# ------------------------------- # Malwarebytes AdwCleaner 7.2.6.0 # ------------------------------- # Build: 12-18-2018 # Database: 2018-12-21.2 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 12-23-2018 # Duration: 00:00:26 # OS: Windows 10 Pro # Scanned: 32227 # Detected: 118 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** Adware.Agent C:\Windows\System32\config\systemprofile\AppData\Roaming\CRMSvc Adware.Agent C:\Users\home\AppData\Roaming\CRMSvc Adware.Linkury C:\ProgramData\Logic Cramble Adware.OnlineIO C:\Program Files (x86)\Microleaves Adware.OnlineIO C:\Users\home\AppData\Roaming\Microleaves PUP.Adware.Heuristic C:\ProgramData\F1F821E8-44B5-0 PUP.Adware.Heuristic C:\ProgramData\F1F821E8-0525-1 PUP.Optional.ByteFence C:\ProgramData\ByteFence PUP.Optional.ByteFence C:\Program Files\ByteFence PUP.Optional.DriverAgentPlus C:\Users\home\AppData\Roaming\DriverAgentPlus PUP.Optional.DriverPack C:\Users\home\AppData\Roaming\DRPSu PUP.Optional.DriverPack C:\Program Files (x86)\DriverPack Notifier PUP.Optional.DriverPack C:\Users\home\AppData\Roaming\DriverPack Notifier PUP.Optional.FastDataX C:\Program Files (x86)\FastDataX PUP.Optional.OneSystemCare C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One System Care PUP.Optional.OneSystemCare C:\Users\home\AppData\Roaming\One System Care PUP.Optional.OneSystemCare C:\Program Files (x86)\OneSystemCare PUP.Optional.OnlineIO C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1} PUP.Optional.TweakBit C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit PUP.Optional.TweakBit C:\Windows\System32\Tasks\TweakBit ***** [ Files ] ***** PUP.Optional.Legacy C:\Users\home\AppData\Roaming\Mozilla\Firefox\Profiles\lkcovx90.default-1468846777029-1509137767989\searchplugins\yahoo! powered.xml PUP.Optional.Legacy C:\Users\home\appdata\local\installationconfiguration.xml PUP.Optional.Legacy C:\Windows\System32\LavasoftTcpService64.dll PUP.Optional.Legacy C:\Windows\System32\LavasoftTcpServiceOff.ini PUP.Optional.Legacy C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini PUP.Optional.Legacy C:\Windows\SysWOW64\lavasofttcpservice.dll PUP.Optional.Legacy C:\Users\home\AppData\Local\Main.dat PUP.Optional.OnlineIO C:\Windows\Installer\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1} PUP.Optional.YesSearches C:\Windows\SysWOW64\findit.xml ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** PUP.Optional.SafeFinder C:\Users\home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk PUP.Optional.SafeFinder C:\Users\home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ***** [ Tasks ] ***** Adware.OnlineIO C:\Windows\Tasks\Online Application V2G5.job Adware.OnlineIO C:\Windows\System32\Tasks\Online Application V2G5 Adware.OnlineIO C:\Windows\Tasks\Online Application V2G4.job Adware.OnlineIO C:\Windows\System32\Tasks\Online Application V2G4 Adware.OnlineIO C:\Windows\Tasks\Online Application V2G6.job Adware.OnlineIO C:\Windows\System32\Tasks\Online Application V2G6 PUP.Optional.ByteFence C:\Windows\System32\Tasks\ByteFence PUP.Optional.DriverPack C:\Windows\System32\Tasks\DriverPack Notifier PUP.Optional.FastDataX C:\Windows\System32\Tasks\FastDataX Task PUP.Optional.Legacy C:\Windows\Tasks\Online Application V2G2.job PUP.Optional.Legacy C:\Windows\System32\Tasks\Online Application V2G2 PUP.Optional.Legacy C:\Windows\Tasks\Online Application V2G3.job PUP.Optional.Legacy C:\Windows\System32\Tasks\Online Application V2G3 PUP.Optional.Legacy C:\Windows\Tasks\Online Application V2G1.job PUP.Optional.Legacy C:\Windows\System32\Tasks\Online Application V2G1 PUP.Optional.Microleaves C:\Windows\Tasks\Updater_Online_Application.job PUP.Optional.Microleaves C:\Windows\System32\Tasks\Updater_Online_Application ***** [ Registry ] ***** Adware.Agent HKLM\Software\CRMSvc Adware.Agent HKLM\System\CurrentControlSet\Services\EventLog\Application\CRMSvc Adware.ICLoader HKLM\Software\MICROSOFT\TechnologyDesktopnew Adware.ICLoader HKLM\SOFTWARE\MICROSOFT\Speedycar Adware.Linkury HKLM\Software\Wow6432Node\mtQuoteex Adware.Linkury HKLM\Software\Wow6432Node\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\Quoteex.exe Adware.Linkury HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\Quoteex.exe Adware.Linkury HKLM\Software\Wow6432Node\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Quoteex.exe Adware.OnlineIO HKLM\Software\Wow6432Node\Microleaves Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3FB8930E-50DE-4E4E-B7B8-3D3B17ADFD2E} Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3FB8930E-50DE-4E4E-B7B8-3D3B17ADFD2E} Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G5 Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DBD9D879-5DAF-4788-9DA2-4E768377C6D6} Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DBD9D879-5DAF-4788-9DA2-4E768377C6D6} Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G4 Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A45EC5EB-68B0-4B9A-B743-2F111EBB1468} Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A45EC5EB-68B0-4B9A-B743-2F111EBB1468} Adware.OnlineIO HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G6 PUP.Optional.ByteFence HKLM\Software\Wow6432Node\ByteFence PUP.Optional.DriverAgentPlus HKCU\Software\ESUPPORT.COM\DriverAgent Plus PUP.Optional.DriverPack HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DriverPack Notifier PUP.Optional.DriverPack HKCU\Software\drpsu PUP.Optional.DriverPack HKLM\Software\Wow6432Node\drpsu PUP.Optional.DriverPack HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DriverPack Notifier PUP.Optional.DriverPack HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0ABF8087-A6D6-47B9-9E08-A97F45F9FEBC} PUP.Optional.DriverPack HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0ABF8087-A6D6-47B9-9E08-A97F45F9FEBC} PUP.Optional.DriverPack HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverPack Notifier PUP.Optional.FastDataX HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FastDataX_is1 PUP.Optional.FastDataX HKCU\Software\FastDataX PUP.Optional.FastDataX HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8DD8106-8B19-4110-A10F-EA8E3064EF72} PUP.Optional.FastDataX HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8DD8106-8B19-4110-A10F-EA8E3064EF72} PUP.Optional.FastDataX HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FastDataX Task PUP.Optional.InstallCore HKCU\Software\csastats PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion PUP.Optional.Legacy HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Acronis Scheduler2 Service PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057} PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D30C04DC-444B-4A07-97B2-5C63A3BDCEDA} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D30C04DC-444B-4A07-97B2-5C63A3BDCEDA} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G2 PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1F4EE73F-4D48-45B4-AE53-42E3DF1F5D9B} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1F4EE73F-4D48-45B4-AE53-42E3DF1F5D9B} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G3 PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5D92B50E-26EB-45C3-856C-E9B17FEC766B} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5D92B50E-26EB-45C3-856C-E9B17FEC766B} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G1 PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes|DefaultScope PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes|DefaultScope PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\ielnksrch PUP.Optional.Linkury.ACMB1 HKCU\Environment|SNP PUP.Optional.Microleaves HKU\S-1-5-18\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014} PUP.Optional.Microleaves HKU\.DEFAULT\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014} PUP.Optional.Microleaves HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1} PUP.Optional.Microleaves HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\436F6625D7B77354DBCD89DDC6CFAB1A PUP.Optional.Microleaves HKLM\Software\Classes\Installer\Products\436F6625D7B77354DBCD89DDC6CFAB1A PUP.Optional.Microleaves HKLM\Software\Classes\Installer\Features\436F6625D7B77354DBCD89DDC6CFAB1A PUP.Optional.Microleaves HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6AA73389-F4CD-4173-8073-478CCD25CB45} PUP.Optional.Microleaves HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AA73389-F4CD-4173-8073-478CCD25CB45} PUP.Optional.Microleaves HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Updater_Online_Application PUP.Optional.OneSystemCare HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\OneSystemCare_is1 PUP.Optional.OneSystemCare HKCU\Software\OneSystemCare PUP.Optional.ProductSetup.A HKCU\Software\PRODUCTSETUP PUP.Optional.SafeFinder HKCU\Environment|SNF PUP.Optional.SearchManager HKCU\Software\ProductSetup\Uninstall\0S1P1T1C1R1MtT0P1C1F2X1L1Q1P1QtT1S2UtT0Y1T1M1F1F PUP.Optional.SearchManager HKCU\Software\ProductSetup\Uninstall\0B2U2Z1P0F1P1G1R1P1V0A1Q1Q0O1G PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries found. ***** [ Chromium URLs ] ***** No malicious Chromium URLs found. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** PUP.Optional.Legacy suggestqueries.google.com ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########