Script ZHPFix
O4 - HKCU\..\Run: [cacaoweb] . (...) -- C:\Users\marco44\AppData\Roaming\cacaoweb\cacaoweb.exe
O4 - HKUS\S-1-5-21-4017993954-1311522843-371804467-1000\..\Run: [cacaoweb] . (...) -- C:\Users\marco44\AppData\Roaming\cacaoweb\cacaoweb.exe
HKCU\SOFTWARE\cacaoweb
C:\Users\marco44\AppData\Roaming\cacaoweb  =>.SUP.CacaoWeb
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WondershareVideoConverterFileOpreation  =>.SUP.Orphan
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avast  =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files  =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files  =>.SUP.Orphan
HKLM\SOFTWARE\McAfee.com  =>.McAfee Inc.
HKLM\SOFTWARE\mcafeeupdater  =>.McAfee Inc.
HKLM\SOFTWARE\WOW6432Node\McAfee.com  =>.McAfee Inc.
HKLM\SOFTWARE\WOW6432Node\mcafeeupdater  =>.McAfee Inc.
HKCU\SOFTWARE\cacaoweb  =>.SUP.CacaoWeb
[MD5.8B9DBBE35FC2E70BDC23528BC39D9137] [WIS][2012/07/31 18:18:14] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\aa48e51.msp   [5018624]  =>.SUP.Obsolete.Adobe
O43 - CFD: 01/01/2015 - [] D -- C:\ProgramData\Baidu  =>.Baidu
O43 - CFD: 17/02/2017 - [] D -- C:\ProgramData\McAfee  =>.McAfee
O43 - CFD: 04/06/2011 - [] D -- C:\ProgramData\MFAData  =>.AVG Software
O43 - CFD: 13/01/2016 - [] D -- C:\Program Files (x86)\Common Files\AV  =>.Avast
O43 - CFD: 07/04/2018 - [] D -- C:\Users\marco44\AppData\Roaming\cacaoweb  =>.SUP.CacaoWeb
O43 - CFD: 14/09/2012 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\McAfee  =>.McAfee
O53 - SMSR:HKLM\...\startupreg\Google Update  [Key] [64Bits] . (...) -- C:\Users\marco44\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\msnmsgr  [Key] [64Bits] . (...) -- ~"C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Skype  [Key] [64Bits] . (...) -- C:\Program Files (x86)\Skype\Phone\Skype.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched  [Key] [64Bits] . (...) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (.not file.)
O58 - SDL:2016/01/25 20:04:53 A . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\Windows\System32\drivers\tmcomm.sys   [305832]  =>.Trend Micro, Inc.Â®
O87 - FAEL: "TCP Query User{1599A72A-AE4C-4E52-B25E-8026D41AD934}C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe  =>.SUP.CacaoWeb
O87 - FAEL: "UDP Query User{94AB71FA-7114-4885-B2B8-6AE64AC4EC15}C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe  =>.SUP.CacaoWeb
O87 - FAEL: "TCP Query User{B8489D07-6F58-4D74-8A4A-EF2FA682634B}C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe  =>.SUP.CacaoWeb
O87 - FAEL: "UDP Query User{D227D670-7115-4C6E-8266-93D706F27235}C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\marco44\appdata\roaming\cacaoweb\cacaoweb.exe  =>.SUP.CacaoWeb
C:\Windows\Installer\1182f886.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\18a76.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\193aa.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\193ab.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\193ac.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\1d5aae6.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\29369.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\2f112.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\307fd.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\3650e.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\40cee.msp  =>.SUP.Obsolete.Adobe
C:\Windows\Installer\aa48e51.msp  =>.SUP.Obsolete.Adobe
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funsafetabsearch.com_0.localstorage  =>PUP.Optional.SocialMediaNewTab
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funsafetabsearch.com_0.localstorage-journal  =>PUP.Optional.SocialMediaNewTab
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.newtabtvsearch.com_0.localstorage  =>Adware.NewTabTV
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.newtabtvsearch.com_0.localstorage-journal  =>Adware.NewTabTV
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.socialnewpagessearch.com_0.localstorage  =>.SUP.SocialNewPages
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.socialnewpagessearch.com_0.localstorage-journal  =>.SUP.SocialNewPages
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.newtabtv.com_0.localstorage  =>Adware.NewTabTV
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.newtabtv.com_0.localstorage-journal  =>Adware.NewTabTV
C:\Users\marco44\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6B1UXYIU  =>Temporary.InternetFiles
C:\Users\marco44\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FV09Y7VV  =>Temporary.InternetFiles
C:\Users\marco44\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HZ35SS2I  =>Temporary.InternetFiles
C:\Users\marco44\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QT9R4FSO  =>Temporary.InternetFiles
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\021  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\024  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\025  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\026  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\027  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\028  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\029  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\030  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\031  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\032  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\033  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\034  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\035  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\036  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\037  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\038  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\039  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\040  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\041  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\042  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\043  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\044  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\045  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\046  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\047  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\048  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\049  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\050  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\051  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\052  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\053  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\054  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\055  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\056  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\057  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\058  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\059  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\060  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\061  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\062  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\063  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\064  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\065  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\066  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\067  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\068  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\069  =>.SUP.Temporary.Chrome
C:\Users\marco44\AppData\Local\Google\Chrome\User Data\Default\File System\070  =>.SUP.Temporary.Chrome
SysRestore
FirewallRaz
EmptyPrefetch
EmptyCLSID
EmptyFlash
Emptytemp
ShortcutFix