~ ZHPCleaner v2017.6.26.105 by Nicolas Coolman (2017/06/26) ~ Run by Kevin (Administrator) (01/07/2017 22:15:26) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Certificate ZHPCleaner: Illegal ~ Type : Scanner ~ Report : C:\Users\skyga\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\skyga\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 10 Pro, 64-bit (Build 15063) ---\\ Service. (0) ~ Aucun élément malicieux ou superflu trouvé. ---\\ Navigateur internet. (0) ~ Aucun élément malicieux ou superflu trouvé. ---\\ Fichier hôte. (19) TROUVÉ: 127.0.0.1 gf.tools.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 pair.ff.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 ipm-provider.ff.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 id.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v4618535.iavs9x.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v4618535.ivps9x.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v4618535.ivps9tiny.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v4618535.vpsnitro.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v4618535.vpsnitrotiny.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v4618535.iavs5x.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v7.stats.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 v7event.stats.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 sm00.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 submit5.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 geoip.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 w9448963.iavs9x.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 w9448963.ivps9x.u.avast.com =>Trojan.CertLock TROUVÉ: 127.0.0.1 w9448963.ivps9tiny.u.avast.com =>Trojan.CertLock ~ Nombre de redirections trouvées 361/384 ---\\ Tâche planifiée. (1) TROUVÉ tâche: [update-S-1-5-21-230325493-1221687996-615768250-1001] [C:\Program Files (x86)\Skillbrains\Updater\Updater.exe] =>.Superfluous.Skillbrains ---\\ Explorateur ( Dossiers, Fichiers ). (7) TROUVÉ dossier: C:\Users\skyga\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipebkipbeggmmkjjljenoblnfaenambp =>PUP.Optional.SoundCloud TROUVÉ fichier: C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [TODO: - TODO: ] =>.Superfluous.Skillbrains TROUVÉ fichier: C:\Windows\Temp\g3A95.tmp.exe =>Heuristic.Suspect TROUVÉ fichier: C:\Windows\Temp\gE464.tmp.exe =>Heuristic.Suspect TROUVÉ fichier: C:\Windows\Temp\gFAFB.tmp.exe =>Heuristic.Suspect TROUVÉ dossier: C:\Program Files (x86)\Skillbrains\Updater =>.Superfluous.Skillbrains TROUVÉ dossier: C:\Program Files (x86)\Skillbrains =>.Superfluous.Skillbrains ---\\ Base de Registres ( Clés, Valeurs, Données ). (60) TROUVÉ clé: HKCU\Software\MozillaPlugins\torrents-time.com/TTPlugin [] =>.Superfluous.TorrentsTime TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\03D22C9C66915D58C88912B64C1F984B8344EF09 [Comodo Security] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\0F684EC1163281085C6AF20528878103ACEFCAAB [F-Secure] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1667908C9E22EFBD0590E088715CC74BE4C60884 [FRISK] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\18DEA4EFA93B06AE997D234411F3FD72A677EECE [Bitdefender] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF [G-Data] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\249BDA38A611CD746A132FA2AF995A2D3C941264 [Malwarebytes] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\31AC96A6C17C425222C46D55C3CCA6BA12E54DAF [Symantec] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\331E2046A1CCA7BFEF766724394BE6112B4CA3F7 [Trend Micro] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3353EA609334A9F23A701B9159E30CB6C22D4C59 [Webroot] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\373C33726722D3A5D1EDD1F1585D5D25B39BEA1A [SUPERAntiSpyware] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F [Kaspersky] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3D496FA682E65FC122351EC29B55AB94F3BB03FC [AVG Technologies] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 [PC Tools] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 [K7 Computing] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4420C99742DF11DD0795BC15B7B0ABF090DC84DF [Doctor Web] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF [Emsisoft] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5240AB5B05D11B37900AC7712A3C6AE42F377C8C [CheckPoint] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DD3D41810F28B2A13E9A004E6412061E28FA48D [Emsisoft] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7457A3793086DBB58B3858D6476889E3311E550E [K7 Computing] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\76A9295EF4343E12DFC5FE05DC57227C1AB00D29 [BullGuard] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\775B373B33B9D15B58BC02B184704332B97C3CAF [McAfee] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\872CD334B7E7B3C3D1C6114CD6B221026D505EAB [Comodo Security] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\88AD5DFE24126872B33175D1778687B642323ACF [McAfee] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9132E8B079D080E01D52631690BE18EBC2347C1E [Adaware Software] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\982D98951CF3C0CA2A02814D474A976CBFF6BDB1 [Safer Networking] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 [Webroot] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9C43F665E690AB4D486D4717B456C5554D4BCEB5 [ThreatTrack] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 [CurioLab] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 [Avira Operations] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A5341949ABE1407DD7BF7DFE75460D9608FBC309 [BullGuard] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A59CC32724DD07A6FC33F7806945481A2D13CA2F [ESET] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 [AVG Technologies] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD4C5429E10F4FF6C01840C20ABA344D7401209F [Avast Software] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD96BB64BA36379D2E354660780C2067B81DA2E0 [Symantec] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 [Malwarebytes] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CDC37C22FE9272D8F2610206AD397A45040326B8 [Trend Micro] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 [Kaspersky] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB303C9B61282DE525DC754A535CA2D6A9BD3D87 [ThreatTrack] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB77E5CFEC34459146748B667C97B185619251BA [Avast Software] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E22240E837B52E691C71DF248F12D27F96441C00 [Total Defense] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF [AVG Technologies] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\ED841A61C0F76025598421BC1B00E24189E68D54 [Bitdefender] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F83099622B4A9F72CB5081F742164AD1B8D048C9 [ESET] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FBB42F089AF2D570F2BF6F493D107A3255A9BB1A [Panda Security] =>Trojan.CertLock TROUVÉ clé: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 [Doctor Web] =>Trojan.CertLock TROUVÉ clé: HKEY_USERS\S-1-5-21-230325493-1221687996-615768250-1001\SOFTWARE\Popcorn Time [] =>.Superfluous.PopcornTime TROUVÉ clé: HKEY_USERS\S-1-5-21-230325493-1221687996-615768250-1001\SOFTWARE\PopcornTime [] =>.Superfluous.PopcornTime TROUVÉ clé: HKEY_USERS\S-1-5-21-230325493-1221687996-615768250-1001\SOFTWARE\SkillBrains [] =>.Superfluous.Skillbrains TROUVÉ clé: HKCU\Software\Popcorn Time [] =>.Superfluous.PopcornTime TROUVÉ clé: HKCU\Software\PopcornTime [] =>.Superfluous.PopcornTime TROUVÉ clé: HKCU\Software\SkillBrains [] =>.Superfluous.Skillbrains TROUVÉ clé: HKLM\SOFTWARE\TTime [] =>.Superfluous.TorrentsTime TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman] =>PUP.Optional.Camec TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 [] =>.Superfluous.ByteFence TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS [] =>.Superfluous.ByteFence TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\003E72085BC70935DAE076E79F8C879C [C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\ProjectTemplates\VisualBasic\Windows Root\Windows\1036\WPFBrowserApplication\assemblyinfo.vb] =>Adware.CrossRider TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\06AF58DAFBF8F5441832EC417C136C6B [C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\NewFileItems\NewFSharpFileItems.vsdir] =>PUP.Optional.Sharpfile TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Skillbrains [] =>.Superfluous.Skillbrains TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman] =>PUP.Optional.Camec ---\\ Récapitulatif des éléments trouvés sur votre station. (10) https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>Trojan.CertLock https://www.anti-malware.top/2016/04/30/superfluous-skillbrains/ =>.Superfluous.Skillbrains https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.SoundCloud https://nicolascoolman.eu/2017/01/28/heuristic-suspect/ =>Heuristic.Suspect https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.TorrentsTime https://nicolascoolman.eu/2017/02/26/superfluous-popcorntime/ =>.Superfluous.PopcornTime https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Camec https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.Superfluous.ByteFence https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Sharpfile ---\\ Bilan de la réparation ~ Aucune réparation effectuée. ~ Ce navigateur est absent (Opera Software) ---\\ Statistiques ~ Items scannés : 92716 ~ Items trouvés : 431 ~ Items annulés : 0 ~ Items réparés : 0 ~ End of search in 00h03mn59s ~==================== ZHPCleaner-[S]-01072017-22_19_25.txt