# ------------------------------- # Malwarebytes AdwCleaner 7.1.1.0 # ------------------------------- # Build: 04-27-2018 # Database: 2018-05-10.1 # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 05-12-2018 # Duration: 00:00:10 # OS: Windows 8.1 # Scanned: 40842 # Detected: 55 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** No malicious folders found. ***** [ Files ] ***** PUP.Optional.Legacy C:\END PUP.Optional.Legacy C:\Users\Maëva Frémont\AppData\Roaming\Bubble Dock.installation.log ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** PUP.Adware.Heuristic C:\Windows\Tasks\{2F125B0E-5D86-D383-9A2B-4FC8C2B399E9}.job PUP.Adware.Heuristic C:\Windows\System32\Tasks\{7CB8C6D4-1692-4E3C-9FA7-3DEA694CA997} PUP.Adware.Heuristic C:\Windows\System32\Tasks\{2F125B0E-5D86-D383-9A2B-4FC8C2B399E9} ***** [ Registry ] ***** PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7CB8C6D4-1692-4E3C-9FA7-3DEA694CA997} PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2F125B0E-5D86-D383-9A2B-4FC8C2B399E9} PUP.CrossRider.Heuristic HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7E31617-7708-4D98-AD72-376BC421E6} PUP.Optional.ByteFence HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence PUP.Optional.InstallCore HKCU\Software\csastats PUP.Optional.Legacy HKCU\Software\TeleCharger PUP.Optional.Legacy HKCU\Software\Hola PUP.Optional.Legacy HKU\S-1-5-18\Software\AppDataLow\Software\Mediaa_Play_AIR_1.4 PUP.Optional.Legacy HKU\.DEFAULT\Software\AppDataLow\Software\Mediaa_Play_AIR_1.4 PUP.Optional.Legacy HKLM\Software\WebBar PUP.Optional.Legacy HKLM\Software\Wow6432Node\Browser Warden PUP.Optional.Legacy HKLM\Software\Wow6432Node\Taronja PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\softwareupdate.exe PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\softwareupdate.exe PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{2C09954F-CDA8-4BD1-8794-1D543E050378} PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{2C09954F-CDA8-4BD1-8794-1D543E050378} PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2C09954F-CDA8-4BD1-8794-1D543E050378} PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{D51C7AD6-4210-4A67-AC56-E8ECA4EA077D}C:\users\maëva frémont\appdata\local\popcorn time\nw.exe PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{6A0EA943-F96F-4548-82D0-BC4C23D88A9C}C:\users\maëva frémont\appdata\local\popcorn time\nw.exe PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{E01F3810-B4E8-4C7E-81DA-062E0804FDA1}C:\users\maëva frémont\appdata\local\popcorn time\nw.exe PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{2109813B-4F25-4B32-8995-D2A33CD8EC1F}C:\users\maëva frémont\appdata\local\popcorn time\nw.exe PUP.Optional.MultiPlug HKLM\Software\Wow6432Node\Classes\TypeLib\{157B1AA6-3E5C-404A-9118-C1D91F537040} PUP.Optional.MultiPlug HKLM\Software\Classes\TypeLib\{157B1AA6-3E5C-404A-9118-C1D91F537040} PUP.Optional.ProductSetup.A HKCU\Software\PRODUCTSETUP PUP.Optional.SupTab HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} PUP.Optional.SupTab HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} PUP.Optional.SuperOptimizer HKU\S-1-5-18\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} PUP.Optional.SuperOptimizer HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} ***** [ Chromium (and derivatives) ] ***** PUP.Optional.CouponMarvel nchpfiddbhbdnagofhkjlaiaejmkdcla PUP.Optional.Legacy MSN Homepage & Bing Search Engine PUP.Optional.SearchManager Search Manager PUP.Optional.SearchManager Search Manager ***** [ Chromium URLs ] ***** PUP.Optional.Legacy Mysearchdial PUP.Optional.Legacy webssearches PUP.Optional.Legacy StartWeb PUP.Optional.Legacy DaleSearch PUP.Optional.Legacy Trovi search PUP.Optional.Legacy aartemis PUP.Optional.Legacy http://www.delta-homes.com/?type=hp&ts=1427183123&from=wpm03243&uid=TOSHIBAXMQ01ABD100_638XT1EHTXX638XT1EHT PUP.Optional.Legacy delta-homes PUP.Optional.Legacy delta-homes PUP.Optional.Legacy http://www.delta-homes.com/?type=hp&ts=1427183123&from=wpm03243&uid=TOSHIBAXMQ01ABD100_638XT1EHTXX638XT1EHT PUP.Optional.Legacy delta-homes PUP.Optional.Legacy delta-homes PUP.Optional.Legacy webssearches PUP.Optional.SofTonicAssistant Softonic FR ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########