~ ZHPCleaner v2018.2.13.28 by Nicolas Coolman (2018/02/13)
~ Run by bureau (Administrator)  (14/02/2018 17:29:50)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Scanner
~ Report : C:\Users\bureau\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\bureau\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 16299)


---\\  ALTERNATE DATA STREAM (ADS). (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  SERVICE. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  NAVIGATEUR INTERNET. (11)
TROUVÉ: [rnjh0uf0.default] - user_pref("browser.search.searchengine.alias", "delta-homes");  =>PUP.Optional.DeltaHomes
TROUVÉ: [rnjh0uf0.default] - user_pref("browser.search.searchengine.iconURL", "http://search.delta-homes.com/favicon.ico");  =>PUP.Optional.DeltaHomes
TROUVÉ: [rnjh0uf0.default] - user_pref("browser.search.searchengine.name", "delta-homes");  =>PUP.Optional.DeltaHomes
TROUVÉ: [rnjh0uf0.default] - user_pref("browser.search.searchengine.url", "http://search.delta-homes.com/web/?type=ds&ts=14321280[...]  =>PUP.Optional.DeltaHomes
TROUVÉ: [rnjh0uf0.default] - user_pref("extensions.quick_start.enable_search1", false);  =>PUP.Optional.QuickStart
TROUVÉ: [rnjh0uf0.default] - user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);  =>PUP.Optional.QuickStart
TROUVÉ: [rnjh0uf0.default] - user_pref("igraal._categoryVersion", "null");  =>Toolbar.Graal
TROUVÉ: [rnjh0uf0.default] - user_pref("igraal._current", "{\"login\":\"cybelle93200\",\"key\":\"91d5f4f686e35cf51c8a3777820b9355[...]  =>Toolbar.Graal
TROUVÉ: [rnjh0uf0.default] - user_pref("igraal._users", "[{\"login\":\"cybelle93200\",\"key\":\"91d5f4f686e35cf51c8a3777820b9355\[...]  =>Toolbar.Graal
TROUVÉ: [rnjh0uf0.default] - user_pref("igraal.firstrun", false);  =>Toolbar.Graal
TROUVÉ IE Params: HKEY_USERS\S-1-5-21-2669034086-1012931816-674878275-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page [http://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggbeV8BB1tDQBgQJA1cTA1CG[...]]  =>.SUP.AkamaiHD


---\\  FICHIER HÔTE. (1)
~ Le fichier hôte est légitime. (21)


---\\  TÂCHE PLANIFIÉE. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  EXPLORATEUR  ( Dossiers, Fichiers ). (9)
TROUVÉ fichier: C:\Users\bureau\AppData\Roaming\Mozilla\Firefox\Profiles\rnjh0uf0.default\igraal\categories.xml    =>Toolbar.Graal
TROUVÉ fichier: C:\Users\bureau\AppData\Roaming\Mozilla\Firefox\Profiles\rnjh0uf0.default\igraal\mechants.xml    =>Toolbar.Graal
TROUVÉ fichier: C:\Users\bureau\AppData\Roaming\Mozilla\Firefox\Profiles\rnjh0uf0.default\igraal\user.xml    =>Toolbar.Graal
TROUVÉ dossier: C:\Program Files (x86)\153babe3-e8c4-4acf-8cd6-468c5fb72d31  =>Adware.CrossRider
TROUVÉ dossier: C:\Program Files (x86)\50513724-51c3-498f-a899-f73e52823a24  =>Adware.CrossRider
TROUVÉ dossier: C:\Program Files (x86)\bfaffd20-3b45-48e6-948b-93ea9fcbdc25  =>Adware.CrossRider
TROUVÉ dossier: C:\Users\bureau\AppData\Roaming\Store  =>.SUP.Nosibay
TROUVÉ fichier: C:\Program Files (x86)\Cinema_Plus3.1V13.11\bgNova.html    =>Adware.CrossRider
TROUVÉ dossier: C:\Program Files (x86)\Cinema_Plus3.1V13.11  =>Adware.CrossRider


---\\  BASE DE REGISTRES ( Clés, Valeurs, Données ). (52)
TROUVÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\searchengine@gmail.com [C:\Users\bureau\AppData\Roaming\Mozilla\Firefox\Profiles\rnjh0uf0.default\extensions\searchengine@gmail.com]  =>PUP.Optional.SearchEngine
TROUVÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\quick_searchff@gmail.com [C:\Users\bureau\AppData\Roaming\Mozilla\Firefox\Profiles\rnjh0uf0.default\extensions\quick_searchff@gmail.com]  =>PUP.Optional.QuickSearch
TROUVÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\sweetsearch@gmail.com [C:\Users\bureau\AppData\Roaming\Mozilla\Firefox\Profiles\rnjh0uf0.default\extensions\sweetsearch@gmail.com]  =>PUP.Optional.SweetSearch
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{240373D3-4199-4F41-BB4D-15D5B830C82D} [iGraal BHO]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{240373D3-4199-4F41-BB4D-15D5B830C82D} []  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{240373D3-4199-4F41-BB4D-15D5B830C82D} [iGraal BHO]  =>Toolbar.Graal
TROUVÉ valeur: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{A6790AA5-C6C7-4BCF-A46D-0FDAC4EA90EB} [iGraal Toolbar]  =>Toolbar.Graal
TROUVÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{A6790AA5-C6C7-4BCF-A46D-0FDAC4EA90EB} [iGraal Toolbar]  =>Toolbar.Graal
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} [http://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=[...]] [e]  =>PUP.Optional.DoSearches
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQEBBwAXQwdCbQpcVV1cFQYacRRZAlxBDAZHIgAAV[...]] [Default]  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC} [http://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=[...]] [eBay]  =>PUP.Optional.DoSearches
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E0CFC9BD-7D0B-4D09-8715-5E018AA285AC} [http://www.surf-live.com/web?q={searchTerms}] [Surf Live]  =>.SUP.SurfLiveCom
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} [http://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=[...]] [Google]  =>PUP.Optional.DoSearches
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} [http://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=[...]] [Google]  =>PUP.Optional.DoSearches
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F0EBB4DD-4492-4112-A986-4AB0E0C62B8D} [http://www-searching.com/s.ashx?prd=opensearch&q={searchTerms}&s=FBGzamobl3687,c1ddffd6-0660-491a-a2[...]] [Searching]  =>PUP.Optional.SearchingCom
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F45F3825-925A-42E2-AD93-53CC4FCD004B} [http://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=[...]] [Propositions de recherche Amazon.fr]  =>PUP.Optional.DoSearches
TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQEBBwAXQwdCbQpcVV1cFQYacRRZAlxBDAZHIgAAV[...]] [Default]  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\AppDataLow\Software\iGraal []  =>Toolbar.Graal
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0A114C69-4F7A-448B-8D69-5A0A36400C8C} [C:\Program Files (x86)\iGraal (Not File)]  =>Toolbar.Graal
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\fr.igraal.com [4002]  =>Toolbar.Graal
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\igraal.com []  =>Toolbar.Graal
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\static.audienceinsights.net [43]  =>.SUP.AudienceInsights
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\uniblue.com []  =>.SUP.Uniblue
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.uniblue.com []  =>.SUP.Uniblue
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\SpeedUpMyPC []  =>.SUP.SpeedUpMyPC
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\protector_dll.protectorbho [Google Toolbar Notifier BHO]  =>Adware.BProtector
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 [Google Toolbar Notifier BHO]  =>Adware.BProtector
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\iGraalBHO.IGraalBHOComponent [iGraal BHO]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\iGraalBHO.IGraalBHOComponent.1 [iGraal BHO]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IGraalButton.IGButton [IGButton Class]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IGraalButton.IGButton.1 [IGButton Class]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IGraalComMaster.IGraalComMaster [IGraalComMaster Class]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IGraalComMaster.IGraalComMaster.1 [IGraalComMaster Class]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IGraalToolbar.IGraalToolbarGUI [iGraal Toolbar]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IGraalToolbar.IGraalToolbarGUI.1 [iGraal Toolbar]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{A6790AA5-C6C7-4BCF-A46D-0FDAC4EA90EB} [iGraal Toolbar]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{DCAD96A9-3DDB-40AD-8743-1C2880B1144B} [IGraalComMaster Class]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\iGraal []  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{240373D3-4199-4F41-BB4D-15D5B830C82D} [iGraal]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\ArenaHD []  =>Adware.CrossRider
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Cinema_Plus3.1V13.11 []  =>Adware.CrossRider
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\CinePlus-1.44V09.11 []  =>Adware.CrossRider
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\HighDefAction []  =>Adware.CrossRider
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\iGraal []  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions []  =>PUP.Optional.VidSaver
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 3 []  =>Adware.CrossRider
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\YorkNewCin []  =>Adware.CrossRider
TROUVÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder\\crossbrowse.lnk [0x03000000DAD121F1B820D101]  =>PUP.Optional.CrossBrowse
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{0FB6492F-7FED-4446-9863-992806E1C419}\InprocServer32 [C:\Program Files\iGraal\iGraalButton.dll (Not File)]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{A6790AA5-C6C7-4BCF-A46D-0FDAC4EA90EB}\InprocServer32 [C:\Program Files\iGraal\iGraalToolbar.dll (Not File)]  =>Toolbar.Graal
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{0FB6492F-7FED-4446-9863-992806E1C419} [IGButton Class]  =>Toolbar.Graal
TROUVÉ valeur: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\{58D44214-BD6D-488F-9D59-B737AC5C0049} [C:\Users\bureau\AppData\Local\BrowserAir\Application\BrowserAir.exe]  =>PUP.Optional.BrowserAir


---\\  RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION. (19)
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.DeltaHomes
https://nicolascoolman.eu/2017/09/11/adware-isstart/  =>PUP.Optional.QuickStart
https://nicolascoolman.eu/2017/09/25/toolbar-igraal/  =>Toolbar.Graal
https://nicolascoolman.eu/2017/12/26/sup-akamaihd/  =>.SUP.AkamaiHD
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/  =>Adware.CrossRider
https://www.anti-malware.top/2016/05/03/superfluous-nosibay/  =>.SUP.Nosibay
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.SearchEngine
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.QuickSearch
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.SweetSearch
https://www.nicolascoolman.com/fr/pup-dosearches/  =>PUP.Optional.DoSearches
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.SurfLiveCom
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.SearchingCom
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.AudienceInsights
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Uniblue
https://www.anti-malware.top/2016/08/15/speedupmypc/  =>.SUP.SpeedUpMyPC
https://nicolascoolman.eu/2017/04/12/adware-bprotector/  =>Adware.BProtector
https://nicolascoolman.eu/2017/10/23/adware-vidsaver/  =>PUP.Optional.VidSaver
https://www.nicolascoolman.com/fr/pup-optional-crossbrowse  =>PUP.Optional.CrossBrowse
https://www.nicolascoolman.com/fr/pup-optional-browserair/  =>PUP.Optional.BrowserAir


---\\ BILAN DE LA REPARATION
~ Aucune réparation effectuée.
~ Ce navigateur est absent  (Google Chrome)
~ Ce navigateur est absent  (Opera Software)


---\\ STATISTIQUES
~ Items scannés : 94884
~ Items trouvés : 78
~ Items annulés : 0
~ Items options : 0/7
~ Gain de place (Octets) : 0


~ End of search in 00h06mn04s
ZHPCleaner-[S]-14022018-17_35_54.txt