# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-08.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 04-09-2019
# Duration: 00:00:08
# OS: Windows 10 Home
# Scanned: 27259
# Detected: 56


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Adware.Heuristic C:\ProgramData\FD5C00DA
PUP.Optional.Amigo C:\Users\ADMIN\AppData\Local\Amigo
PUP.Optional.Legacy C:\Windows\System32\SSL
PUP.Optional.Legacy C:\Windows\System32\sstmp
PUP.Optional.SmartApplicationController C:\Users\ADMIN\AppData\Roaming\Smart Application Controller

***** [ Files ] *****

PUP.Optional.Legacy C:\Users\ADMIN\Favorites\?????? ? ?????????.url
PUP.Optional.Legacy C:\Users\Public\Documents\report.dat
PUP.Optional.Legacy C:\Users\Public\Documents\temp.dat
PUP.Optional.Legacy C:\Windows\rsrcs.dll
Trojan.BCDSoft C:\ProgramData\log.binb
Trojan.BCDSoft C:\ProgramData\log.ewbb
Trojan.BCDSoft C:\ProgramData\log.ewbt

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

Adware.FileTour HKCU\Software\Installer
Adware.FileTour HKU\.DEFAULT\Software\Installer
Adware.FileTour HKU\S-1-5-18\Software\Installer
Adware.Ghokswa HKLM\Software\Wow6432Node\Footjane
Adware.Ghokswa HKLM\Software\Wow6432Node\Hotleaf
Adware.Ghokswa HKLM\Software\Wow6432Node\Zoohair
Adware.MyWaySearch HKLM\Software\Classes\tsckmna
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\A1E242C0C3026D245D8F41678E1A8825
PUP.Adware.Heuristic HKU\.DEFAULT\SOFTWARE\A1E242C0C3026D245D8F41678E1A8825
PUP.Adware.Heuristic HKU\S-1-5-18\SOFTWARE\A1E242C0C3026D245D8F41678E1A8825
PUP.Optional.BrowserAir HKLM\Software\Wow6432Node\BrowserAir
PUP.Optional.DiskPower HKCU\Software\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
PUP.Optional.DiskPower HKLM\Software\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
PUP.Optional.DiskPower HKLM\Software\Wow6432Node\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
PUP.Optional.Jawego HKLM\Software\Wow6432Node\Jawego
PUP.Optional.Legacy HKCU\Software\Classes\Applications\interstatnogui.exe
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1b31c9d2-7135-442b-bb93-7c002172adc6}
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|mailruhomesearch
PUP.Optional.Legacy HKCU\Software\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy HKCU\Software\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
PUP.Optional.Legacy HKCU\Software\PC
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy HKLM\Software\InterSect Alliance
PUP.Optional.Legacy HKLM\Software\Microsoft\Shared Tools\MSConfig\services\Update service
PUP.Optional.Legacy HKLM\Software\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\PC
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AE298D-7E8A-4F53-BE55-15D2B065F6C0}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2C652C0A-EC71-4797-8077-F67649177AB0}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\b`nl{y
PUP.Optional.Legacy HKLM\Software\Wow6432Node\msServer
PUP.Optional.Legacy HKLM\Software\Wow6432Node\xvb`lj
PUP.Optional.Mail.Ru HKCU\Software\Google\Chrome\NativeMessagingHosts\ru.mail.go.ext_info_host
PUP.Optional.Microleaves HKLM\Software\Classes\Installer\Features\436F6625D7B77354DBCD89DDC6CFAB1A
PUP.Optional.Microleaves HKLM\Software\Classes\Installer\Products\436F6625D7B77354DBCD89DDC6CFAB1A
PUP.Optional.Microleaves HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\436F6625D7B77354DBCD89DDC6CFAB1A
PUP.Optional.Microleaves HKU\.DEFAULT\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
PUP.Optional.Microleaves HKU\S-1-5-18\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
PUP.Optional.WeatherAlerts HKCU\Software\Microsoft\{cc6eb6d8-85b7-435p-8b86-51e4d16ea76d}
PUP.Optional.WeatherAlerts HKLM\Software\Microsoft\{cc6eb6d8-85b7-435p-8b86-51e4d16ea76d}
PUP.Optional.WeatherAlerts HKLM\Software\Wow6432Node\Microsoft\{cc6eb6d8-85b7-435p-8b86-51e4d16ea76d}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########