~ ZHPCleaner v2023.9.11.41 by Nicolas Coolman (2023/09/11)
~ Run by Uusuario (Administrator)  (12/09/2023 17:47:43)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Repair
~ Report : C:\Users\Uusuario\Desktop\ZHPCleaner (R).txt
~ Quarantine : C:\Users\Uusuario\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ System Restore Point : OK
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 8.1 Pro, 64-bit  (Build 9600)


---\\  Alternate Data Stream (ADS). (0)
~ No malicious or unnecessary items found.


---\\  Services (0)
~ No malicious or unnecessary items found.


---\\  Browser internet (0)


---\\  Hosts file (1)
~ The hosts file is legitimate (21)


---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\  Explorer ( File, Folder) (50)
MOVED file: C:\Users\Uusuario\AppData\Local\Google\Chrome\User Data\Default\History    =>.SUP.BrowserHistoric
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\places.sqlite    =>.SUP.BrowserHistoric
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\fnvx38hz.default\places.sqlite    =>.SUP.BrowserHistoric
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-06-21\default\https+++www.softonic.com.br\.metadata-v2    =>SUP.Optional.Softonic
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-06-21\default\https+++www.softonic.com.br\ls\data.sqlite    =>SUP.Optional.Softonic
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-06-21\default\https+++www.softonic.com.br\ls\usage    =>SUP.Optional.Softonic
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-06-21\default\https+++www.softonic.com.br\idb\2323548853sewsDaabta.sqlite    =>SUP.Optional.Softonic
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-06-21\default\https+++3utools.softonic.com.br\.metadata-v2    =>SUP.Optional.Softonic
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-06-21\default\https+++3utools.softonic.com.br\ls\data.sqlite    =>SUP.Optional.Softonic
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-06-21\default\https+++3utools.softonic.com.br\ls\usage    =>SUP.Optional.Softonic
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-01-11\default\https+++virtualdub.br.uptodown.com\.metadata-v2    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-01-11\default\https+++virtualdub.br.uptodown.com\ls\data.sqlite    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2023-01-11\default\https+++virtualdub.br.uptodown.com\ls\usage    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\.metadata-v2    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\cache\.padding    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\cache\caches.sqlite    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\cache\caches.sqlite-shm    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\cache\caches.sqlite-wal    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\cache\context_open.marker    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\cache\morgue\8\{24ab0c41-0e23-41b2-b5e5-ac692b004608}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++nox-app-player.br.uptodown.com\cache\morgue\26\{146ce622-c34f-4e01-9f6f-b124894ecc1a}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++memu.br.uptodown.com\.metadata-v2    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++memu.br.uptodown.com\cache\.padding    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++memu.br.uptodown.com\cache\caches.sqlite    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++memu.br.uptodown.com\cache\morgue\29\{512cb489-1fd5-4676-b5f4-8f21c4c7e11d}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++memu.br.uptodown.com\cache\morgue\221\{21bd3700-85e7-40f8-a369-f78f3926c4dd}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++koplayer.br.uptodown.com\.metadata-v2    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++koplayer.br.uptodown.com\cache\.padding    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++koplayer.br.uptodown.com\cache\caches.sqlite    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++koplayer.br.uptodown.com\cache\morgue\40\{e46cd886-60c1-4c46-b5b6-bbd279233a28}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++koplayer.br.uptodown.com\cache\morgue\117\{e03440c4-81c3-47c3-b92a-962d9d120475}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++droid4x.br.uptodown.com\.metadata-v2    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++droid4x.br.uptodown.com\cache\.padding    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++droid4x.br.uptodown.com\cache\caches.sqlite    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++droid4x.br.uptodown.com\cache\morgue\196\{8f78db37-9d02-48f7-a2bd-4241ddc77bc4}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\storage\archives\0\2021-10-29\default\https+++droid4x.br.uptodown.com\cache\morgue\177\{d6736701-2543-409e-ade0-8c097b0529b1}.final    =>PUP.Optional.UpToDown
MOVED file: C:\Users\Uusuario\AppData\Local\Google\Chrome\User Data\Default\Preferences    =>Préférences Chromium
MOVED file: C:\Users\Uusuario\AppData\Local\Microsoft\Edge\User Data\Default\Preferences    =>Préférences Chromium
MOVED file: C:\Users\Uusuario\AppData\Local\Temp\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi    =>.SUP.Temporary.Firefox
MOVED folder: C:\Users\Uusuario\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data  =>.SUP.BrowserCache
MOVED folder: C:\Users\Uusuario\AppData\Local\Microsoft Edge\User Data\Default\Cache\Cache_Data  =>.SUP.BrowserCache
MOVED folder: C:\Users\Uusuario\AppData\Local\Opera Software\Opera Stable\User Data\Default\Cache\Cache_Data  =>.SUP.BrowserCache
MOVED folder: C:\Users\Uusuario\AppData\Local\Mozilla\Firefox\Profiles\6j51z90s.default-release\Cache2  =>.SUP.BrowserCache
MOVED folder: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\6j51z90s.default-release\places.sqlite  =>.SUP.BrowserCache
MOVED folder: C:\Users\Uusuario\AppData\Local\Mozilla\Firefox\Profiles\fnvx38hz.default\Cache2  =>.SUP.BrowserCache
MOVED folder: C:\Users\Uusuario\AppData\Roaming\Mozilla\Firefox\Profiles\fnvx38hz.default\places.sqlite  =>.SUP.BrowserCache
MOVED folder: C:\Program Files\KMSpico  =>HackTool.KMSpico
MOVED folder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico  =>HackTool.KMSpico
MOVED folder: C:\Users\Uusuario\AppData\Local\MSfree Inc  =>HackTool.WinActivator
MOVED folder: C:\Users\Uusuario\AppData\Local\AdvinstAnalytics  =>.SUP.Various


---\\  Registry ( Key, Value, Data) (2)
DELETED key*: HKCU\Software\undefined [AdditionalScan 150]  =>.SUP.Downloader
DELETED key*: HKLM\SOFTWARE\POLICIES\Mozilla\Firefox [AdditionalScan 576]  =>.SUP.FirefoxRestriction


---\\  Summary of the elements found (11)
https://nicolascoolman.eu/2023/07/18/les-caches-et-historiques-de-navigateurs/  =>.SUP.BrowserHistoric
https://nicolascoolman.eu/forum/Topic/softonic-logiciel-potentiellement-superflu-lps/  =>SUP.Optional.Softonic
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>PUP.Optional.UpToDown
https://nicolascoolman.eu/forum/Topic/repaquetage-et-infection/  =>Préférences Chromium
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.Temporary.Firefox
https://nicolascoolman.eu/2023/07/18/les-caches-et-historiques-de-navigateurs/  =>.SUP.BrowserCache
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/  =>HackTool.KMSpico
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/  =>HackTool.WinActivator
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.Various
https://nicolascoolman.eu/2017/12/22/sup-downloader/  =>.SUP.Downloader
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/  =>.SUP.FirefoxRestriction


---\\  Other deletions. (2)
~ Registry Keys Tracing deleted (2)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Google Chrome OK
~ Microsoft Edge OK
~ Mozilla Firefox OK
~ Microsoft Internet Explorer OK
~ Opera Stable OK


---\\ Statistics
~ Items scanned : 2049
~ Items found : 0
~ Items cancelled : 0
~ Space saving (bytes) : 18075960
~ Items options : 10/18


---\\ OPTIONS NOT ACTIVES
~ Temporary file analysis
~ Temporary folder analysis
~ Empty Folder CLSID Analysis
~ Empty Other Folder Analysis
~ Empty LocalLow Folder Analysis
~ Empty Local Folder Analysis
~ Obsolete Installer File Analysis
~ Start browsers with extensions removed





~ End of clean in 00h02mn43s

---\\  Reports (2)
ZHPCleaner-[S]-12092023-17_43_39.txt
ZHPCleaner-[R]-12092023-17_50_26.txt