~ ZHPCleaner v2016.12.21.221 by Nicolas Coolman (2016/12/21) ~ Run by zakya (Administrator) (21/12/2016 13:19:30) ~ Web: https://www.nicolascoolman.com ~ Blog: https://www.anti-malware.top ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Scanner ~ Report : C:\Users\zakya\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\zakya\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 10 Home, 64-bit (Build 14393) ---\\ Service. (3) [R] TROUVÉ : iSafeService =>.Superfluous.Elex [R] TROUVÉ : WinSAPSvc =>PUP.Optional.Youndoo [R] TROUVÉ : FirefoxU =>Adware.Mutabaha ---\\ Navigateur internet. (0) ~ Aucun élément malicieux ou superflu trouvé. ---\\ Fichier hôte. (1) ~ Le fichier hôte est légitime. (31) ---\\ Tâche planifiée. (2) TROUVÉ tâche: [UCBrowserUpdater] [C:\Program Files (x86)\UCBrowser\Application\update_task.exe] =>PUP.Optional.CertifiedToolbar TROUVÉ tâche: [UCBrowserUpdater] [C:\Windows\Tasks\UCBrowserUpdater.job] =>PUP.Optional.CertifiedToolbar ---\\ Explorateur ( Dossiers, Fichiers ). (50) TROUVÉ fichier: C:\Users\zakya\Desktop\Gmail.lnk [Bad : C:\Users\zakya\AppData\Local\BrowserAir\Application\BrowserAir.exe](..) =>PUP.Optional.BrowserAir TROUVÉ fichier: C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [Elex do Brasil Participações Ltda - iSafe Kernel Driver] =>.Superfluous.Elex TROUVÉ fichier: C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver] =>.Superfluous.Elex TROUVÉ fichier: C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [Elex do Brasil Participações Ltda - YAC Monitor Driver] =>.Superfluous.Elex TROUVÉ fichier: C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver] =>.Superfluous.Elex TROUVÉ fichier: C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [Elex do Brasil Participações Ltda - iSafeSvc] =>.Superfluous.Elex TROUVÉ fichier: C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe [Copyright (C) 2016 Firefox Authors - Firefox] =>Adware.Mutabaha TROUVÉ fichier: C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver] =>.Superfluous.Elex TROUVÉ fichier: C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP)] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\Desktop\Gmail.lnk =>PUP.Optional.BrowserAir TROUVÉ fichier: C:\Program Files (x86)\UCBrowser\Application\update_task.exe [UCWeb Inc - UCBrowser update task] =>PUP.Optional.CertifiedToolbar TROUVÉ fichier: C:\Windows\Tasks\UCBrowserUpdater.job =>PUP.Optional.CertifiedToolbar TROUVÉ fichier: C:\Windows\Prefetch\KUAIZIP.EXE-D67758DC.pf =>.Superfluous.ShanghaiGuangle TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\wct1439.tmp =>.Superfluous.Temporary.OneDrive TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\wct47AC.tmp =>.Superfluous.Temporary.OneDrive TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\wct5E1C.tmp =>.Superfluous.Temporary.OneDrive TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\wctA3E4.tmp =>.Superfluous.Temporary.OneDrive TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\wctC9D1.tmp =>.Superfluous.Temporary.OneDrive TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\wctD0D9.tmp =>.Superfluous.Temporary.OneDrive TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\mininewsrepair.exe [ - mininewsrepair] =>.Superfluous.Tencent TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@42A4.tmp [Elex do Brasil Participações Ltda - uninstal] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@42E4.tmp [Elex do Brasil Participações Ltda - libcurl wrapper] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@42F4.tmp [Elex do Brasil Participações Ltda - iCommon] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@4343.tmp [Elex do Brasil Participações Ltda - iImportLib] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@43B2.tmp [Elex do Brasil Participações Ltda - isafebase] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@4549.tmp [Elex do Brasil Participações Ltda - Module Config] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@4605.tmp [Elex do Brasil Participações Ltda - isafepxy] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@4616.tmp [Elex do Brasil Participações Ltda - isaferpt] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@481B.tmp [The cURL library, http://curl.haxx.se/ - libcurl Shared Library] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@48CC.tmp [Elex do Brasil Participações Ltda - ouilib] =>.Superfluous.Elex TROUVÉ fichier: C:\Users\zakya\AppData\Local\Temp\_@491D.tmp [(C) 1995-2004 Jean-loup Gailly & Mark Adler - zlib data compression library] =>.Superfluous.Elex TROUVÉ fichier: C:\Windows\System32\log\iSafeKrnlCall.log =>.Superfluous.YetAnotherCleaner TROUVÉ fichier: C:\Windows\System32\Drivers\iSafeNetFilter.sys [Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP)] =>.Superfluous.YetAnotherCleaner TROUVÉ fichier: C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver] =>.Superfluous.YetAnotherCleaner TROUVÉ fichier: C:\Program Files (x86)\WinArcher\Archer.dll [Fun Dw - Fun Dw] =>PUP.Optional.Youndoo TROUVÉ dossier: C:\Program Files (x86)\Elex-tech\YAC =>.Superfluous.Elex TROUVÉ dossier: C:\Program Files (x86)\Elex-tech =>.Superfluous.Elex TROUVÉ dossier: C:\Program Files (x86)\WinArcher =>PUP.Optional.Youndoo TROUVÉ fichier: C:\ProgramData\WinSAPSvc\WinSAP.dll =>PUP.Optional.Youndoo TROUVÉ dossier: C:\ProgramData\WinSAPSvc =>PUP.Optional.Youndoo TROUVÉ fichier: C:\Users\zakya\AppData\Roaming\KuaiZip\ktpop3.exe [Copyright (C) 2016 - Tpop3] =>.Superfluous.ShanghaiGuangle TROUVÉ fichier: C:\Users\zakya\AppData\Roaming\KuaiZip\kyxktt.exe [上海广乐网络科技有限公司 - 4.1.1.1] =>.Superfluous.ShanghaiGuangle TROUVÉ fichier: C:\Users\zakya\AppData\Roaming\KuaiZip\mininewsxktt.zip =>.Superfluous.ShanghaiGuangle TROUVÉ fichier: C:\Users\zakya\AppData\Roaming\KuaiZip\report_config.txt =>.Superfluous.ShanghaiGuangle TROUVÉ fichier: C:\Users\zakya\AppData\Roaming\KuaiZip\tpop3.zip =>.Superfluous.ShanghaiGuangle TROUVÉ dossier: C:\Users\zakya\AppData\Roaming\Elex-tech\YAC =>.Superfluous.Elex TROUVÉ dossier: C:\Users\zakya\AppData\Roaming\Elex-tech =>.Superfluous.Elex TROUVÉ dossier: C:\Users\zakya\AppData\Roaming\KuaiZip =>.Superfluous.ShanghaiGuangle TROUVÉ dossier: C:\Program Files (x86)\Elex-tech\YAC =>.Superfluous.YetAnotherCleaner TROUVÉ dossier: C:\Users\zakya\AppData\Local\svchost =>Trojan.Agent ---\\ Base de Registres ( Clés, Valeurs, Données ). (34) TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnl [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys](..) =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlKit [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys](..) =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlMon [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys](..) =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlR3 [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys](..) =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeService [C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe](..) =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\WinSAPSvc [C:\Windows\SysWOW64\svchost.exe](..) =>PUP.Optional.Youndoo TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\FirefoxU [C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe] =>Adware.Mutabaha TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnl [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys] =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlBoot [C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys] =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlKit [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys] =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlMon [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys] =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlR3 [C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys] =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeNetFilter [C:\Windows\System32\DRIVERS\iSafeNetFilter.sys] =>.Superfluous.Elex TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeService [C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe] =>.Superfluous.Elex TROUVÉ clé: HKEY_USERS\S-1-5-21-845223103-2790988578-3393172307-1001\SOFTWARE\KuaiZip [] =>.Superfluous.ShanghaiGuangle TROUVÉ clé: HKEY_USERS\S-1-5-21-845223103-2790988578-3393172307-1001\SOFTWARE\Classes\.7z [KuaiZip.7z] =>.Superfluous.ShanghaiGuangle TROUVÉ clé: HKEY_USERS\S-1-5-21-845223103-2790988578-3393172307-1001\SOFTWARE\Classes\.flac [KuaiZipMount.flac] =>.Superfluous.ShanghaiGuangle TROUVÉ clé: HKEY_USERS\S-1-5-21-845223103-2790988578-3393172307-1001\SOFTWARE\Classes\.rar [KuaiZip.rar] =>.Superfluous.ShanghaiGuangle TROUVÉ clé: HKCU\Software\KuaiZip [] =>.Superfluous.ShanghaiGuangle TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\allin1convert.dl.myway.com [12] =>.Superfluous.MindSpark TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\Archer [] =>PUP.Optional.Youndoo TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnl [] =>.Superfluous.YetAnotherCleaner TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlBoot [] =>.Superfluous.YetAnotherCleaner TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlKit [] =>.Superfluous.YetAnotherCleaner TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlMon [] =>.Superfluous.YetAnotherCleaner TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeKrnlR3 [] =>.Superfluous.YetAnotherCleaner TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeNetFilter [] =>.Superfluous.YetAnotherCleaner TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iSafeService [] =>.Superfluous.YetAnotherCleaner TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\iThemes5 [] =>Adware.Mikey TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\WinSAPSvc [] =>PUP.Optional.Youndoo TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Elex-tech [] =>.Superfluous.Elex TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\WinArcher [] =>PUP.Optional.Youndoo TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iSafe [ELEX DO BRASIL PARTICIPAÇÕES LTDA] =>.Superfluous.Elex TROUVÉ clé: HKCU\SOFTWARE\F920C8E0B1603121FD93CA02226A9ED7 [] =>Hijacker.Browser ---\\ Récapitulatif des éléments trouvés sur votre station. (13) https://www.anti-malware.top/2016/05/18/superfluous-elex/ =>.Superfluous.Elex https://www.anti-malware.top/2016/06/18/superfluous-youndoo/ =>PUP.Optional.Youndoo https://www.anti-malware.top/2016/06/24/conseils-logiciel-publicitaire-mutabaha/ =>Adware.Mutabaha https://www.nicolascoolman.com/fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar https://www.nicolascoolman.com/fr/pup-optional-browserair/ =>PUP.Optional.BrowserAir https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.ShanghaiGuangle https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Temporary.OneDrive https://www.nicolascoolman.com/fr/adware-tencentaddressbar/ =>.Superfluous.Tencent https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.YetAnotherCleaner https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>Trojan.Agent https://www.anti-malware.top/2016/05/29/superfluous-mindspark/ =>.Superfluous.MindSpark https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>Adware.Mikey https://www.nicolascoolman.com/fr/hijacker-browser/ =>Hijacker.Browser ---\\ Bilan de la réparation ~ Aucune réparation effectuée. ---\\ Statistiques ~ Items scannés : 78796 ~ Items trouvés : 105 ~ Items annulés : 0 ~ Items réparés : 0 ~ End of search in 00h05mn42s ~==================== ZHPCleaner-[S]-21122016-13_25_12.txt