- Nov 20, 2014
- 11
# AdwCleaner v4.101 - Report created 20/11/2014 at 09:10:32
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 Pro (64 bits)
# Username : Keith - HOME-PC
# Running from : D:\Users\Keith\Downloads\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Keith\AppData\Local\Google\Chrome\User Data\Default\\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Keith\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Keith\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v0.0.0.0
-\\ Mozilla Firefox v27.0 (en-US)
-\\ Google Chrome v39.0.2171.65
*************************
AdwCleaner[R0].txt - [7456 octets] - [19/11/2014 11:25:17]
AdwCleaner[R1].txt - [1779 octets] - [19/11/2014 19:50:49]
AdwCleaner[R2].txt - [1135 octets] - [20/11/2014 09:10:32]
AdwCleaner[S0].txt - [7148 octets] - [19/11/2014 11:26:39]
AdwCleaner[S1].txt - [1560 octets] - [19/11/2014 19:54:13]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1315 octets] ##########
alwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 19/11/2014
Scan Time: 10:01:23
Logfile: 18-11-14.txt
Administrator: Yes
Version: 2.00.3.1025
Malware Database: v2014.11.19.03
Rootkit Database: v2014.11.18.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Keith
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 378656
Time Elapsed: 48 min, 1 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 67
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [702f55e81369be781552249b1de5dc24],
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [702f55e81369be781552249b1de5dc24],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{06E50566-0AB7-431C-841D-62794727DAF9}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{26E7211D-0650-43CF-8498-4C81E83AEAAA}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A0207057-3461-4F7F-B689-D016B7A03964}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{06E50566-0AB7-431C-841D-62794727DAF9}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{26E7211D-0650-43CF-8498-4C81E83AEAAA}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A0207057-3461-4F7F-B689-D016B7A03964}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB}, Quarantined, [841bbe7f106c41f5cbc602f2bb479b65],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.MiniBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.MiniBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B9020890-9E08-446B-87B0-0C5CD0436D86}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\CLASSES\TYPELIB\{7F5690C3-594D-4BDA-B294-DAC4C4DC596C}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\CLASSES\INTERFACE\{E2905E09-1E3A-4997-94C9-9FB9EAB9E1E6}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{E2905E09-1E3A-4997-94C9-9FB9EAB9E1E6}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7F5690C3-594D-4BDA-B294-DAC4C4DC596C}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}, Quarantined, [722d91ac8fed1224ccfc50a3e2201be5],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}, Quarantined, [1c83bf7e4e2ea88e1fe4aa4a7092f10f],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}, Quarantined, [58471a239fdd39fde59ac7f3a75b7090],
PUP.Optional.Snapdo.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006ee092-9658-4fd6-bd8e-a21a348e59f5}, Quarantined, [a3fca697a4d87bbb4de851a64fb3e719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Adblocker.Adblocker, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Adblocker.Adblocker.1.0, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Adblocker.Adblocker, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Adblocker.Adblocker.1.0, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.Astromenda.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pfkfdlcdbajamklbneflfbcmfgddmpae, Quarantined, [346bc5782c50de588b96b1ff40c42fd1],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\DatamngrCoordinator.exe, Quarantined, [1887310c5c20e05670d353fafd0630d0],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\WOW6432NODE\DataMngr, Quarantined, [fca372cb82fa0a2c7f717bdc50b332ce],
PUP.Optional.DoSearch.A, HKLM\SOFTWARE\WOW6432NODE\do-searchSoftware, Quarantined, [2877d766df9df93d826e2848c1424db3],
PUP.Optional.DoSearches.A, HKLM\SOFTWARE\WOW6432NODE\dosearchesSoftware, Quarantined, [841b1f1e2a5248ee9eddb1ddb2526997],
PUP.Optional.InstallBrain.A, HKLM\SOFTWARE\WOW6432NODE\InstallIQ, Quarantined, [8b1417268def75c1634a89e53cc750b0],
PUP.Optional.ISearch.A, HKLM\SOFTWARE\WOW6432NODE\omiga-plusSoftware, Quarantined, [752a17267efede58515c3e648480817f],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, Quarantined, [bde2e8551e5e1d19fab3f9b1fe06ed13],
PUP.Optional.Astromenda.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pfkfdlcdbajamklbneflfbcmfgddmpae, Quarantined, [a2fdfa43d1abf541b46d9a16fe0604fc],
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [821d65d81f5dc1753b0e098da75d1ce4],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\DatamngrCoordinator.exe, Quarantined, [8619f944bebe3006f84b6ce107fc1de3],
PUP.Optional.WhiteSmoke.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WhiteSmoke_US Toolbar, Quarantined, [f3ac64d93f3d6accf0d849fd07fc4fb1],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPDP, Quarantined, [4f5066d7e597ec4a6f683a0aaa5960a0],
PUP.Optional.IEPluginServices.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, Quarantined, [fba43b0291ebb38362acfb3fbd46e719],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, Quarantined, [158a66d7631994a2040b05359a6913ed],
PUP.Optional.CrossRider.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\APPDATALOW\SOFTWARE\HQ Video Pro 1.6V18.11, Delete-on-Reboot, [8b1448f5bdbfdd596e5141f76f94ce32],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\DataMngr, Quarantined, [940b04395c20dd59e0b2b9d1877d946c],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\DataMngr_Toolbar, Quarantined, [dcc3e25b55271224aae7deacdc2842be],
PUP.Optional.StormWatchApp.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\StormWatchApp, Quarantined, [7e212f0efe7ea690ed6e211a4fb41ee2],
PUP.Optional.WebSearches.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SupHpUISoft, Quarantined, [8e11f4497efef3437841044250b35fa1],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [534cc8750a7250e640ad0b930cf826da],
PUP.Optional.MultiIE.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\APPDATALOW\SOFTWARE\DynConIE, Quarantined, [2e7164d9245878bef61b2b7d4bb901ff],
PUP.Optional.Astromenda.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pfkfdlcdbajamklbneflfbcmfgddmpae, Quarantined, [425d94a934484ee871b101af6c980bf5],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [eab508357ffd0f27413f0b69030043bd],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\INSTALLCORE, Quarantined, [3f60122b007c1d198e276a2027dd7e82],
PUP.Optional.SuperFish.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Quarantined, [a5fa013c53293600bf5bfb5615ee23dd],
PUP.Optional.Linkury.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SMARTBAR, Quarantined, [f7a895a8156738feedd83e08c43f47b9],
PUP.Optional.Softonic.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SOFTONIC\Universal Downloader, Quarantined, [ddc2da639fddde584085d48ff80bff01],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [48579f9e5c20181efd474dd41be8718f],
Registry Values: 3
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPDP|dir, C:\Program Files (x86)\SupTab, Quarantined, [4f5066d7e597ec4a6f683a0aaa5960a0]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\INSTALLCORE|tb, zr2Y1E2Z1G1J1T1M, Quarantined, [3f60122b007c1d198e276a2027dd7e82]
PUP.Optional.Linkury.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SMARTBAR|publisher, YahooTR, Quarantined, [f7a895a8156738feedd83e08c43f47b9]
Registry Data: 9
PUP.Optional.OmigaPlus.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://isearch.omiga-plus.com/?type=hp&ts=1416318833&from=tugs&uid=ST3160215AS_9RA1FZH3XXXX9RA1FZH3, Good: (www.google.com), Bad: (http://isearch.omiga-plus.com/?type...),Replaced,[128d83bac7b5132346dd1c334cb956aa]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[ddc269d4bbc1fc3a1f32c8858580ee12]
PUP.Optional.OmigaPlus.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://isearch.omiga-plus.com/?type=hp&ts=1416318833&from=tugs&uid=ST3160215AS_9RA1FZH3XXXX9RA1FZH3, Good: (www.google.com), Bad: (http://isearch.omiga-plus.com/?type...),Replaced,[e7b89aa3b1cb0b2b65bed37cd92cac54]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[7d2285b85329c175be931934986dae52]
PUP.Optional.HelperBar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAYLrkpDXl9dWzoFSPo,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[a7f869d41e5e41f56d0eaf949c69ba46]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[d5ca73ca9ddfd85ef9851231e223fa06]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[930c9aa3e399f541324eae95bd48d52b]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[27780a333a42b086b2cf92b1d92ccc34]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[f9a60c31daa280b6ed8f32115ea7a55b]
Folders: 23
PUP.Optional.MultiPlug, C:\Program Files (x86)\Adblocker, Quarantined, [9f0018251567ed49583b96ad7d869e62],
Rogue.Multiple, C:\ProgramData\374311380, Quarantined, [2e71a09de19bfd3915c32ec954aed828],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\2F9A3500D0104392BFBA8D1E3A8509AC, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\91A566E3D3ED4174A5CD1758D9D68B64, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\98D5F04AF9454466983C769B34D11AAA, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\D72DC73913A04C359E6E1EC8E4D0F0F3, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.Iminent.A, C:\Users\Keith\AppData\Local\Temp\Iminent, Quarantined, [fda21825bebe91a5d6b4b156966df50b],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\locales, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.SWBooster.A, C:\ProgramData\Supersoftware App\SW-Booster, Quarantined, [4a55a49926566bcb587ec5587291dd23],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DSite\UpdateProc, Quarantined, [811e80bd54287db9ae34e242fd0649b7],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker, Quarantined, [a6f90a33d4a8d066048464c7996a48b8],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain, Delete-on-Reboot, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc, Delete-on-Reboot, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Local\PriceFountain, Quarantined, [623db9842b511026f7fd2a0211f2c838],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Local\PriceFountain\logs, Quarantined, [623db9842b511026f7fd2a0211f2c838],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC\StormWatch.exe_Url_smmihdhxtfo2xscwsxn0uzjb5wcgalgp, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC\StormWatch.exe_Url_smmihdhxtfo2xscwsxn0uzjb5wcgalgp\1.5.0.0, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
Files: 75
PUP.Optional.Multiplug, C:\ProgramData\Adblocker\qjebNqE.exe, Quarantined, [fea167d6b9c344f26624a60280818977],
PUP.Optional.SuperSoftwareApp.A, C:\ProgramData\InstallMate\{FB6BF4F1-BE3E-4D66-AF8D-F61C2088D607}\Custom.dll, Quarantined, [a9f670cd314b0a2cfdc3084408f8ae52],
PUP.Optional.CrossRider.A, C:\Users\Keith\AppData\Roaming\HQJAV.exe, Quarantined, [1986b48995e7dd59adf10d7325e0a759],
PUP.Optional.CrossRider.A, C:\Users\Keith\AppData\Roaming\OYE.exe, Quarantined, [f5aa0c31ef8d41f5d2cc2a564fb644bc],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Roaming\OpenCandy\98D5F04AF9454466983C769B34D11AAA\SSStub_SearchProtect_p1v0.exe, Quarantined, [f2ad46f74438f14580fd4beb5aa78f71],
PUP.Optional.SearchProtect.A, C:\Users\Keith\AppData\Roaming\OpenCandy\D72DC73913A04C359E6E1EC8E4D0F0F3\Search_Protect_non_G.exe, Quarantined, [306f42fb98e461d5c7b7e3b89f6223dd],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Adblocker\L077mQ.dll, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Adblocker\L077mQ.x64.dll, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R1GEKCT.dll, Quarantined, [d1cee35af587db5bdc4d352fd72a28d8],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RMN1PJI.dll, Quarantined, [dac553eabbc173c3887d940c639e48b8],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RBWAW2U.dll, Quarantined, [603f132aabd14beba263d1cf827f52ae],
PUP.Optional.SupTab.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RVD7MZX.dll, Quarantined, [b3ec85b88eeedc5a394cbd788878ac54],
PUP.Optional.IePluginService.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RYU0KMR.exe, Quarantined, [f5aac07dd4a8b28452e791df6f923fc1],
PUP.Optional.IEPluginService.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RM7GLIV.exe, Quarantined, [d7c80934e29aa1956e93651ebc457d83],
PUP.Optional.SearchProtect, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R5MJZUV.exe, Quarantined, [5d4256e74933ea4c28f3b22d6a97926e],
PUP.Optional.MultiPlug.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RF25OS3.dll, Quarantined, [148b49f44f2d0a2cb277a4c08e73cd33],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R0O759B.dll, Quarantined, [b5ea44f9d1abcb6b81844b558f72c53b],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RWJCJLR.dll, Quarantined, [a5fa2b12d1ab4bebab5a514f18e9bd43],
PUP.Optional.IePluginService.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$ROK1XPC\PluginService.exe, Quarantined, [2b742d10cbb1191d07324d238e73857b],
PUP.Optional.TVWizard.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R5N8H2W\TqWFwSM.exe, Quarantined, [e7b80e2f9ce02115aa8df5adbb4634cc],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\dlLogic.exe, Quarantined, [900fca73057777bfb32e251d0df3d52b],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\dltr.exe, Quarantined, [257ab8857b01b87ebc269ca639c70cf4],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\verifier.exe, Quarantined, [821d81bccab273c36181d56d3dc3da26],
PUP.Optional.InstallRex, C:\Users\Keith\AppData\Local\Temp\sSetup-se.exe, Quarantined, [ddc2e15cadcfd66005c698934db81de3],
PUP.Optional.Unizeto, C:\Users\Keith\AppData\Local\Temp\e9dbeb9b248.exe, Quarantined, [207f1e1f8defd26464e733b23bc6be42],
PUP.Optional.Unizeto, C:\Users\Keith\AppData\Local\Temp\F1F9.tmp, Quarantined, [039c3c0195e7ba7cd37845a08e7330d0],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\GCVerifier.dll, Quarantined, [1e8184b980fcce68b030c47eca36eb15],
PUP.Optional.CrossRider.A, C:\Users\Keith\AppData\Local\Temp\3AA1tmp\setup.exe, Quarantined, [524d46f71765e15502a7efeb9071f907],
PUP.Optional.Bundle, C:\Users\Keith\AppData\Local\Temp\3AA2tmp\lly_omiga-plus.exe, Quarantined, [fba41d20b9c34beb98a152948e73966a],
PUP.Optional.TVWizard.A, C:\Users\Keith\AppData\Local\Temp\3AA3tmp\setup.exe, Quarantined, [59469e9fd0acb482b7987ddec937e11f],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Temp\3AA5tmp\setup.exe, Quarantined, [d4cbbb82d7a5dc5a6523b3a25ba50bf5],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHU.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [316e40fd05770f27dec26f50837e13ed],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHU.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [efb03706c6b610269a06a817f30e0ff1],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUm.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [c5da380559230630b3edc0ffef126b95],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUm.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [fea1a19ca6d613233e62932c44bdc33d],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUme.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [148beb5277052c0a940c9926ad548779],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUme.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [841bc57878045fd700a079460100ed13],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUmea.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [6d3209342a520c2a57498b3451b08779],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUmea.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [514efa43ed8f1620c0e0407fd8299070],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\embededstub.exe, Quarantined, [0b94023b8af2320431b00a38d32d3ec2],
PUP.Optional.EZDownloader.A, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\EzDownloader_setup.exe, Quarantined, [bce366d73a427db9ecdc47d8df2150b0],
Trojan.Downloader, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\usetup.exe, Quarantined, [3f60c6773844e45215b53b79847e09f7],
PUP.Optional.Unizeto, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\Win7_x64.rar.exe, Quarantined, [544b4bf2c4b87fb7e467da0ba55c728e],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StormWatch.lnk, Quarantined, [821d2a138def61d59611a4988e75936d],
PUP.Optional.MultiPlug, C:\Program Files (x86)\Adblocker\L077mQ.tlb, Quarantined, [9f0018251567ed49583b96ad7d869e62],
PUP.Optional.MultiPlug, C:\Program Files (x86)\Adblocker\L077mQ.dat, Quarantined, [9f0018251567ed49583b96ad7d869e62],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\2F9A3500D0104392BFBA8D1E3A8509AC\OptimizerPro.exe, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\91A566E3D3ED4174A5CD1758D9D68B64\OutFoxTV_p1v8.exe, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\91A566E3D3ED4174A5CD1758D9D68B64\OutfoxTV_simple_185.exe, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\D72DC73913A04C359E6E1EC8E4D0F0F3\222507.txt, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\icudt.dll, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\libcef.dll, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\locales\en-US.pak, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleCrashHandler.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdate.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdateBroker.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdateHelper.msi, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdateOnDemand.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\goopdate.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\goopdateres_en.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\npGoogleUpdate4.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\psmachine.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\psuser.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc\config.dat, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc\info.dat, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc\prod.dat, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DSite\UpdateProc\config.dat, Quarantined, [811e80bd54287db9ae34e242fd0649b7],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker\qjebNqE.dat, Quarantined, [a6f90a33d4a8d066048464c7996a48b8],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\config.dat, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\info.dat, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\STTL.DAT, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\TTL.DAT, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\UpdateTask.exe, Delete-on-Reboot, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Local\PriceFountain\prfo.dll, Quarantined, [623db9842b511026f7fd2a0211f2c838],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC\StormWatch.exe_Url_smmihdhxtfo2xscwsxn0uzjb5wcgalgp\1.5.0.0\user.config, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
Physical Sectors: 0
(No malicious items detected)
(end)
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 Pro (64 bits)
# Username : Keith - HOME-PC
# Running from : D:\Users\Keith\Downloads\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Keith\AppData\Local\Google\Chrome\User Data\Default\\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Keith\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Keith\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v0.0.0.0
-\\ Mozilla Firefox v27.0 (en-US)
-\\ Google Chrome v39.0.2171.65
*************************
AdwCleaner[R0].txt - [7456 octets] - [19/11/2014 11:25:17]
AdwCleaner[R1].txt - [1779 octets] - [19/11/2014 19:50:49]
AdwCleaner[R2].txt - [1135 octets] - [20/11/2014 09:10:32]
AdwCleaner[S0].txt - [7148 octets] - [19/11/2014 11:26:39]
AdwCleaner[S1].txt - [1560 octets] - [19/11/2014 19:54:13]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1315 octets] ##########
alwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 19/11/2014
Scan Time: 10:01:23
Logfile: 18-11-14.txt
Administrator: Yes
Version: 2.00.3.1025
Malware Database: v2014.11.19.03
Rootkit Database: v2014.11.18.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Keith
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 378656
Time Elapsed: 48 min, 1 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 67
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [702f55e81369be781552249b1de5dc24],
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [702f55e81369be781552249b1de5dc24],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{06E50566-0AB7-431C-841D-62794727DAF9}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{26E7211D-0650-43CF-8498-4C81E83AEAAA}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A0207057-3461-4F7F-B689-D016B7A03964}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{06E50566-0AB7-431C-841D-62794727DAF9}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{26E7211D-0650-43CF-8498-4C81E83AEAAA}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A0207057-3461-4F7F-B689-D016B7A03964}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}, Quarantined, [b1ee3706c6b624127917b24209f9629e],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB}, Quarantined, [841bbe7f106c41f5cbc602f2bb479b65],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.MiniBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.MiniBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.MiniBar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}, Quarantined, [b8e70736b7c591a55e358c68f70be31d],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B9020890-9E08-446B-87B0-0C5CD0436D86}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\CLASSES\TYPELIB\{7F5690C3-594D-4BDA-B294-DAC4C4DC596C}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\CLASSES\INTERFACE\{E2905E09-1E3A-4997-94C9-9FB9EAB9E1E6}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{E2905E09-1E3A-4997-94C9-9FB9EAB9E1E6}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.LyricsAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7F5690C3-594D-4BDA-B294-DAC4C4DC596C}, Quarantined, [702fa39a304caf87da6f645d57ab59a7],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}, Quarantined, [722d91ac8fed1224ccfc50a3e2201be5],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}, Quarantined, [1c83bf7e4e2ea88e1fe4aa4a7092f10f],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}, Quarantined, [58471a239fdd39fde59ac7f3a75b7090],
PUP.Optional.Snapdo.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006ee092-9658-4fd6-bd8e-a21a348e59f5}, Quarantined, [a3fca697a4d87bbb4de851a64fb3e719],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Adblocker.Adblocker, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\Adblocker.Adblocker.1.0, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Adblocker.Adblocker, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Adblocker.Adblocker.1.0, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\CLSID\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{8370D833-5776-278B-6B84-47BCC525382F}, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.Astromenda.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pfkfdlcdbajamklbneflfbcmfgddmpae, Quarantined, [346bc5782c50de588b96b1ff40c42fd1],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\DatamngrCoordinator.exe, Quarantined, [1887310c5c20e05670d353fafd0630d0],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\WOW6432NODE\DataMngr, Quarantined, [fca372cb82fa0a2c7f717bdc50b332ce],
PUP.Optional.DoSearch.A, HKLM\SOFTWARE\WOW6432NODE\do-searchSoftware, Quarantined, [2877d766df9df93d826e2848c1424db3],
PUP.Optional.DoSearches.A, HKLM\SOFTWARE\WOW6432NODE\dosearchesSoftware, Quarantined, [841b1f1e2a5248ee9eddb1ddb2526997],
PUP.Optional.InstallBrain.A, HKLM\SOFTWARE\WOW6432NODE\InstallIQ, Quarantined, [8b1417268def75c1634a89e53cc750b0],
PUP.Optional.ISearch.A, HKLM\SOFTWARE\WOW6432NODE\omiga-plusSoftware, Quarantined, [752a17267efede58515c3e648480817f],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, Quarantined, [bde2e8551e5e1d19fab3f9b1fe06ed13],
PUP.Optional.Astromenda.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pfkfdlcdbajamklbneflfbcmfgddmpae, Quarantined, [a2fdfa43d1abf541b46d9a16fe0604fc],
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [821d65d81f5dc1753b0e098da75d1ce4],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\DatamngrCoordinator.exe, Quarantined, [8619f944bebe3006f84b6ce107fc1de3],
PUP.Optional.WhiteSmoke.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WhiteSmoke_US Toolbar, Quarantined, [f3ac64d93f3d6accf0d849fd07fc4fb1],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPDP, Quarantined, [4f5066d7e597ec4a6f683a0aaa5960a0],
PUP.Optional.IEPluginServices.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, Quarantined, [fba43b0291ebb38362acfb3fbd46e719],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, Quarantined, [158a66d7631994a2040b05359a6913ed],
PUP.Optional.CrossRider.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\APPDATALOW\SOFTWARE\HQ Video Pro 1.6V18.11, Delete-on-Reboot, [8b1448f5bdbfdd596e5141f76f94ce32],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\DataMngr, Quarantined, [940b04395c20dd59e0b2b9d1877d946c],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\DataMngr_Toolbar, Quarantined, [dcc3e25b55271224aae7deacdc2842be],
PUP.Optional.StormWatchApp.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\StormWatchApp, Quarantined, [7e212f0efe7ea690ed6e211a4fb41ee2],
PUP.Optional.WebSearches.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SupHpUISoft, Quarantined, [8e11f4497efef3437841044250b35fa1],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [534cc8750a7250e640ad0b930cf826da],
PUP.Optional.MultiIE.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\APPDATALOW\SOFTWARE\DynConIE, Quarantined, [2e7164d9245878bef61b2b7d4bb901ff],
PUP.Optional.Astromenda.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pfkfdlcdbajamklbneflfbcmfgddmpae, Quarantined, [425d94a934484ee871b101af6c980bf5],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [eab508357ffd0f27413f0b69030043bd],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\INSTALLCORE, Quarantined, [3f60122b007c1d198e276a2027dd7e82],
PUP.Optional.SuperFish.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Quarantined, [a5fa013c53293600bf5bfb5615ee23dd],
PUP.Optional.Linkury.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SMARTBAR, Quarantined, [f7a895a8156738feedd83e08c43f47b9],
PUP.Optional.Softonic.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SOFTONIC\Universal Downloader, Quarantined, [ddc2da639fddde584085d48ff80bff01],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [48579f9e5c20181efd474dd41be8718f],
Registry Values: 3
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPDP|dir, C:\Program Files (x86)\SupTab, Quarantined, [4f5066d7e597ec4a6f683a0aaa5960a0]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\INSTALLCORE|tb, zr2Y1E2Z1G1J1T1M, Quarantined, [3f60122b007c1d198e276a2027dd7e82]
PUP.Optional.Linkury.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\SMARTBAR|publisher, YahooTR, Quarantined, [f7a895a8156738feedd83e08c43f47b9]
Registry Data: 9
PUP.Optional.OmigaPlus.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://isearch.omiga-plus.com/?type=hp&ts=1416318833&from=tugs&uid=ST3160215AS_9RA1FZH3XXXX9RA1FZH3, Good: (www.google.com), Bad: (http://isearch.omiga-plus.com/?type...),Replaced,[128d83bac7b5132346dd1c334cb956aa]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[ddc269d4bbc1fc3a1f32c8858580ee12]
PUP.Optional.OmigaPlus.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://isearch.omiga-plus.com/?type=hp&ts=1416318833&from=tugs&uid=ST3160215AS_9RA1FZH3XXXX9RA1FZH3, Good: (www.google.com), Bad: (http://isearch.omiga-plus.com/?type...),Replaced,[e7b89aa3b1cb0b2b65bed37cd92cac54]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[7d2285b85329c175be931934986dae52]
PUP.Optional.HelperBar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAYLrkpDXl9dWzoFSPo,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[a7f869d41e5e41f56d0eaf949c69ba46]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[d5ca73ca9ddfd85ef9851231e223fa06]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[930c9aa3e399f541324eae95bd48d52b]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[27780a333a42b086b2cf92b1d92ccc34]
PUP.Optional.HelperBar.A, HKU\S-1-5-21-325601912-3133953203-193938200-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, http://feed.helperbar.com/?p=mKO_Aw...ylBGLqq0RwAHaaxRL_Ic56TmuNo8,&q={searchTerms}, Good: (www.google.com), Bad: (http://feed.helperbar.com/?p=mKO_Aw...),Replaced,[f9a60c31daa280b6ed8f32115ea7a55b]
Folders: 23
PUP.Optional.MultiPlug, C:\Program Files (x86)\Adblocker, Quarantined, [9f0018251567ed49583b96ad7d869e62],
Rogue.Multiple, C:\ProgramData\374311380, Quarantined, [2e71a09de19bfd3915c32ec954aed828],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\2F9A3500D0104392BFBA8D1E3A8509AC, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\91A566E3D3ED4174A5CD1758D9D68B64, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\98D5F04AF9454466983C769B34D11AAA, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\D72DC73913A04C359E6E1EC8E4D0F0F3, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.Iminent.A, C:\Users\Keith\AppData\Local\Temp\Iminent, Quarantined, [fda21825bebe91a5d6b4b156966df50b],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\locales, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.SWBooster.A, C:\ProgramData\Supersoftware App\SW-Booster, Quarantined, [4a55a49926566bcb587ec5587291dd23],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DSite\UpdateProc, Quarantined, [811e80bd54287db9ae34e242fd0649b7],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker, Quarantined, [a6f90a33d4a8d066048464c7996a48b8],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain, Delete-on-Reboot, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc, Delete-on-Reboot, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Local\PriceFountain, Quarantined, [623db9842b511026f7fd2a0211f2c838],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Local\PriceFountain\logs, Quarantined, [623db9842b511026f7fd2a0211f2c838],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC\StormWatch.exe_Url_smmihdhxtfo2xscwsxn0uzjb5wcgalgp, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC\StormWatch.exe_Url_smmihdhxtfo2xscwsxn0uzjb5wcgalgp\1.5.0.0, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
Files: 75
PUP.Optional.Multiplug, C:\ProgramData\Adblocker\qjebNqE.exe, Quarantined, [fea167d6b9c344f26624a60280818977],
PUP.Optional.SuperSoftwareApp.A, C:\ProgramData\InstallMate\{FB6BF4F1-BE3E-4D66-AF8D-F61C2088D607}\Custom.dll, Quarantined, [a9f670cd314b0a2cfdc3084408f8ae52],
PUP.Optional.CrossRider.A, C:\Users\Keith\AppData\Roaming\HQJAV.exe, Quarantined, [1986b48995e7dd59adf10d7325e0a759],
PUP.Optional.CrossRider.A, C:\Users\Keith\AppData\Roaming\OYE.exe, Quarantined, [f5aa0c31ef8d41f5d2cc2a564fb644bc],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Roaming\OpenCandy\98D5F04AF9454466983C769B34D11AAA\SSStub_SearchProtect_p1v0.exe, Quarantined, [f2ad46f74438f14580fd4beb5aa78f71],
PUP.Optional.SearchProtect.A, C:\Users\Keith\AppData\Roaming\OpenCandy\D72DC73913A04C359E6E1EC8E4D0F0F3\Search_Protect_non_G.exe, Quarantined, [306f42fb98e461d5c7b7e3b89f6223dd],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Adblocker\L077mQ.dll, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\Adblocker\L077mQ.x64.dll, Quarantined, [9e01e45995e753e322076301649d1ce4],
PUP.Optional.MultiPlug.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R1GEKCT.dll, Quarantined, [d1cee35af587db5bdc4d352fd72a28d8],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RMN1PJI.dll, Quarantined, [dac553eabbc173c3887d940c639e48b8],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RBWAW2U.dll, Quarantined, [603f132aabd14beba263d1cf827f52ae],
PUP.Optional.SupTab.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RVD7MZX.dll, Quarantined, [b3ec85b88eeedc5a394cbd788878ac54],
PUP.Optional.IePluginService.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RYU0KMR.exe, Quarantined, [f5aac07dd4a8b28452e791df6f923fc1],
PUP.Optional.IEPluginService.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RM7GLIV.exe, Quarantined, [d7c80934e29aa1956e93651ebc457d83],
PUP.Optional.SearchProtect, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R5MJZUV.exe, Quarantined, [5d4256e74933ea4c28f3b22d6a97926e],
PUP.Optional.MultiPlug.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RF25OS3.dll, Quarantined, [148b49f44f2d0a2cb277a4c08e73cd33],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R0O759B.dll, Quarantined, [b5ea44f9d1abcb6b81844b558f72c53b],
PUP.Optional.Skytech.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$RWJCJLR.dll, Quarantined, [a5fa2b12d1ab4bebab5a514f18e9bd43],
PUP.Optional.IePluginService.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$ROK1XPC\PluginService.exe, Quarantined, [2b742d10cbb1191d07324d238e73857b],
PUP.Optional.TVWizard.A, C:\$Recycle.Bin\S-1-5-21-325601912-3133953203-193938200-1001\$R5N8H2W\TqWFwSM.exe, Quarantined, [e7b80e2f9ce02115aa8df5adbb4634cc],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\dlLogic.exe, Quarantined, [900fca73057777bfb32e251d0df3d52b],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\dltr.exe, Quarantined, [257ab8857b01b87ebc269ca639c70cf4],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\verifier.exe, Quarantined, [821d81bccab273c36181d56d3dc3da26],
PUP.Optional.InstallRex, C:\Users\Keith\AppData\Local\Temp\sSetup-se.exe, Quarantined, [ddc2e15cadcfd66005c698934db81de3],
PUP.Optional.Unizeto, C:\Users\Keith\AppData\Local\Temp\e9dbeb9b248.exe, Quarantined, [207f1e1f8defd26464e733b23bc6be42],
PUP.Optional.Unizeto, C:\Users\Keith\AppData\Local\Temp\F1F9.tmp, Quarantined, [039c3c0195e7ba7cd37845a08e7330d0],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\GCVerifier.dll, Quarantined, [1e8184b980fcce68b030c47eca36eb15],
PUP.Optional.CrossRider.A, C:\Users\Keith\AppData\Local\Temp\3AA1tmp\setup.exe, Quarantined, [524d46f71765e15502a7efeb9071f907],
PUP.Optional.Bundle, C:\Users\Keith\AppData\Local\Temp\3AA2tmp\lly_omiga-plus.exe, Quarantined, [fba41d20b9c34beb98a152948e73966a],
PUP.Optional.TVWizard.A, C:\Users\Keith\AppData\Local\Temp\3AA3tmp\setup.exe, Quarantined, [59469e9fd0acb482b7987ddec937e11f],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Temp\3AA5tmp\setup.exe, Quarantined, [d4cbbb82d7a5dc5a6523b3a25ba50bf5],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHU.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [316e40fd05770f27dec26f50837e13ed],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHU.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [efb03706c6b610269a06a817f30e0ff1],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUm.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [c5da380559230630b3edc0ffef126b95],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUm.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [fea1a19ca6d613233e62932c44bdc33d],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUme.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [148beb5277052c0a940c9926ad548779],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUme.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [841bc57878045fd700a079460100ed13],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUmea.tmp\OKkzgCH0Tn97u1.dll, Quarantined, [6d3209342a520c2a57498b3451b08779],
PUP.Optional.MultiPlug, C:\Users\Keith\AppData\Local\Temp\PHQGHUmea.tmp\OKkzgCH0Tn97u1.x64.dll, Quarantined, [514efa43ed8f1620c0e0407fd8299070],
PUP.Optional.Conduit.A, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\embededstub.exe, Quarantined, [0b94023b8af2320431b00a38d32d3ec2],
PUP.Optional.EZDownloader.A, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\EzDownloader_setup.exe, Quarantined, [bce366d73a427db9ecdc47d8df2150b0],
Trojan.Downloader, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\usetup.exe, Quarantined, [3f60c6773844e45215b53b79847e09f7],
PUP.Optional.Unizeto, C:\Users\Keith\AppData\Local\Temp\c3FC67da57\temp\Win7_x64.rar.exe, Quarantined, [544b4bf2c4b87fb7e467da0ba55c728e],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StormWatch.lnk, Quarantined, [821d2a138def61d59611a4988e75936d],
PUP.Optional.MultiPlug, C:\Program Files (x86)\Adblocker\L077mQ.tlb, Quarantined, [9f0018251567ed49583b96ad7d869e62],
PUP.Optional.MultiPlug, C:\Program Files (x86)\Adblocker\L077mQ.dat, Quarantined, [9f0018251567ed49583b96ad7d869e62],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\2F9A3500D0104392BFBA8D1E3A8509AC\OptimizerPro.exe, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\91A566E3D3ED4174A5CD1758D9D68B64\OutFoxTV_p1v8.exe, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\91A566E3D3ED4174A5CD1758D9D68B64\OutfoxTV_simple_185.exe, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.OpenCandy, C:\Users\Keith\AppData\Roaming\OpenCandy\D72DC73913A04C359E6E1EC8E4D0F0F3\222507.txt, Quarantined, [4d5269d480fcc76f5f12e1263ac9ab55],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\icudt.dll, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\libcef.dll, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.337Technologies.A, C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\locales\en-US.pak, Quarantined, [336c6fce4d2f67cf6c2f996ea65d1ae6],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleCrashHandler.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdate.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdateBroker.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdateHelper.msi, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\GoogleUpdateOnDemand.exe, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\goopdate.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\goopdateres_en.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\npGoogleUpdate4.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\psmachine.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.GlobalUpdate.A, C:\Users\Keith\AppData\Local\Temp\comh.249513\psuser.dll, Quarantined, [48579f9e5c20181efd474dd41be8718f],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc\config.dat, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc\info.dat, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DigitalSites\UpdateProc\prod.dat, Quarantined, [7e2144f997e56acc7b65c55fa85b7a86],
PUP.Optional.Updater.A, C:\Users\Keith\AppData\Roaming\DSite\UpdateProc\config.dat, Quarantined, [811e80bd54287db9ae34e242fd0649b7],
PUP.Optional.MultiPlug, C:\ProgramData\Adblocker\qjebNqE.dat, Quarantined, [a6f90a33d4a8d066048464c7996a48b8],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\config.dat, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\info.dat, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\STTL.DAT, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\TTL.DAT, Quarantined, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Roaming\PriceFountain\UpdateProc\UpdateTask.exe, Delete-on-Reboot, [544b122b59234de98a6909232bd85ba5],
PUP.Optional.PriceFountain.A, C:\Users\Keith\AppData\Local\PriceFountain\prfo.dll, Quarantined, [623db9842b511026f7fd2a0211f2c838],
PUP.Optional.StormWatch.A, C:\Users\Keith\AppData\Local\Weather_Protector_LLC\StormWatch.exe_Url_smmihdhxtfo2xscwsxn0uzjb5wcgalgp\1.5.0.0\user.config, Quarantined, [b2ed8eaf97e539fd6498062b9c6752ae],
Physical Sectors: 0
(No malicious items detected)
(end)