Buenas tardes Sandra y gracias por la pronta repuesta…Hice todo cual usted me indico y aquí le dejo los tres reportes…Yo contaba con CCleaner y Malwarebytes ya que son herramientas de uso diario junto a mi antivirus…
Gracias!
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 4/6/19
Hora del análisis: 13:42
Archivo de registro: 286be182-86f0-11e9-9c74-3c07716f3594.json
-Información del software-
Versión: 3.7.1.2839
Versión de los componentes: 1.0.586
Versión del paquete de actualización: 1.0.10900
Licencia: Prueba
-Información del sistema-
SO: Windows 10 (Build 17763.503)
CPU: x64
Sistema de archivos: NTFS
Usuario: DIVUKITA\noni1
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 298594
Amenazas detectadas: 51
Amenazas en cuarentena: 51
Tiempo transcurrido: 2 min, 28 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 2
PUP.Optional.VideoBrowse, HKU\S-1-5-21-2484808343-1893561251-184537493-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|cpobgelohgnelmomlcpfmbjabnefclja, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.PolarityTech.Generic, HKU\S-1-5-21-2484808343-1893561251-184537493-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|dopopnpbajbbidkeaghdigfefkenjjmc, En cuarentena, [1754], [603737],1.0.10900
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 13
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\images\icons, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\_metadata, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\scripts, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\images, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\CPOBGELOHGNELMOMLCPFMBJABNEFCLJA, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Extension Settings\dopopnpbajbbidkeaghdigfefkenjjmc, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\background, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\_metadata, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\prompt, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\icons, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\DOPOPNPBAJBBIDKEAGHDIGFEFKENJJMC, En cuarentena, [1754], [603737],1.0.10900
Archivo: 36
PUP.Optional.VideoBrowse, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\CPOBGELOHGNELMOMLCPFMBJABNEFCLJA\2.0.0_0\MANIFEST.JSON, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\images\icons\128x128.png, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\images\icons\16x16.png, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\images\icons\32x32.png, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\images\icons\64x64.png, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\scripts\background.js, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\scripts\sitecontent.js, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\_metadata\verified_contents.json, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\closer.js, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.VideoBrowse, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja\2.0.0_0\tab.html, En cuarentena, [270], [668566],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dopopnpbajbbidkeaghdigfefkenjjmc\000003.log, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dopopnpbajbbidkeaghdigfefkenjjmc\CURRENT, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dopopnpbajbbidkeaghdigfefkenjjmc\LOCK, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dopopnpbajbbidkeaghdigfefkenjjmc\LOG, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dopopnpbajbbidkeaghdigfefkenjjmc\MANIFEST-000001, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\USERS\NONI1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\DOPOPNPBAJBBIDKEAGHDIGFEFKENJJMC\1.0.19.204_0\PROMPT.JS, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\background\ext.js, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\background\index.html, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\background\listeners.js, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\background\search.js, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\background\settings.js, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\background\startup.js, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\icons\128.png, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\icons\16.png, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\icons\32.png, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\icons\48.png, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\prompt\green-up-arrow.png, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\prompt\ok-green-square.png, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\prompt\prompt.js, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\_metadata\verified_contents.json, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\content.js, En cuarentena, [1754], [603737],1.0.10900
PUP.Optional.PolarityTech.Generic, C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopopnpbajbbidkeaghdigfefkenjjmc\1.0.19.204_0\manifest.json, En cuarentena, [1754], [603737],1.0.10900
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-05-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-04-2019
# Duration: 00:00:04
# OS: Windows 10 Home Single Language
# Cleaned: 8
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\noni1\AppData\Local\Temp\VideoConverter
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\thebrighttag.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\{DAF8B7E5-449D-4180-8281-10E536E597F2}
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
Deleted SaveFrom.net helper
Not Deleted SaveFrom.net helper
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1944 octets] - [04/06/2019 13:53:55]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
~ ZHPCleaner v2019.6.1.80 by Nicolas Coolman (2019/06/01)
~ Run by noni1 (Administrator) (04/06/2019 14:40:55)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\noni1\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\noni1\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home Single Language, 64-bit (Build 17763)
---\\ Alternate Data Stream (ADS). (0)
~ No malicious or unnecessary items found.
---\\ Services (0)
~ No malicious or unnecessary items found.
---\\ Browser internet (0)
~ No malicious or unnecessary items found.
---\\ Hosts file (1)
~ The hosts file is legitimate (26)
---\\ Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.
---\\ Explorer ( File, Folder) (43)
MOVED file: C:\Users\noni1\AppData\Local\UmmyVideoDownloader\UmmyVideoDownloader.exe [ - UmmyVideoDownloader] =>Adware¨Pirrit
MOVED file: C:\Windows\Installer\wix{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}.SchedServiceConfig.rmi =>.SUP.Empty
MOVED file: C:\Windows\Installer\wix{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}.SchedServiceConfig.rmi =>.SUP.Empty
MOVED file: C:\Users\noni1\Downloads\uTorrent.exe [BitTorrent Inc. - µTorrent] =>BitTorrent (P2P)
MOVED file: C:\Users\noni1\AppData\Local\Temp\aria-debug-11936.log =>.SUP.Temporary.OneDrive
MOVED file^: C:\Users\noni1\AppData\Local\Temp\aria-debug-6580.log =>.SUP.Temporary.OneDrive
MOVED file: C:\Users\noni1\AppData\Local\Temp\mat-debug-14560.log =>.SUP.Temporary.Empty
MOVED file: C:\Users\noni1\AppData\Local\Temp\nsb892F.tmp =>.SUP.Temporary.Empty
MOVED file: C:\Users\noni1\AppData\Local\Temp\wctBE98.tmp =>.SUP.Temporary.Office
MOVED file: C:\Users\noni1\AppData\Local\Temp\wctF80D.tmp =>.SUP.Temporary.Office
MOVED file: C:\Users\noni1\AppData\Local\Temp\wctFBC7.tmp =>.SUP.Temporary.Office
MOVED folder: C:\Users\noni1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpobgelohgnelmomlcpfmbjabnefclja =>PUP.Optional.DefaultSearch
MOVED folder: C:\Users\noni1\AppData\Local\UmmyVideoDownloader =>Adware¨Pirrit
MOVED folder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader =>Adware¨Pirrit
MOVED folder: C:\Users\noni1\AppData\Local\Temp\scoped_dir3408_24318 =>.SUP.Temporary.Steam
MOVED folder: C:\Users\noni1\AppData\Local\{0F376500-DFBE-47DE-A1F0-B86761A82BF2} =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI2A1.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI490D.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI5148.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI542.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI55EF.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI5E70.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI617C.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI69AB.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI6F39.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI81C5.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI8672.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI8CB.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI8EFF.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI9A5E.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSI9FA0.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIA9EF.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIB82D.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIBFA.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIC105.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIC684.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSID0A5.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSID72.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIDA45.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIDBD6.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIDD0F.tmp- =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIF414.tmp- =>.SUP.Empty
MOVED folder: C:\Users\noni1\AppData\LocalLow\Apple Computer =>.SUP.Empty
---\\ Registry ( Key, Value, Data) (7)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1 [UmmyVideoDownloader] =>Adware¨Pirrit
DELETED key*: HKEY_USERS\S-1-5-21-2484808343-1893561251-184537493-1001\SOFTWARE\Magicbit [] =>.SUP.Magicbit
DELETED key**: HKCU\Software\Magicbit [] =>.SUP.Magicbit
DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent [BitTorrent Inc.] =>BitTorrent (P2P)
DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\076BBDED335E3BB41980EEE84CE0E8CC [C:\Program Files (x86)\Brother\iPrint&Scan\Converter\lib\CSDK\XISPNP.BIN] =>.SUP.Trotux
DELETED value: HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions\\[email protected] [C:\Users\noni1\AppData\Roaming\Mozilla\Firefox\Profiles\i6emirsr.default\extensions\staged\[email protected]] =>.SUP.BrowserExtension
DELETED value: HKLM64\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\[email protected] [C:\Users\noni1\AppData\Roaming\Mozilla\Firefox\Profiles\i6emirsr.default\extensions\staged\[email protected]] =>.SUP.BrowserExtension
---\\ Summary of the elements found (11)
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware¨Pirrit
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Empty
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.OneDrive
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Empty
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Office
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.DefaultSearch
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Steam
https://nicolascoolman.eu/2017/12/23/sup-magicbit/ =>.SUP.Magicbit
https://nicolascoolman.eu/2017/03/14/superfluous-trotux/ =>.SUP.Trotux
https://nicolascoolman.eu/2017/10/05/sup-browserextension/ =>.SUP.BrowserExtension
---\\ Other deletions. (4)
~ Registry Keys Tracing deleted (4)
~ Remove the old reports ZHPCleaner. (0)
---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Opera Software)
~ The system has been restarted.
---\\ Statistics
~ Items scanned : 2571
~ Items found : 0
~ Items cancelled : 0
~ Items options : 12/12
~ Space saving (bytes) : 40423
~ End of clean in 00h00mn34s
---\\ Reports (4)
ZHPCleaner-[R]-04062019-14_15_39.txt
ZHPCleaner-[S]-04062019-14_14_16.txt
ZHPCleaner-[S]-04062019-14_38_59.txt
ZHPCleaner-[R]-04062019-14_41_29.txt