# ------------------------------- # Malwarebytes AdwCleaner 7.2.5.0 # ------------------------------- # Build: 11-26-2018 # Database: 2018-12-07.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 12-10-2018 # Duration: 00:00:11 # OS: Windows 8.1 # Scanned: 32299 # Detected: 49 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** PUP.MyWebSearch.Heuristic C:\Users\Proprietaire\AppData\Local\MAPSGALAXYTOOLTAB PUP.Optional.383Media C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverWhiz PUP.Optional.383Media C:\Program Files (x86)\DriverWhiz PUP.Optional.Legacy C:\Users\Proprietaire\AppData\Roaming\cacaoweb PUP.Optional.OneSafePCCleaner C:\ProgramData\OneSafe PC Cleaner ***** [ Files ] ***** No malicious files found. ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** PUP.Optional.DriverWhiz C:\Windows\System32\Tasks\DriverWhiz_ScheduledScan PUP.Optional.DriverWhiz C:\Windows\System32\Tasks\DriverWhiz_DailyScan ***** [ Registry ] ***** PUP.Optional.383Media HKCU\Software\DriverWhiz PUP.Optional.383Media HKLM\Software\DriverWhiz PUP.Optional.383Media HKLM\Software\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\DriverWhiz.exe PUP.Optional.383Media HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\DriverWhiz.exe PUP.Optional.DriverWhiz HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{36D881A1-1C48-4F83-828C-87666FA79601} PUP.Optional.DriverWhiz HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36D881A1-1C48-4F83-828C-87666FA79601} PUP.Optional.DriverWhiz HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverWhiz_ScheduledScan PUP.Optional.DriverWhiz HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1F94EF80-2BE6-4A9C-9946-13CF77376121} PUP.Optional.DriverWhiz HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1F94EF80-2BE6-4A9C-9946-13CF77376121} PUP.Optional.DriverWhiz HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverWhiz_DailyScan PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cacaoweb PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cacaoweb PUP.Optional.Legacy HKCU\Software\MapsGalaxy PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MapsGalaxyTooltab Uninstall Internet Explorer PUP.Optional.Legacy HKCU\Software\cacaoweb PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Driver Whiz PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar|{327C2873-E90D-4C37-AA9D-10AC9BABA46C} PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{327C2873-E90D-4C37-AA9D-10AC9BABA46C} PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{327C2873-E90D-4C37-AA9D-10AC9BABA46C} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{327C2873-E90D-4C37-AA9D-10AC9BABA46C} PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{05505E17-1608-4A12-B38F-BFD7F3E556C2}C:\users\proprietaire\appdata\roaming\cacaoweb\cacaoweb.exe PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{DA6A8C37-1222-4A0E-AB60-FD659272C0F7}C:\users\proprietaire\appdata\roaming\cacaoweb\cacaoweb.exe PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{87065B4E-8D17-4CE1-8AD7-1526ED5A5E1E}C:\users\proprietaire\appdata\roaming\cacaoweb\cacaoweb.exe PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{ED730EF3-FB65-4226-B984-B8AD7CA4F38D}C:\users\proprietaire\appdata\roaming\cacaoweb\cacaoweb.exe PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ttdetect.staticimgfarm.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\staticimgfarm.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ak.staticimgfarm.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.nicetourisme.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.nicematin.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.nice.fr PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\nicetourisme.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\nicembtrail.wixsite.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\nicematin.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\nice.fr PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\nice.cmcas.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\cavigalnicebasket06.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\cantines.nice.fr PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\videodownloadconverter.dl.tb.ask.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mapsgalaxy.dl.tb.ask.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\fr.ask.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com ***** [ Chromium (and derivatives) ] ***** PUP.Optional.Legacy MSN Homepage & Bing Search Engine ***** [ Chromium URLs ] ***** No malicious Chromium URLs found. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. AdwCleaner[S00].txt - [7248 octets] - [10/12/2018 18:18:38] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########