# ------------------------------- # Malwarebytes AdwCleaner 8.3.0.0 # ------------------------------- # Build: 06-29-2021 # Database: 2021-10-26.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 10-30-2021 # Duration: 00:00:17 # OS: Windows 8.1 # Scanned: 32013 # Detected: 99 ***** [ Services ] ***** PUP.Optional.IMGUpdater GlobalUpdater PUP.Optional.Legacy Hydrup PUP.Optional.Legacy IMService ***** [ Folders ] ***** Adware.pokki C:\Users\Invité\AppData\Local\Pokki Adware.pokki C:\Users\Public\Pokki PUP.Optional.Conduit C:\Users\coral_000\AppData\Local\SEARCHPROTECT PUP.Optional.Legacy C:\Program Files (x86)\Common Files\Hydrup PUP.Optional.SafeWeb C:\Users\Frances\AppData\Local\SafeWeb PUP.Optional.SafeWeb C:\Users\Invité\AppData\Local\SafeWeb PUP.Optional.SpeedBrowser C:\Users\Invité\AppData\Local\speed browser ***** [ Files ] ***** PUP.Optional.PCAppStore C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PC App Store.lnk PUP.Optional.SpeedBrowser C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\speed browser.lnk PUP.Optional.SpeedBrowser C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\speed browser.lnk PUP.Optional.VisualDiscovery C:\Windows\SysWOW64\VisualDiscovery.ini PUP.Optional.Winsock.WnskRST C:\Windows\SysWOW64\VisualDiscoveryOff.ini PUP.Optional.Winsock.WnskRST C:\Windows\System32\VisualDiscoveryOff.ini ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** Adware.pokki HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Pokki PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\TBDEn|SBOEM0 PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\TBDEn|SBOEM1 PUP.Optional.Iminent HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Iminent PUP.Optional.Iminent HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{977AE9CC-AF83-45E8-9E03-E2798216E2D5} PUP.Optional.Iminent HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{977AE9CC-AF83-45E8-9E03-E2798216E2D5} PUP.Optional.Legacy HKCU\Software\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4} PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\plarium.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\chatango.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\st.chatango.com PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{84FF7BD6-B47F-46F8-9130-01B2696B36CB} PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} PUP.Optional.Legacy HKLM\SOFTWARE\CLASSES\APPID\VISUALDISCOVERY.EXE PUP.Optional.Legacy HKLM\Software\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11} PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4} PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{B33BD6CF-BF4C-4CF0-AC84-B2974BC14ABD} PUP.Optional.Legacy HKLM\Software\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC} PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026} PUP.Optional.Legacy HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} PUP.Optional.Legacy HKLM\Software\Wow6432Node\LENOVO\VisualDiscovery PUP.Optional.Legacy HKLM\Software\Wow6432Node\\CLASSES\APPID\VISUALDISCOVERY.EXE PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{B33BD6CF-BF4C-4CF0-AC84-B2974BC14ABD} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{58124A0B-DC32-4180-9BFF-E0E21AE34026} PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} PUP.Optional.WebBar HKU\S-1-5-19\Software\Browser PUP.Optional.WebBar HKU\S-1-5-20\Software\Browser ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries found. ***** [ Chromium URLs ] ***** No malicious Chromium URLs found. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** PUP.Optional.Legacy http://search.iminent.com/?appId=964085F5-9E27-4A17-B459-1906549001C7 ***** [ Hosts File Entries ] ***** No malicious hosts file entries found. ***** [ Preinstalled Software ] ***** Preinstalled.HightailforLenovo Folder C:\Program Files (x86)\HIGHTAIL\HIGHTAIL FOR LENOVO Preinstalled.HightailforLenovo Folder C:\Program Files\HIGHTAIL\HIGHTAIL FOR LENOVO Preinstalled.HightailforLenovo Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HIGHTAIL\HIGHTAIL FOR LENOVO Preinstalled.HightailforLenovo Registry HKLM\Software\Classes\CLSID\{1E9CED2C-E7B4-4C47-B07A-25416393B67B} Preinstalled.HightailforLenovo Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2F10E937-F6D7-4174-8AB9-B299E8FC5CEC} Preinstalled.HightailforLenovo Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{1E9CED2C-E7B4-4C47-B07A-25416393B67B} Preinstalled.LenovoEnergyManager Folder C:\Program Files (x86)\LENOVO\ENERGY MANAGER Preinstalled.LenovoEnergyManager Folder C:\Users\Frances\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LENOVO\ENERGY MANAGER Preinstalled.LenovoEnergyManager Folder C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LENOVO\ENERGY MANAGER Preinstalled.LenovoEnergyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Energy Manager Preinstalled.LenovoEnergyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Lenovo Utility Preinstalled.LenovoEnergyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Energy Manager Preinstalled.LenovoEnergyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Lenovo Utility Preinstalled.LenovoEnergyManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE} Preinstalled.LenovoEnergyManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{AC768037-7079-4658-AC24-2897650E0ABE} Preinstalled.LenovoIMController Folder C:\Program Files\LENOVO\IMCONTROLLER Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER Preinstalled.LenovoIMController Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1 Preinstalled.LenovoIMController Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0788641D-D31A-478D-BB34-C41564AE9F93} Preinstalled.LenovoPhoneCompanion Folder C:\Program Files\LENOVO PHONECOMPANION Preinstalled.LenovoPhoneCompanion Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|PhoneCompanion Preinstalled.LenovoPhoneCompanion Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|PhoneCompanion Preinstalled.LenovoPhoneCompanion Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B} Preinstalled.LenovoPhoneCompanion Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B} Preinstalled.LenovoPhotoMaster Folder C:\Program Files (x86)\LENOVO\LENOVO PHOTO MASTER Preinstalled.LenovoPhotoMaster Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33} Preinstalled.LenovoPhotoMaster Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{BC94C56A-3649-420C-8756-2ADEBE399D33} Preinstalled.LenovoPower2Go Folder C:\Program Files (x86)\LENOVO\POWER2GO Preinstalled.LenovoPower2Go Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\POWER2GO Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|UpdateP2GShortCut Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|UpdateP2GShortCut Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{40BF1E83-20EB-11D8-97C5-0009C5020658} Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} Preinstalled.LenovoSHAREit Folder C:\Program Files (x86)\LENOVO\SHAREIT Preinstalled.LenovoSHAREit Folder C:\Users\Frances\AppData\Local\LENOVO\SHAREIT Preinstalled.LenovoSHAREit Registry HKLM\Software\Classes\CLSID\{430BD134-576D-4E75-87CD-0F5C6221A82B} Preinstalled.LenovoSHAREit Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo SHAREit_is1 Preinstalled.LenovoSolutionCenter Folder C:\Program Files\LENOVO\LENOVO SOLUTION CENTER Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1} Preinstalled.LenovoUpdate Folder C:\Program Files (x86)\LENOVO\LENOVO UPDATES Preinstalled.LenovoUpdate Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO UPDATES Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4} Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4} Preinstalled.Pokki File C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Start Menu.lnk Preinstalled.Pokki Folder C:\Users\Invité\AppData\Local\POKKI\ENGINE ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########