~ ZHPCleaner v2018.2.8.26 by Nicolas Coolman (2018/02/08) ~ Run by Nick (Administrator) (11/02/2018 17:19:33) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Versie OK ~ Certificate ZHPCleaner: Legal ~ Type : Scan ~ Report : C:\Users\Nick\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\Nick\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601) ---\\ Alternate Data Stream (ADS). (0) ~ Geen schadelijk of onnodig element gevonden. ---\\ Services (0) ~ Geen schadelijk of onnodig element gevonden. ---\\ Browser internet (0) ~ Geen schadelijk of onnodig element gevonden. ---\\ Hosts bestand (1) ~ The hosts file is rechtmatig (1) ---\\ Scheduled automatic tasks. (0) ~ Geen schadelijk of onnodig element gevonden. ---\\ Explorer ( Bestand, Map) (23) GEVONDEN bestand: C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\b4di12dq.default\searchplugins\bing-lavasoft.xml =>PUP.Optional.LavasoftWebCompanion GEVONDEN map: C:\Users\Nick\AppData\Roaming\PDAppFlex =>Trojan.Elpman GEVONDEN map: C:\Users\Nick\AppData\Roaming\Reviversoft =>.SUP.DriverReviver GEVONDEN bestand: C:\ProgramData\DriverAgentPlus\DriverAgentPlusHelper\DriverAgentPlusHelper.exe [eSupport.com - ] =>.SUP.DriverAgentPlus GEVONDEN bestand: C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [Copyright 2009 - Starter Module] =>.SUP.Skillbrains GEVONDEN bestand: C:\Users\Nick\Downloads\setup-lightshot.exe [Skillbrains - lightshot Setup] =>.SUP.Skillbrains GEVONDEN map: C:\Program Files (x86)\Skillbrains\lightshot =>.SUP.Skillbrains GEVONDEN map: C:\Program Files (x86)\Skillbrains\Updater =>.SUP.Skillbrains GEVONDEN map: C:\Program Files (x86)\Skillbrains =>.SUP.Skillbrains GEVONDEN map: C:\ProgramData\DriverAgentPlus\DriverAgentPlusHelper =>.SUP.DriverAgentPlus GEVONDEN map: C:\ProgramData\DriverAgentPlus =>.SUP.DriverAgentPlus GEVONDEN map: C:\Windows\System32\config\systemprofile\AppData\Local\LavasoftTcpService =>PUP.Optional.LavasoftWebCompanion GEVONDEN bestand: C:\Users\Nick\AppData\Roaming\DriverAgentPlus\DriverAgentPlus.downloads =>.SUP.DriverAgentPlus GEVONDEN bestand: C:\Users\Nick\AppData\Roaming\DriverAgentPlus\DriverAgentPlus.history =>.SUP.DriverAgentPlus GEVONDEN bestand: C:\Users\Nick\AppData\Roaming\DriverAgentPlus\DriverAgentPlus.settings =>.SUP.DriverAgentPlus GEVONDEN bestand: C:\Users\Nick\AppData\Roaming\DriverAgentPlus\scandata.bin =>.SUP.DriverAgentPlus GEVONDEN bestand: C:\Users\Nick\AppData\Roaming\DriverAgentPlus\sysinfo.bin =>.SUP.DriverAgentPlus GEVONDEN map: C:\Users\Nick\AppData\Roaming\DriverAgentPlus =>.SUP.DriverAgentPlus GEVONDEN bestand: C:\Windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService\LavasoftTcpService.ini =>PUP.Optional.LavasoftWebCompanion GEVONDEN map: C:\Windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService =>PUP.Optional.LavasoftWebCompanion GEVONDEN map: C:\Program Files (x86)\QuickTime =>Riskware.QuickTime GEVONDEN map: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime =>Riskware.QuickTime GEVONDEN map: C:\Users\Nick\AppData\Local\Google\Update =>Heuristic.Suspect ---\\ Register ( Sleutel, Waarde, Data) (29) GEVONDEN waarde: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_B9D48092DF53DE2F032C3C1B28E5E1A1 ["C:\Users\Nick\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5] =>PUP.Optional.MyBrowser GEVONDEN waarde: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\DriverAgentPlusHelper [C:\ProgramData\DriverAgentPlus\DriverAgentPlusHelper\DriverAgentPlusHelper.exe] =>.SUP.DriverAgentPlus GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Lightshot [C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe] =>.SUP.Skillbrains GEVONDEN sleutel: HKEY_USERS\S-1-5-21-447199817-2102671501-515646390-1001\SOFTWARE\eSupport.com [] =>PUP.Optional.eSupport GEVONDEN sleutel: HKEY_USERS\S-1-5-21-447199817-2102671501-515646390-1001\SOFTWARE\SkillBrains [] =>.SUP.Skillbrains GEVONDEN sleutel: HKCU\Software\eSupport.com [] =>PUP.Optional.eSupport GEVONDEN sleutel: HKCU\Software\SkillBrains [] =>.SUP.Skillbrains GEVONDEN sleutel: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\static.audienceinsights.net [43] =>.SUP.AudienceInsights GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer [DataContainer Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1 [DataContainer Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController [DataController Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1 [DataController Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable [DataTable Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1 [DataTable Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields [DataTableFields Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1 [DataTableFields Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder [DataTableHolder Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1 [DataTableHolder Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic [LSPLogic Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1 [LSPLogic Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager [ReadOnlyManager Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1 [ReadOnlyManager Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController [WFPController Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1 [WFPController Class] =>PUP.Optional.LavasoftWebCompanion GEVONDEN data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{FA03A36D-29EB-43CD-9A35-9156C1F17F07}\\DhcpNameServer [Bad : 89.20.160.228 89.20.160.229] =>Hijacker.Browser GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Wow6432Node\Skillbrains [] =>.SUP.Skillbrains GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool] =>Toolbar.Ask GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DriverAgentPlusHelper_is1 [eSupport.com, Inc] =>.SUP.DriverAgentPlus GEVONDEN sleutel: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1 [Skillbrains] =>.SUP.Skillbrains ---\\ Samenvatting van elementen gevonden op uw werkstation (12) https://nicolascoolman.eu/2017/03/12/superfluous-lavasoftwebcompanion/ =>PUP.Optional.LavasoftWebCompanion https://nicolascoolman.eu/2017/09/23/trojan-elpman/ =>Trojan.Elpman https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.DriverReviver https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.DriverAgentPlus https://www.anti-malware.top/2016/04/30/superfluous-skillbrains/ =>.SUP.Skillbrains https://nicolascoolman.eu/2017/01/15/riskware-quicktime/ =>Riskware.QuickTime https://nicolascoolman.eu/2017/01/28/heuristic-suspect/ =>Heuristic.Suspect https://nicolascoolman.eu/2017/11/01/adware-mybrowser/ =>PUP.Optional.MyBrowser https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.eSupport https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.AudienceInsights https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/ =>Hijacker.Browser https://nicolascoolman.eu/2017/02/28/toolbar-ask/ =>Toolbar.Ask ---\\Resultaat van reparaties ~ Gerepareerd ~ Browser niet gevonden (Opera Software) ---\\Statistics ~ Items gescand : 71125 ~ Items gevonden : 63 ~ Items gecancelled : 0 ~ Items opties : 0/7 ~ Ruimtebesparend (bytes) : 0 ~ End of search in 00h07mn40s ZHPCleaner-[S]-11022018-17_27_13.txt