~ ZHPCleaner v2017.12.8.213 by Nicolas Coolman (2017/12/08)
~ Run by Eddy (Administrator)  (08/12/2017 12:45:16)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Versie OK
~ Certificate ZHPCleaner: Legal
~ Type : Reparatie
~ Report : C:\Users\Eddy\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Eddy\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 15063)


---\\  Services (0)
~ Geen schadelijk of onnodig element gevonden.


---\\  Browser internet (0)
~ Geen schadelijk of onnodig element gevonden.


---\\  Hosts file (2)
VERVANGEN: 0.0.0.1	mssplus.mcafee.com
Aantal gevonden redirections 1/42


---\\  Scheduled automatic tasks. (1)
VERWIJDERD taak: [AutoKMS] [C:\WINDOWS\Tasks\AutoKMS.job (Not File) ]  =>HackTool.AutoKMS


---\\  Explorer ( Bestand, Map) (21)
VERPLAATST bestand: C:\Users\Eddy\AppData\Roaming\unins000.exe [ - Setup/Uninstall]  =>Adware.Pirrit
VERPLAATST bestand: C:\Windows\Tasks\AutoKMS.job    =>HackTool.AutoKMS
VERPLAATST bestand: C:\Windows\Prefetch\OFFICE 2010 TOOLKIT.EXE-3B3EE99C.pf    =>Hacktool.Office
VERPLAATST bestand: C:\Users\Eddy\Downloads\DLLEscort_Setup.exe [ - DLL Escort Setup]  =>PUP.Optional.Funmoods
VERPLAATST bestand: C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage    =>PUP.Optional.Generic
VERPLAATST bestand: C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal    =>PUP.Optional.Generic
VERPLAATST bestand: C:\Users\Eddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Goodgame Empire.lnk    =>.SUP.GoodGameEmpire
VERPLAATST bestand: C:\Users\Eddy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Goodgame Empire.lnk    =>.SUP.GoodGameEmpire
VERPLAATST bestand: C:\Windows\AutoKMS\AutoKMS.log    =>HackTool.AutoKMS
VERPLAATST bestand: C:\Users\Eddy\AppData\Local\Akamai\netsession_win.exe [Akamai Technologies, Inc. - Akamai NetSession Client]  =>.SUP.AkamaiHD
VERPLAATST map*: C:\Program Files (x86)\DLLEscort  =>PUP.Optional.Funmoods
VERPLAATST map*: C:\Program Files (x86)\Pinnacle  =>.SUP.Empty
VERPLAATST map*: C:\ProgramData\dllescort  =>PUP.Optional.Funmoods
VERPLAATST map*: C:\WINDOWS\AutoKMS  =>HackTool.AutoKMS
VERPLAATST map*: C:\Users\Eddy\AppData\Roaming\DesktopIconGoodgame  =>PUP.Optional.Downware
VERPLAATST map^: C:\Users\Eddy\AppData\Local\Akamai  =>.SUP.AkamaiHD
VERPLAATST map*: C:\Users\Eddy\AppData\Local\MSfree Inc  =>HackTool.WinActivator
VERPLAATST map*: C:\ProgramData\Application Data\IObit\ASCDownloader  =>.SUP.AdvancedSystemCare
VERPLAATST map: C:\ProgramData\IObit\ASCDownloader  =>.SUP.AdvancedSystemCare
VERPLAATST map*: C:\Users\Eddy\AppData\Local\Google\Chrome\User Data\Default\File System\008  =>PUP.Optional.DomaIQ
VERPLAATST map*: C:\Users\Eddy\AppData\Local\Microsoft Toolkit  =>HackTool.AutoKMS


---\\  Register ( Sleutel, Waarde, Data) (26)
VERWIJDERD sleutel*: HKEY_USERS\S-1-5-21-1943210992-1787449650-3504423798-1001\SOFTWARE\Akamai []  =>.SUP.AkamaiHD
VERWIJDERD sleutel*: HKEY_USERS\S-1-5-21-1943210992-1787449650-3504423798-1001\SOFTWARE\Conduit []  =>.SUP.Conduit
VERWIJDERD sleutel: HKCU\Software\Akamai []  =>.SUP.AkamaiHD
VERWIJDERD sleutel: HKCU\Software\Conduit []  =>.SUP.Conduit
VERWIJDERD sleutel*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Akamai [Akamai Technologies, Inc]  =>.SUP.AkamaiHD
VERWIJDERD sleutel*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\adblock-chrome.en.softonic.com []  =>.SUP.Softonic
VERWIJDERD sleutel*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\savefrom.net []  =>PUP.Optional.SaverOn
VERWIJDERD sleutel*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\softonic.com []  =>.SUP.Softonic
VERWIJDERD sleutel*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\adblock-chrome.en.softonic.com [314]  =>.SUP.Softonic
VERWIJDERD sleutel*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\savefrom.net []  =>PUP.Optional.SaverOn
VERWIJDERD sleutel*: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\softonic.com []  =>.SUP.Softonic
VERWIJDERD sleutel*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\d16fk4ms6rqz1v.cloudfront.net []  =>.SUP.CloudfrontNet
VERWIJDERD sleutel*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.audienceinsights.net [43]  =>.SUP.AudienceInsights
VERWIJDERD sleutel*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.olark.com [25021]  =>PUP.Optional.Generic
VERWIJDERD sleutel*: [X64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool]  =>Toolbar.Ask
VERWIJDERD sleutel*: [X64] HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL []  =>.SUP.BearShare
VERWIJDERD sleutel*: [X64] HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E [globalupdate Helper]  =>Adware.GlobalUpdate
VERWIJDERD sleutel*: [X64] HKLM\SOFTWARE\Wow6432Node\Conduit []  =>.SUP.Conduit
VERWIJDERD sleutel: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\WMHelper.DLL []  =>.SUP.BearShare
VERWIJDERD waarde: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_69E7F8C71211886F1F608352B3438F2A ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window]  =>PUP.Optional.MyBrowser
VERWIJDERD waarde: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface ["C:\Users\Eddy\AppData\Local\Akamai\netsession_win.exe"]  =>.SUP.AkamaiHD
VERWIJDERD waarde: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\Akamai NetSession Interface [0x020000000000000000000000]  =>.SUP.AkamaiHD
VERWIJDERD waarde: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{34EAE684-A568-49D0-A51A-883881C71979}C:\users\eddy\appdata\local\akamai\netsession_win.exe [C:\users\eddy\appdata\local\akamai\netsession_win.exe]  =>.SUP.AkamaiHD
VERWIJDERD waarde: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{05397367-24C5-4CBB-B748-1AF479D5FAD8}C:\users\eddy\appdata\local\akamai\netsession_win.exe [C:\users\eddy\appdata\local\akamai\netsession_win.exe]  =>.SUP.AkamaiHD
VERWIJDERD waarde: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\TCP Query User{0A436D49-B944-4164-A43D-90E743708662}C:\users\eddy\appdata\local\akamai\netsession_win.exe [C:\users\eddy\appdata\local\akamai\netsession_win.exe]  =>.SUP.AkamaiHD
VERWIJDERD waarde: HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules\\UDP Query User{5853701C-F265-48F4-9531-4E39C561231B}C:\users\eddy\appdata\local\akamai\netsession_win.exe [C:\users\eddy\appdata\local\akamai\netsession_win.exe]  =>.SUP.AkamaiHD


---\\  Samenvatting van elementen gevonden op uw werkstation (21)
https://nicolascoolman.eu/2017/02/02/hacktool-autokms/  =>HackTool.AutoKMS
https://nicolascoolman.eu/2017/02/25/adware-pirrit/  =>Adware.Pirrit
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>Hacktool.Office
https://www.nicolascoolman.com/fr/pup-funmoods/  =>PUP.Optional.Funmoods
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.Generic
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.GoodGameEmpire
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.AkamaiHD
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Empty
https://www.nicolascoolman.com/fr/adware-downware/  =>PUP.Optional.Downware
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/  =>HackTool.WinActivator
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.AdvancedSystemCare
https://nicolascoolman.eu/2017/10/04/adware-domaiq/  =>PUP.Optional.DomaIQ
https://nicolascoolman.eu/2017/02/06/superfluous-conduit/  =>.SUP.Conduit
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Softonic
https://www.nicolascoolman.com/fr/pup-saveron/  =>PUP.Optional.SaverOn
https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/  =>.SUP.CloudfrontNet
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.AudienceInsights
https://nicolascoolman.eu/2017/02/28/toolbar-ask/  =>Toolbar.Ask
https://nicolascoolman.eu/2017/09/15/sup-bearshare/  =>.SUP.BearShare
https://nicolascoolman.eu/2017/09/20/adware-globalupdate/  =>Adware.GlobalUpdate
https://nicolascoolman.eu/2017/11/01/adware-mybrowser/  =>PUP.Optional.MyBrowser


---\\  Een ander verwijdering. (43)
~ Registersleutel Tracing Verwijderd (43)
~ Verwijder de oude rapporten ZHPCleaner. (0)


---\\Resultaat van reparaties
~ Reparatie succesvol uitgevoerd
~ Browser niet gevonden (Mozilla Firefox)
~ Browser niet gevonden (Opera Software)
~ Het systeem is opnieuw opgestart.


---\\Statistics
~ Items gescand : 950
~ Items gevonden : 0
~ Items gecancelled : 0
~ Items gerepareerd : 49


~ End of clean in 00h00mn43s
~====================
ZHPCleaner-[R]-08122017-12_45_59.txt
ZHPCleaner-[S]-08122017-10_15_54.txt
ZHPCleaner-[S]-08122017-11_45_32.txt