# ------------------------------- # Malwarebytes AdwCleaner 7.1.0.0 # ------------------------------- # Build: 04-12-2018 # Database: 2018-04-19.1 # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 04-20-2018 # Duration: 00:00:34 # OS: Windows 10 Home # Scanned: 40687 # Detected: 73 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** PUP.Optional.Legacy C:\Program Files\WinZip\WinZip Smart Monitor ***** [ Files ] ***** PUP.Optional.SpyHunter C:\Users\Isabelle\Downloads\SpyHunter-Installer.exe ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** PUP.Adware.Heuristic C:\Windows\Tasks\AVG-SECURE-SEARCH-UPDATE_JUNE2013_TB_RMV.JOB PUP.Adware.Heuristic C:\Windows\System32\Tasks\AVG-SECURE-SEARCH-UPDATE_JUNE2013_TB_RMV PUP.Adware.Heuristic C:\Windows\System32\Tasks\4803 ***** [ Registry ] ***** PUP.Adware.Heuristic HKU\S-1-5-18\SOFTWARE\5d53da8fb134e449 PUP.Adware.Heuristic HKU\S-1-5-21-812936403-3686162907-2633483560-1000\SOFTWARE\5d53da8fb134e449 PUP.Adware.Heuristic HKU\.DEFAULT\SOFTWARE\5d53da8fb134e449 PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG-Secure-Search-Update_JUNE2013_TB_rmv PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\4803 PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F7075D6D-9BB3-4449-8C20-3DCEF65B3F5} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eb2bc843-9691-48d4-8779-fe52d2df9890} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E3F2FC4A-6ED5-435B-BB85-DBC16EC26F} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D8AAD5EC-B901-464A-A0AF-ADD49FB52956} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BA67E744-2FFD-45F4-A115-AF72A4A734FB} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9DD81C14-C623-488B-90D0-ECE4AF37A02} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99AD8AD1-DFC3-454A-9DAB-6951708B43C} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7220F732-FF8E-4C3A-A56F-C6FA519931F1} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6755C28B-EB83-4C62-A15C-4DA9A3FECDB0} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5374b82f-397c-4edc-88ae-d50cf9865bc3} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{46F76CAE-C246-463C-8094-7F4DFB77561D} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{40808F55-55F8-431F-A024-6BE37ED703A} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{309A6EE7-C3C7-44B6-A6BA-799F583DAFC} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1D9C7059-EE2F-4A12-ADD9-1B3C747F4F33} PUP.CrossRider.Heuristic HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eb2bc843-9691-48d4-8779-fe52d2df9890} PUP.CrossRider.Heuristic HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5374b82f-397c-4edc-88ae-d50cf9865bc3} PUP.MyWebSearch.Heuristic HKU\S-1-5-21-812936403-3686162907-2633483560-1000\SOFTWARE\Microsoft\Internet Explorer\DOMStorage\televisionfanatic.com PUP.MyWebSearch.Heuristic HKU\S-1-5-21-812936403-3686162907-2633483560-1000\SOFTWARE\Microsoft\Internet Explorer\DOMStorage\videodownloadconverter.com PUP.Optional.BProtect HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing|bProtectShowTabsWelcome PUP.Optional.Conduit HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\AppDataLow\Software\Conduit PUP.Optional.Conduit HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Conduit PUP.Optional.ExpressFiles HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\ExpressFiles PUP.Optional.InstallBrain HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Manager PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\InstalledBrowserExtensions PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Cr_Installer PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\BABSOLUTION PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\AVG Secure Search PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Condut PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298} PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4} PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{5C342834-D9E7-4BBC-8DA9-7E45435070D4} PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C0BF9DD0-57F0-485D-827F-D35A9B15EA99} PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6C1AA2B8-2930-475E-AB54-474E072D35A2} PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{57FACD29-C60F-477B-A664-667F112AF32B} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Express FilesUpdate PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\DOMStorage\researchnow.com PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\DOMStorage\conduit.com PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\DOMStorage\ask.com PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\DOMStorage\ourtoolbar.com PUP.Optional.Legacy HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\DOMStorage\wajam.com PUP.Optional.SofTonicAssistant HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Softonic PUP.Optional.SofTonicAssistant HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.fr PUP.Optional.SofTonicAssistant HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\DOMStorage\softonic.fr PUP.Optional.Spigot HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{90E4CD0C-426F-4207-805B-7885AB32D43F} PUP.Optional.Spigot HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CAE9BEC8-4723-4347-AFC6-25EE3326BA5B} PUP.Optional.Spigot HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61db39d5-034c-45c0-8bb2-daf857edcf3b} PUP.Optional.Spigot HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61db39d5-034c-45c0-8bb2-daf857edcf3b} PUP.Optional.Spigot HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1672163f-8651-4c0d-9c05-4ba941123972} PUP.Optional.Spigot HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1672163f-8651-4c0d-9c05-4ba941123972} PUP.Optional.SuperOptimizer HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} PUP.Optional.SweetIM HKU\S-1-5-21-812936403-3686162907-2633483560-1000\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-812936403-3686162907-2633483560-1000\Software\SweetIM PUP.Optional.VisualBee HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\VisualBeeRecovery ***** [ Chromium (and derivatives) ] ***** PUP.Optional.Legacy express-files ***** [ Chromium URLs ] ***** PUP.Optional.Legacy Conduit Search PUP.Optional.Legacy Ask PUP.Optional.Legacy Ask ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########