~ ZHPCleaner v2018.6.3.127 by Nicolas Coolman (2018/06/03)
~ Run by albert (Administrator)  (04/06/2018 21:08:16)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Scanner
~ Report : C:\Users\albert\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\albert\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 17134)


---\\  ALTERNATE DATA STREAM (ADS). (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  SERVICE. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\  NAVIGATEUR INTERNET. (3)
TROUVÉ: [syga2z23.default] - user_pref("extensions.toolbar.mindspark._dzMembers_.lastActivePing", "1508751036488");  =>Adware.Bandoo
TROUVÉ: [syga2z23.default] - user_pref("extensions.toolbar.mindspark.hp.enabled", false);  =>Adware.Bandoo
TROUVÉ: [syga2z23.default] - user_pref("extensions.toolbar.mindspark.lastInstalled", "pconverter@mindspark.com");  =>Adware.Bandoo


---\\  FICHIER HÔTE. (1)
~ Le fichier hôte est légitime. (22)


---\\  TÂCHE PLANIFIÉE. (1)
TROUVÉ tâche: [App Explorer] [C:\Users\albert\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe (Not File) ]  =>.SUP.SweetLabs


---\\  EXPLORATEUR  ( Dossiers, Fichiers ). (66)
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\storage\default\https+++fr.softonic.com\.metadata    =>.SUP.Softonic
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\storage\default\https+++fr.softonic.com\.metadata-v2    =>.SUP.Softonic
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\storage\default\https+++fr.softonic.com\idb\993782502OBNDE__KSDISG_NLA.sqlite    =>.SUP.Softonic
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\storage\default\https+++fr.softonic.com\cache\.padding    =>.SUP.Softonic
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\storage\default\https+++fr.softonic.com\cache\caches.sqlite    =>.SUP.Softonic
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\storage\default\https+++fr.softonic.com\cache\morgue\54\{0b459740-f70a-4be6-883f-1ff8edbbac36}.final    =>.SUP.Softonic
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\storage\default\https+++fr.softonic.com\cache\morgue\106\{4bde73cc-1726-4add-a16f-cfa2d1de5f6a}.final    =>.SUP.Softonic
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Mozilla\Firefox\Profiles\syga2z23.default\browser-extension-data\_e5Members_@www.productivityboss.com\storage.js    =>.SUP.ProductivityBoss
TROUVÉ fichier: C:\Users\albert\Downloads\Driverwhiz.exe [383 Media, Inc. - Driver Whiz]  =>.SUP.DriverWhiz
TROUVÉ fichier: C:\Program Files (x86)\Lavasoft\web companion    =>PUP.Optional.LavasoftWebCompanion
TROUVÉ fichier: C:\Windows\Reimage.ini    =>.SUP.ReimageRepair
TROUVÉ fichier: C:\Users\albert\AppData\Roaming\Lavasoft\web companion    =>PUP.Optional.LavasoftWebCompanion
TROUVÉ fichier: C:\ProgramData\Lavasoft\web companion    =>PUP.Optional.LavasoftWebCompanion
TROUVÉ fichier: C:\ProgramData\c0007843-13d1-0\c0007843-13d1-0.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-25a5-0\c0007843-25a5-0.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-3491-1\c0007843-3491-1.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-45b1-1\c0007843-45b1-1.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-4d45-1\c0007843-4d45-1.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-5ba5-0\c0007843-5ba5-0.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-5ba5-0\x.bat    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-5e25-1\c0007843-5e25-1.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-5e25-1\x.bat    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-6245-0\c0007843-6245-0.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-6a17-1\c0007843-6a17-1.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-6d13-1\c0007843-6d13-1.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-7051-0\c0007843-7051-0.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-7105-0\c0007843-7105-0.d    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\c0007843-7105-0\x.bat    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\{39de3d97-312c-1}\BIT2219.tmp    =>.SUP.Polluteware
TROUVÉ fichier: C:\ProgramData\{545d2e37-212c-0}\BIT2258.tmp    =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-0605-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-0a35-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-13d1-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-1b21-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-1f47-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-25a5-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-3207-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-3491-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-45b1-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-47b5-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-4d45-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-5633-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-5ba5-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-5e25-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-6207-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-6245-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-68b5-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-6a17-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-6d13-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-7051-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-7105-0  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\c0007843-7893-1  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\{39de3d97-312c-1}  =>.SUP.Polluteware
TROUVÉ dossier: C:\ProgramData\{545d2e37-212c-0}  =>.SUP.Polluteware
TROUVÉ fichier: C:\Users\defaultuser0\AppData\Local\Host App Service\ (1).defaultRegistry    =>.SUP.SweetLabs
TROUVÉ fichier: C:\Users\defaultuser0\AppData\Local\Host App Service\.defaultRegistry    =>.SUP.SweetLabs
TROUVÉ fichier: C:\Users\defaultuser0\AppData\Local\Host App Service\analytics.db    =>.SUP.SweetLabs
TROUVÉ fichier: C:\Users\defaultuser0\AppData\Local\Host App Service\engine_update.db    =>.SUP.SweetLabs
TROUVÉ fichier: C:\Users\defaultuser0\AppData\Local\Host App Service\Uninstall (1).exe [SweetLabs,Inc. - App Explorer]  =>.SUP.SweetLabs
TROUVÉ fichier: C:\Users\defaultuser0\AppData\Local\Host App Service\Uninstall.exe [SweetLabs,Inc. - App Explorer]  =>.SUP.SweetLabs
TROUVÉ dossier: C:\Users\defaultuser0\AppData\Local\Host App Service\Apps  =>.SUP.SweetLabs
TROUVÉ dossier: C:\Users\defaultuser0\AppData\Local\Host App Service\Engine  =>.SUP.SweetLabs
TROUVÉ dossier: C:\Users\defaultuser0\AppData\Local\Host App Service\IconCache  =>.SUP.SweetLabs
TROUVÉ dossier: C:\Users\defaultuser0\AppData\Local\Host App Service\Setup  =>.SUP.SweetLabs
TROUVÉ dossier: C:\Users\defaultuser0\AppData\Local\Host App Service  =>.SUP.SweetLabs
TROUVÉ dossier: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion  =>PUP.Optional.LavasoftWebCompanion


---\\  BASE DE REGISTRES ( Clés, Valeurs, Données ). (52)
TROUVÉ clé: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akamaihd.net []  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cdncache-a.akamaihd.net []  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akamaihd.net []  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cdncache-a.akamaihd.net [672]  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\akamaihd.net []  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdncache-a.akamaihd.net [1131]  =>.SUP.AkamaiHD
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\utop.it []  =>PUP.Optional.Browser
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546} [_IReiEngineEvents]  =>PUP.Optional.Legacy
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4} [IReiEngine]  =>PUP.Optional.Legacy
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474} [IMyOverlayIcon]  =>PUP.Optional.Legacy
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A} [REI_AxControl]  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL []  =>PUP.Optional.BonanzaDeals
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL []  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IESearchPlugin.MailRuBHO [Search@Mail.Ru]  =>Adware.RussAd
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\IESearchPlugin.MailRuBHO.1 [Search@Mail.Ru]  =>Adware.RussAd
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer [DataContainer Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1 [DataContainer Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController [DataController Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1 [DataController Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable [DataTable Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1 [DataTable Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields [DataTableFields Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1 [DataTableFields Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder [DataTableHolder Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1 [DataTableHolder Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic [LSPLogic Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1 [LSPLogic Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager [ReadOnlyManager Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1 [ReadOnlyManager Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController [WFPController Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1 [WFPController Class]  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine [ReiEngine Class]  =>PUP.Optional.GetLiveSupport
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1 [ReiEngine Class]  =>PUP.Optional.GetLiveSupport
TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\WCAssistantService []  =>PUP.Optional.LavasoftWebCompanion
TROUVÉ clé: [X64] HKLM\SOFTWARE\malwarecrusher.com []  =>.SUP.MalwareCrusher
TROUVÉ clé: [X64] HKLM\SOFTWARE\Master PC Cleaner on DESKTOP-8DA2EQI []  =>.SUP.MasterPCCleaner
TROUVÉ clé: [X64] HKLM\SOFTWARE\mpc-pr []  =>.SUP.MasterPCCleaner
TROUVÉ clé: [X64] HKLM\SOFTWARE\Reimage []  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FA2268FD-F787-4DD3-B6F1-CA4F706F481E_is1 [malwarecrusher.com]  =>.SUP.MalwareCrusher
TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Malware Crusher []  =>.SUP.MalwareCrusher
TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Malware Crusher_Logon []  =>.SUP.MalwareCrusher
TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Master PC Cleaner_Logon []  =>.SUP.MasterPCCleaner
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546} [_IReiEngineEvents]  =>PUP.Optional.Legacy
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4} [IReiEngine]  =>PUP.Optional.Legacy
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474} [IMyOverlayIcon]  =>PUP.Optional.Legacy
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A} [REI_AxControl]  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\OverlayIcon.DLL []  =>PUP.Optional.BonanzaDeals
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\REI_AxControl.DLL []  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}\InprocServer32 [C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll (Not File)]  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}\InprocServer32 [C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll (Not File)]  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484} [ReiEngine Class]  =>.SUP.ReimageRepair
TROUVÉ clé: [X64] HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB} [CompReg Class]  =>.SUP.ReimageRepair


---\\  RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION. (16)
https://nicolascoolman.eu/2017/02/23/adware-bandoo/  =>Adware.Bandoo
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.SweetLabs
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Softonic
https://nicolascoolman.eu/2017/11/18/sup-productivityboss/  =>.SUP.ProductivityBoss
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.DriverWhiz
https://nicolascoolman.eu/2017/03/12/superfluous-lavasoftwebcompanion/  =>PUP.Optional.LavasoftWebCompanion
https://nicolascoolman.eu/2017/01/27/superfluous-reimagerepair/  =>.SUP.ReimageRepair
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Polluteware
https://nicolascoolman.eu/2017/12/26/sup-akamaihd/  =>.SUP.AkamaiHD
https://nicolascoolman.eu/2017/01/26/hijacker-browser/  =>PUP.Optional.Browser
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.Legacy
https://www.anti-malware.top/2016/04/28/pup-optional-bonanzadeals/  =>PUP.Optional.BonanzaDeals
https://nicolascoolman.eu/2017/11/29/adware-russad/  =>Adware.RussAd
https://nicolascoolman.eu/2017/10/05/sup-systemoptimizer/  =>PUP.Optional.GetLiveSupport
https://nicolascoolman.eu/2018/01/03/sup-malwarecrusher/  =>.SUP.MalwareCrusher
https://nicolascoolman.eu/2017/10/06/sup-masterpccleaner/  =>.SUP.MasterPCCleaner


---\\ BILAN DE LA REPARATION
~ Aucune réparation effectuée.


---\\ STATISTIQUES
~ Items scannés : 95511
~ Items trouvés : 163
~ Items annulés : 0
~ Items options : 0/7
~ Gain de place (Octets) : 0


~ End of search in 00h10mn03s
ZHPCleaner-[S]-04062018-21_18_19.txt