# ------------------------------- # Malwarebytes AdwCleaner 7.2.4.0 # ------------------------------- # Build: 09-25-2018 # Database: 2018-11-19.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 11-21-2018 # Duration: 00:00:14 # OS: Windows 7 Home Premium # Scanned: 32104 # Detected: 72 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** Adware.Yontoo C:\ProgramData\Tarma Installer PUP.Optional.AdvancedSystemCare C:\ProgramData\IObit\Advanced SystemCare PUP.Optional.AdvancedSystemCare C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare PUP.Optional.AdvancedSystemCare C:\Users\STUD\AppData\Roaming\IObit\Advanced SystemCare PUP.Optional.BundleInstaller C:\Users\STUD\AppData\Local\b1e PUP.Optional.Legacy C:\Program Files (x86)\myfree codec PUP.Optional.Legacy C:\Users\STUD\AppData\Local\genienext PUP.Optional.Legacy C:\Users\STUD\AppData\Roaming\dvdvideosoftiehelpers PUP.Optional.Legacy C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG Secure Search PUP.Optional.Legacy C:\Users\STUD\AppData\Roaming\b1toolbar PUP.Optional.Legacy C:\Users\STUD\AppData\Local\Mobogenie PUP.Optional.NextLive C:\Users\STUD\AppData\Roaming\newnext.me PUP.Optional.OpenCandy C:\Users\STUD\AppData\Roaming\OpenCandy PUP.Optional.SpyHunter C:\Program Files\Enigma Software Group PUP.Optional.TornTV C:\Program Files (x86)\TornTV.com ***** [ Files ] ***** No malicious files found. ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** PUP.Adware.Heuristic HKU\S-1-5-18\SOFTWARE\5b53dbdeb339eb49 PUP.Adware.Heuristic HKCU\SOFTWARE\5b53dbdeb339eb49 PUP.Adware.Heuristic HKU\.DEFAULT\SOFTWARE\5b53dbdeb339eb49 PUP.Adware.Heuristic HKLM\Software\Wow6432Node\5b53dbdeb339eb49 PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce39D3678B0D3346DD87D9AE814D53679E PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserA58EF42DDFAE480D8A240BE40CE455F6 PUP.Optional.1ClickDownload HKCU\Software\1ClickDownload PUP.Optional.AdvancedSystemCare HKLM\Software\Wow6432Node\IObit\RealTimeProtector PUP.Optional.AdvancedSystemCare HKLM\Software\Wow6432Node\IObit\Advanced SystemCare PUP.Optional.AdvancedSystemCare HKLM\Software\Wow6432Node\IOBIT\ASC PUP.Optional.AuslogicsBoostSpeed HKCU\Software\Auslogics\BoostSpeed PUP.Optional.BProtect HKCU\Software\Microsoft\Internet Explorer\TabbedBrowsing|bProtectShowTabsWelcome PUP.Optional.BProtector HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings PUP.Optional.Conduit HKCU\Software\Conduit PUP.Optional.DataMngr.AppFlsh HKLM\Software\Wow6432Node\DataMngr PUP.Optional.InstallCore HKCU\Software\csastats PUP.Optional.InstallCore HKCU\Software\InstallCore PUP.Optional.Legacy HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I PUP.Optional.Legacy HKCU\Software\dobreprogramy PUP.Optional.Legacy HKLM\Software\Wow6432Node\V9Software PUP.Optional.Legacy HKLM\Software\V9Software PUP.Optional.Legacy HKCU\Software\UpdateStar PUP.Optional.Legacy HKCU\Software\PIP PUP.Optional.Legacy HKLM\Software\Wow6432Node\PIP PUP.Optional.Legacy HKCU\Software\APN PIP PUP.Optional.Legacy HKU\S-1-5-21-4003353032-2260459889-897377641-1002\Software\Myfree Codec PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Main|bprotector start page PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A} PUP.Optional.Legacy HKLM\Software\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270} PUP.Optional.Legacy HKLM\Software\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} PUP.Optional.Legacy HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} PUP.Optional.Legacy HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} PUP.Optional.Legacy HKLM\Software\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401} PUP.Optional.Legacy HKLM\Software\Classes\Prod.cap PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Main|Start Page Before PUP.Optional.ProductSetup.A HKCU\Software\PRODUCTSETUP PUP.Optional.SofTonicAssistant HKCU\Software\Softonic PUP.Optional.SpyHunter HKLM\Software\EnigmaSoftwareGroup PUP.Optional.SweetIM HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-4003353032-2260459889-897377641-1000\Software\SweetIM PUP.Optional.SweetIM HKCU\Software\SweetIM PUP.Optional.SweetIM HKLM\Software\Wow6432Node\SweetIM PUP.Optional.YTDToolbar HKLM\Software\Wow6432Node\{DAF8B7E5-449D-4180-8281-10E536E597F2} ***** [ Chromium (and derivatives) ] ***** PUP.Optional.Legacy Improved Search ***** [ Chromium URLs ] ***** No malicious Chromium URLs found. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. AdwCleaner[S00].txt - [7442 octets] - [20/11/2018 23:25:41] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########