x86)\KeepVid =>PUP.Optional.KeepVid
DEPLACÉ dossier*: C:\ProgramData\KeepVid =>PUP.Optional.KeepVid
DEPLACÉ dossier*: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeepVid =>PUP.Optional.KeepVid
DEPLACÉ dossier*: C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft =>.Superfluous.Solvusoft
DEPLACÉ dossier*: C:\Windows\System32\config\systemprofile\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect
DEPLACÉ dossier*: C:\Users\Mamoudou\AppData\Roaming\KeepVid =>PUP.Optional.KeepVid
DEPLACÉ dossier*: C:\Users\Mamoudou\AppData\Local\Keepvid =>PUP.Optional.KeepVid
DEPLACÉ dossier: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft =>.Superfluous.Solvusoft
DEPLACÉ dossier: C:\Windows\SysWOW64\config\systemprofile\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect
---\\ Base de Registres ( Clés, Valeurs, Données ). (53)
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=27CD0954-0858-4D9C-[...]] [Trovi] =>PUP.Optional.Trovigo
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9B65201-3D7F-48DA-AAB3-57A6FAD648FD} [] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9B65201-3D7F-48DA-AAB3-57A6FAD648FD} [] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9B65201-3D7F-48DA-AAB3-57A6FAD648FD} [] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F9B65201-3D7F-48DA-AAB3-57A6FAD648FD} [KeepVid Pro 4.10.0] =>PUP.Optional.KeepVid
SUPPRIMÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [http://www.trovi.com/Results.aspx?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=27CD0954-0858-4D9C-B054-BE4E49A225E4&SearchSource=58&CUI=&UM=8&UP=SPF385CB0B-3888-4F8B-9CD6-33BF0C4E4740&D=100416&q={searchTerms}&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=&SSPV=] =>PUP.Optional.Trovigo
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97 [Avast Software] =>PUM.Misplaced.Certificate
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\WsDrvInst [C:\Program Files (x86)\KeepVid\KeepVid Pro\DriverInstall.exe (Not File)] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\KeepVid Pro_is1 [KeepVid Studio] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\KVBrowserAppMgr.KVAllmytubechrome [] =>Adware.CrossRider
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\KeepVidProUpdateHelper_RASAPI32 [] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Tracing\KeepVidProUpdateHelper_RASMANCS [] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02AD40ADC378E90409702FA67B6979E5 [C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe (Not File)] =>.Superfluous.Solvusoft
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04F13554A61855C42A5E5357B092AD7F [C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft\WinThruster\Outils de support\ (Not File)] =>.Superfluous.Solvusoft
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0621E6E1B6B52EF44B62539982EA7B3D [C:\Program Files\Solvusoft\WinThruster\OEMData.pkt (Not File)] =>.Superfluous.Solvusoft
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07B51C13962E8BF49BAFEA042FB2D4A6 [C?\Program Files (x86)\Solvusoft\Tray\SuiteClient.dll] =>.Superfluous.Solvusoft
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\KeepVid [] =>PUP.Optional.KeepVid
SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\KeepVid Pro_is1 [KeepVid Studio] =>PUP.Optional.KeepVid
SUPPRIMÉ valeur: HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions\\KVAllmytube@KeepVid.com [C:\Program Files (x86)\KeepVid\KeepVid Pro\BrowserPlugin\kvallmytube@keepvid.com_xpi] =>PUP.Optional.KeepVid
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\KeepVidProUpdateHelper.exe [C:\Program Files (x86)\KeepVid\KeepVid Pro\KeepVidProUpdateHelper.exe] =>PUP.Optional.KeepVid
SUPPRIMÉ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\sfhtml.dll [1] =>.Superfluous.Solvusoft
SUPPRIMÉ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe [1] =>.Superfluous.Solvusoft
SUPPRIMÉ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\Translations\Language_EN.xml [1] =>.Superfluous.Solvusoft
SUPPRIMÉ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\ProgramData\Solvusoft\Tray\Menu\products_list.xml [1] =>.Superfluous.Solvusoft
SUPPRIMÉ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\ProgramData\Solvusoft\Tray\Configurations\TKTRAY.xml [1] =>.Superfluous.Solvusoft
SUPPRIMÉ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\SuiteClient.dll [1] =>.Superfluous.Solvusoft
SUPPRIMÉ valeur: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\\C:\Program Files (x86)\Solvusoft\Tray\MsgSys.exe [1] =>.Superfluous.Solvusoft
---\\ Récapitulatif des éléments trouvés sur votre station. (8)
https://www.nicolascoolman.com/fr/hijacker-trovicom/ =>PUP.Optional.TroviCom
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.KeepVid
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.WinThruster
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Solvusoft
https://nicolascoolman.eu/2017/02/07/pup-optional-searchprotect/ =>PUP.Optional.SearchProtect
https://www.nicolascoolman.com/fr/hijacker-trovigo/ =>PUP.Optional.Trovigo
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
---\\ Nettoyage Additionnel. (29)
~ Suppression des Clés de registre Tracing. (29)
~ Suppression des anciens rapports ZHPCleaner. (0)
---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Google Chrome)
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.
---\\ Statistiques
~ Items scannés : 908
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 77
~ End of clean in 00h03mn50s
~====================
ZHPCleaner-[R]-30072017-23_56_59.txt
ZHPCleaner-[S]-30072017-23_50_13.txt