- Jun 23, 2015
- 1
scan logs are here
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 6/20/2015
Scan Time: 9:43:20 PM
Logfile:
Administrator: Yes
Version: 2.01.6.1022
Malware Database: v2015.06.20.05
Rootkit Database: v2015.06.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Erica
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 303645
Time Elapsed: 54 min, 12 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 4
PUP.Optional.Multiplug, HKU\S-1-5-21-3997723476-1863672869-1514758322-1000_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Quarantined, [accd97ac474391a5725f2eec13f06d93],
PUP.Optional.Multiplug, HKU\S-1-5-21-3997723476-1863672869-1514758322-1000_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, Quarantined, [accd97ac474391a5725f2eec13f06d93],
PUP.Optional.Booster.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{999a1b1f}, Quarantined, [6d0c281bd3b7f83e275f8c45a2617a86],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4820778D-AB0D-6D18-C316-52A6A0E1D507}, Quarantined, [1e5bd3700981cf67773e8b398e753fc1],
Registry Values: 0
(No malicious items detected)
Registry Data: 2
PUP.Optional.WebSearchInfo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://websearch.hotsearches.info/?...hid=15335616608835531485&lg=EN&cc=US&unqvl=90, Good: (www.google.com), Bad: (http://websearch.hotsearches.info/?...),Replaced,[3d3c12317416d1651de997410203728e]
PUP.Optional.WebSearchInfo, HKU\S-1-5-21-3997723476-1863672869-1514758322-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://websearch.hotsearches.info/?...hid=15335616608835531485&lg=EN&cc=US&unqvl=90, Good: (www.google.com), Bad: (http://websearch.hotsearches.info/?...),Replaced,[01785ee59ded2a0cee17e0f8689d6a96]
Folders: 0
(No malicious items detected)
Files: 3
PUP.Optional.Multiplug, C:\Users\Erica\Downloads\Minecraft_51252.exe, Quarantined, [accd97ac474391a5725f2eec13f06d93],
PUP.Optional.MultiPlug.A, C:\Users\Erica\AppData\Local\Temp\E5C8\temp\hpds_setup.exe, Quarantined, [98e151f2d9b17abce4f0ed59917149b7],
PUP.Optional.WebSearch.A, C:\Users\Erica\AppData\Roaming\Mozilla\Firefox\Profiles\8t6gwysp.default\searchplugins\WebSearch.xml, Quarantined, [de9bfb48a1e972c44156905b6c97728e],
Physical Sectors: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 6/20/2015 9:43:18 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/20/2015 9:43:18 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/20/2015 9:43:18 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/20/2015 9:43:19 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, Domain Database, 0.0.0.0, 2015.6.12.1,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, Rootkit Database, 2015.2.25.1, 2015.6.15.1,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, IP Database, 0.0.0.0, 2015.6.12.1,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, Remediation Database, 2015.3.9.1, 2015.6.15.1,
Update, 6/20/2015 9:43:26 PM, SYSTEM, TYLER, Manual, Malware Database, 2015.3.9.5, 2015.6.20.5,
Protection, 6/20/2015 9:43:27 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/20/2015 9:43:27 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/20/2015 9:43:27 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/20/2015 9:43:39 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/20/2015 9:43:39 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/20/2015 9:43:40 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/20/2015 9:47:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61117, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 9:47:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61117, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 9:47:45 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61118, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 9:47:52 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61157, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 10:01:57 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug, C:\ProgramData\{fa84e891-6905-b2b0-fa84-4e891690a245}\minecraft_51252.exe, Quarantine, [34c1902ca6e41b1b804ebfb41ce6f709]
Scan, 6/20/2015 10:37:53 PM, SYSTEM, TYLER, Manual, Start:6/20/2015 9:43:20 PM, Duration:54 min 12 sec, Threat Scan, Completed, 0 Malware Detections, 9 Non-Malware Detections,
Protection, 6/20/2015 10:40:12 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/20/2015 10:40:12 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/20/2015 10:40:12 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/20/2015 10:40:13 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/20/2015 10:51:37 PM, Erica, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug.A, C:\Program Files\decodit\decodit.dll, Quarantine, [cf26912bbeccb97d19dc372362a0fa06]
Detection, 6/20/2015 11:15:41 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49617, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:15:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49617, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:16:12 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49750, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:16:33 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49769, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:23:20 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug.A, c:\program files\decodit\decodit.dll, Quarantine Failed, 2, The system cannot find the file specified. , [cf26912bbeccb97d19dc372362a0fa06]
Detection, 6/20/2015 11:23:20 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug.A, c:\program files\decodit\decodit.dll, Quarantine Failed, 2, The system cannot find the file specified. , [cf26912bbeccb97d19dc372362a0fa06]
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Error, 6/21/2015 9:02:49 AM, SYSTEM, TYLER, Scheduler, 11004,
Update, 6/21/2015 9:02:50 AM, SYSTEM, TYLER, Scheduler, Malware Database, Failed, Unable to access update server, 2015.6.20.5, 2015.6.21.1,
Detection, 6/21/2015 9:21:47 AM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug, C:\Users\Erica\Downloads\mo-creatures.exe, Quarantine, [54a1952774165dd987474231cb3709f7]
Update, 6/21/2015 9:49:58 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/21/2015 4:10:07 PM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Detection, 6/21/2015 5:38:17 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, C:\Windows\System32\Tasks\Bidaily Synchronize Task[973b], Quarantine, [ed08caf24f3b43f3cb04f29d1ce9619f]
Update, 6/21/2015 5:38:17 PM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Detection, 6/21/2015 5:39:15 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, C:\Program Files\PriceMinus\z599L7db1JzVdC.exe, Quarantine, [2dc8863672189f97aa8bc295917141bf]
Detection, 6/21/2015 5:40:05 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 50850, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:41:49 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51025, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:45:35 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51146, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:46:18 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51257, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:48:43 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51347, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:49:05 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51399, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:50:24 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51467, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Protection, 6/21/2015 5:58:41 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/21/2015 5:58:41 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/21/2015 5:58:41 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/21/2015 5:58:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/21/2015 6:01:23 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49409, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:01:24 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49409, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:01:24 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49410, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:10:12 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51180, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:10:13 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51181, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:12:21 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, C:\Program Files\Bitly Unleash the power of the link\Bitly Unleash the power of the link.exe, Quarantine, [31c44f6d5238af870f262a2dbd45946c]
Detection, 6/21/2015 6:13:05 PM, Erica, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, c:\program files\bitly unleash the power of the link\bitly unleash the power of the link.exe, Quarantine Failed, 2, The system cannot find the file specified. , [31c44f6d5238af870f262a2dbd45946c]
Detection, 6/21/2015 6:13:52 PM, Erica, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, c:\program files\bitly unleash the power of the link\bitly unleash the power of the link.exe, Quarantine Failed, 2, The system cannot find the file specified. , [31c44f6d5238af870f262a2dbd45946c]
Detection, 6/21/2015 6:15:17 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51269, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:15:17 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51270, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Protection, 6/21/2015 6:29:26 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/21/2015 6:29:26 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/21/2015 6:29:27 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/21/2015 6:29:29 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/21/2015 6:30:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49190, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:30:45 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49190, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Update, 6/21/2015 6:38:33 PM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.20.5, 2015.6.21.4,
Protection, 6/21/2015 6:38:33 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/21/2015 6:38:33 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/21/2015 6:38:35 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/21/2015 6:39:35 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/21/2015 6:39:36 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/21/2015 6:39:41 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Update, 6/22/2015 11:21:43 PM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.21.4, 2015.6.22.2,
Protection, 6/22/2015 11:21:46 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/22/2015 11:21:47 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/22/2015 11:21:51 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/22/2015 11:23:45 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/22/2015 11:23:47 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/22/2015 11:23:53 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Update, 6/22/2015 11:50:03 PM, SYSTEM, TYLER, Scheduler, Rootkit Database, 2015.6.15.1, 2015.6.22.1,
Update, 6/22/2015 11:51:19 PM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.22.2, 2015.6.23.1,
Protection, 6/22/2015 11:51:35 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/22/2015 11:51:36 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/22/2015 11:51:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/22/2015 11:54:33 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/22/2015 11:54:33 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/22/2015 11:54:39 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Protection, 6/22/2015 9:04:31 AM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/22/2015 9:04:31 AM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/22/2015 9:04:31 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/22/2015 9:04:37 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Update, 6/23/2015 1:31:17 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 1:44:01 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 2:28:24 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 2:52:23 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 3:34:29 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 3:41:04 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 3:46:10 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 4:49:23 AM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.23.1, 2015.6.23.2,
Protection, 6/23/2015 4:49:24 AM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/23/2015 4:49:24 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/23/2015 4:49:24 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/23/2015 4:50:02 AM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/23/2015 4:50:02 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/23/2015 4:50:04 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Update, 6/23/2015 6:43:53 AM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.23.2, 2015.6.23.3,
Protection, 6/23/2015 6:43:54 AM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/23/2015 6:43:54 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/23/2015 6:43:54 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/23/2015 6:44:23 AM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/23/2015 6:44:23 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/23/2015 6:44:24 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Scan, 6/23/2015 8:48:51 AM, SYSTEM, TYLER, Context, Start:6/23/2015 3:34:05 AM, Duration:27 min 25 sec, Threat Scan, Completed, 0 Malware Detections, 34 Non-Malware Detections,
(end)
i cant seem to upload scan log from hitman pro, but i had lots of registry lines, and pups, two programs that stood out were priceminus, and bestadblocker
here is adwcleaner log
# AdwCleaner v4.207 - Logfile created 22/06/2015 at 09:01:30
# Updated 21/06/2015 by Xplode
# Database : 2015-06-21.2 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : Erica - TYLER
# Running from : C:\Users\Erica\Downloads\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
[#] Service Deleted : 999a1b1f
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\{a6da7c43-63cf-a0b4-a6da-a7c4363cf10d}
Folder Deleted : C:\ProgramData\{fa84e891-6905-b2b0-fa84-4e891690a245}
Folder Deleted : C:\Program Files\decodit
Folder Deleted : C:\Program Files\PiriceMinuss
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\ba4ced57-15d4-a1ae-45d6-64e268dfd362
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Mozilla Firefox v38.0.5 (x86 en-US)
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename,S", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1,S", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("extensions.94msb26TB6HwuTu4.scode", "(function(){try{if(window.location.href.indexOf(\"rjkHrHk7rjg7rdY5rHk8rHw9pdk\")>-1){return;}}catch(e){}try{var d=[[\"search.asistents.com\",\"cryptogma[...]
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("extensions.N72YfL3WMuVBwknj.scode", "(function(){try{if(window.location.href.indexOf(\"rjkHrHk7rjg7rdY5rHk8rHw9pdk\")>-1){return;}}catch(e){}try{var d=[[\"search.asistents.com\",\"cryptogma[...]
-\\ Google Chrome v43.0.2357.124
[C:\Users\Erica\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Erica\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
*************************
AdwCleaner[R0].txt - [2553 bytes] - [22/06/2015 08:54:48]
AdwCleaner[R1].txt - [2612 bytes] - [22/06/2015 08:58:31]
AdwCleaner[S0].txt - [2649 bytes] - [22/06/2015 09:01:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2708 bytes] ##########
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 6/20/2015
Scan Time: 9:43:20 PM
Logfile:
Administrator: Yes
Version: 2.01.6.1022
Malware Database: v2015.06.20.05
Rootkit Database: v2015.06.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Erica
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 303645
Time Elapsed: 54 min, 12 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 4
PUP.Optional.Multiplug, HKU\S-1-5-21-3997723476-1863672869-1514758322-1000_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Quarantined, [accd97ac474391a5725f2eec13f06d93],
PUP.Optional.Multiplug, HKU\S-1-5-21-3997723476-1863672869-1514758322-1000_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, Quarantined, [accd97ac474391a5725f2eec13f06d93],
PUP.Optional.Booster.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{999a1b1f}, Quarantined, [6d0c281bd3b7f83e275f8c45a2617a86],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4820778D-AB0D-6D18-C316-52A6A0E1D507}, Quarantined, [1e5bd3700981cf67773e8b398e753fc1],
Registry Values: 0
(No malicious items detected)
Registry Data: 2
PUP.Optional.WebSearchInfo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://websearch.hotsearches.info/?...hid=15335616608835531485&lg=EN&cc=US&unqvl=90, Good: (www.google.com), Bad: (http://websearch.hotsearches.info/?...),Replaced,[3d3c12317416d1651de997410203728e]
PUP.Optional.WebSearchInfo, HKU\S-1-5-21-3997723476-1863672869-1514758322-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://websearch.hotsearches.info/?...hid=15335616608835531485&lg=EN&cc=US&unqvl=90, Good: (www.google.com), Bad: (http://websearch.hotsearches.info/?...),Replaced,[01785ee59ded2a0cee17e0f8689d6a96]
Folders: 0
(No malicious items detected)
Files: 3
PUP.Optional.Multiplug, C:\Users\Erica\Downloads\Minecraft_51252.exe, Quarantined, [accd97ac474391a5725f2eec13f06d93],
PUP.Optional.MultiPlug.A, C:\Users\Erica\AppData\Local\Temp\E5C8\temp\hpds_setup.exe, Quarantined, [98e151f2d9b17abce4f0ed59917149b7],
PUP.Optional.WebSearch.A, C:\Users\Erica\AppData\Roaming\Mozilla\Firefox\Profiles\8t6gwysp.default\searchplugins\WebSearch.xml, Quarantined, [de9bfb48a1e972c44156905b6c97728e],
Physical Sectors: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 6/20/2015 9:43:18 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/20/2015 9:43:18 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/20/2015 9:43:18 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/20/2015 9:43:19 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, Domain Database, 0.0.0.0, 2015.6.12.1,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, Rootkit Database, 2015.2.25.1, 2015.6.15.1,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, IP Database, 0.0.0.0, 2015.6.12.1,
Update, 6/20/2015 9:43:21 PM, SYSTEM, TYLER, Manual, Remediation Database, 2015.3.9.1, 2015.6.15.1,
Update, 6/20/2015 9:43:26 PM, SYSTEM, TYLER, Manual, Malware Database, 2015.3.9.5, 2015.6.20.5,
Protection, 6/20/2015 9:43:27 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/20/2015 9:43:27 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/20/2015 9:43:27 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/20/2015 9:43:39 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/20/2015 9:43:39 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/20/2015 9:43:40 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/20/2015 9:47:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61117, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 9:47:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61117, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 9:47:45 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61118, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 9:47:52 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 61157, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 10:01:57 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug, C:\ProgramData\{fa84e891-6905-b2b0-fa84-4e891690a245}\minecraft_51252.exe, Quarantine, [34c1902ca6e41b1b804ebfb41ce6f709]
Scan, 6/20/2015 10:37:53 PM, SYSTEM, TYLER, Manual, Start:6/20/2015 9:43:20 PM, Duration:54 min 12 sec, Threat Scan, Completed, 0 Malware Detections, 9 Non-Malware Detections,
Protection, 6/20/2015 10:40:12 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/20/2015 10:40:12 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/20/2015 10:40:12 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/20/2015 10:40:13 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/20/2015 10:51:37 PM, Erica, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug.A, C:\Program Files\decodit\decodit.dll, Quarantine, [cf26912bbeccb97d19dc372362a0fa06]
Detection, 6/20/2015 11:15:41 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49617, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:15:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49617, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:16:12 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49750, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:16:33 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49769, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/20/2015 11:23:20 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug.A, c:\program files\decodit\decodit.dll, Quarantine Failed, 2, The system cannot find the file specified. , [cf26912bbeccb97d19dc372362a0fa06]
Detection, 6/20/2015 11:23:20 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug.A, c:\program files\decodit\decodit.dll, Quarantine Failed, 2, The system cannot find the file specified. , [cf26912bbeccb97d19dc372362a0fa06]
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Error, 6/21/2015 9:02:49 AM, SYSTEM, TYLER, Scheduler, 11004,
Update, 6/21/2015 9:02:50 AM, SYSTEM, TYLER, Scheduler, Malware Database, Failed, Unable to access update server, 2015.6.20.5, 2015.6.21.1,
Detection, 6/21/2015 9:21:47 AM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.MultiPlug, C:\Users\Erica\Downloads\mo-creatures.exe, Quarantine, [54a1952774165dd987474231cb3709f7]
Update, 6/21/2015 9:49:58 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/21/2015 4:10:07 PM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Detection, 6/21/2015 5:38:17 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, C:\Windows\System32\Tasks\Bidaily Synchronize Task[973b], Quarantine, [ed08caf24f3b43f3cb04f29d1ce9619f]
Update, 6/21/2015 5:38:17 PM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Detection, 6/21/2015 5:39:15 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, C:\Program Files\PriceMinus\z599L7db1JzVdC.exe, Quarantine, [2dc8863672189f97aa8bc295917141bf]
Detection, 6/21/2015 5:40:05 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 50850, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:41:49 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51025, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:45:35 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51146, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:46:18 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51257, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:48:43 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51347, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:49:05 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51399, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 5:50:24 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51467, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Protection, 6/21/2015 5:58:41 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/21/2015 5:58:41 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/21/2015 5:58:41 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/21/2015 5:58:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/21/2015 6:01:23 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49409, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:01:24 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49409, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:01:24 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49410, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:10:12 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51180, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:10:13 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51181, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:12:21 PM, SYSTEM, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, C:\Program Files\Bitly Unleash the power of the link\Bitly Unleash the power of the link.exe, Quarantine, [31c44f6d5238af870f262a2dbd45946c]
Detection, 6/21/2015 6:13:05 PM, Erica, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, c:\program files\bitly unleash the power of the link\bitly unleash the power of the link.exe, Quarantine Failed, 2, The system cannot find the file specified. , [31c44f6d5238af870f262a2dbd45946c]
Detection, 6/21/2015 6:13:52 PM, Erica, TYLER, Protection, Malware Protection, File, PUP.Optional.Multiplug.A, c:\program files\bitly unleash the power of the link\bitly unleash the power of the link.exe, Quarantine Failed, 2, The system cannot find the file specified. , [31c44f6d5238af870f262a2dbd45946c]
Detection, 6/21/2015 6:15:17 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51269, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:15:17 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 51270, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Protection, 6/21/2015 6:29:26 PM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/21/2015 6:29:26 PM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/21/2015 6:29:27 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/21/2015 6:29:29 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Detection, 6/21/2015 6:30:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49190, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Detection, 6/21/2015 6:30:45 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, IP, 52.10.219.161, firstfunmegachina.in, 49190, Outbound, C:\Program Files\Google\Chrome\Application\chrome.exe,
Update, 6/21/2015 6:38:33 PM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.20.5, 2015.6.21.4,
Protection, 6/21/2015 6:38:33 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/21/2015 6:38:33 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/21/2015 6:38:35 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/21/2015 6:39:35 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/21/2015 6:39:36 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/21/2015 6:39:41 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Update, 6/22/2015 11:21:43 PM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.21.4, 2015.6.22.2,
Protection, 6/22/2015 11:21:46 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/22/2015 11:21:47 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/22/2015 11:21:51 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/22/2015 11:23:45 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/22/2015 11:23:47 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/22/2015 11:23:53 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Update, 6/22/2015 11:50:03 PM, SYSTEM, TYLER, Scheduler, Rootkit Database, 2015.6.15.1, 2015.6.22.1,
Update, 6/22/2015 11:51:19 PM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.22.2, 2015.6.23.1,
Protection, 6/22/2015 11:51:35 PM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/22/2015 11:51:36 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/22/2015 11:51:44 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/22/2015 11:54:33 PM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/22/2015 11:54:33 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/22/2015 11:54:39 PM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Protection, 6/22/2015 9:04:31 AM, SYSTEM, TYLER, Protection, Malware Protection, Starting,
Protection, 6/22/2015 9:04:31 AM, SYSTEM, TYLER, Protection, Malware Protection, Started,
Protection, 6/22/2015 9:04:31 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/22/2015 9:04:37 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Update, 6/23/2015 1:31:17 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 1:44:01 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 2:28:24 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 2:52:23 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 3:34:29 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 3:41:04 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 3:46:10 AM, SYSTEM, TYLER, Scheduler, Failed, Unable to access update server,
Update, 6/23/2015 4:49:23 AM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.23.1, 2015.6.23.2,
Protection, 6/23/2015 4:49:24 AM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/23/2015 4:49:24 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/23/2015 4:49:24 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/23/2015 4:50:02 AM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/23/2015 4:50:02 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/23/2015 4:50:04 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Update, 6/23/2015 6:43:53 AM, SYSTEM, TYLER, Scheduler, Malware Database, 2015.6.23.2, 2015.6.23.3,
Protection, 6/23/2015 6:43:54 AM, SYSTEM, TYLER, Protection, Refresh, Starting,
Protection, 6/23/2015 6:43:54 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopping,
Protection, 6/23/2015 6:43:54 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Stopped,
Protection, 6/23/2015 6:44:23 AM, SYSTEM, TYLER, Protection, Refresh, Success,
Protection, 6/23/2015 6:44:23 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Starting,
Protection, 6/23/2015 6:44:24 AM, SYSTEM, TYLER, Protection, Malicious Website Protection, Started,
Scan, 6/23/2015 8:48:51 AM, SYSTEM, TYLER, Context, Start:6/23/2015 3:34:05 AM, Duration:27 min 25 sec, Threat Scan, Completed, 0 Malware Detections, 34 Non-Malware Detections,
(end)
i cant seem to upload scan log from hitman pro, but i had lots of registry lines, and pups, two programs that stood out were priceminus, and bestadblocker
here is adwcleaner log
# AdwCleaner v4.207 - Logfile created 22/06/2015 at 09:01:30
# Updated 21/06/2015 by Xplode
# Database : 2015-06-21.2 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : Erica - TYLER
# Running from : C:\Users\Erica\Downloads\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
[#] Service Deleted : 999a1b1f
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\{a6da7c43-63cf-a0b4-a6da-a7c4363cf10d}
Folder Deleted : C:\ProgramData\{fa84e891-6905-b2b0-fa84-4e891690a245}
Folder Deleted : C:\Program Files\decodit
Folder Deleted : C:\Program Files\PiriceMinuss
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\ba4ced57-15d4-a1ae-45d6-64e268dfd362
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Mozilla Firefox v38.0.5 (x86 en-US)
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename,S", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1,S", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("extensions.94msb26TB6HwuTu4.scode", "(function(){try{if(window.location.href.indexOf(\"rjkHrHk7rjg7rdY5rHk8rHw9pdk\")>-1){return;}}catch(e){}try{var d=[[\"search.asistents.com\",\"cryptogma[...]
[8t6gwysp.default\prefs.js] - Line Deleted : user_pref("extensions.N72YfL3WMuVBwknj.scode", "(function(){try{if(window.location.href.indexOf(\"rjkHrHk7rjg7rdY5rHk8rHw9pdk\")>-1){return;}}catch(e){}try{var d=[[\"search.asistents.com\",\"cryptogma[...]
-\\ Google Chrome v43.0.2357.124
[C:\Users\Erica\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Erica\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
*************************
AdwCleaner[R0].txt - [2553 bytes] - [22/06/2015 08:54:48]
AdwCleaner[R1].txt - [2612 bytes] - [22/06/2015 08:58:31]
AdwCleaner[S0].txt - [2649 bytes] - [22/06/2015 09:01:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2708 bytes] ##########