# AdwCleaner 7.0.2.1 - Logfile created on Wed Aug 30 10:59:10 2017 # Updated on 2017/29/08 by Malwarebytes # Database: 08-29-2017.2 # Running on Windows 10 Home (X64) # Mode: scan # Support: https://www.malwarebytes.com/support ***** [ Services ] ***** PUP.Optional.Legacy, WtuSystemSupport PUP.Optional.Chip, chip1click PUP.Adware.Heuristic, vToolbarUpdater40.3.8 ***** [ Folders ] ***** PUP.Optional.TweakBit, C:\ProgramData\BSD\DriverHive PUP.Optional.TweakBit, C:\Users\All Users\BSD\DriverHive PUP.Optional.Legacy, C:\Users\Public\Documents\dmp PUP.Optional.Legacy, C:\Program Files\Common Files\AVG Secure Search PUP.Optional.Legacy, C:\Program Files (x86)\Common Files\AVG Secure Search PUP.Optional.Legacy, C:\ProgramData\AVG Security Toolbar PUP.Optional.Legacy, C:\Users\All Users\AVG Security Toolbar PUP.Optional.Legacy, C:\Users\Computer\AppData\Roaming\DriverCure PUP.Optional.Legacy, C:\Users\Computer\AppData\Local\YSearchUtil PUP.Optional.Legacy, C:\ProgramData\avg web tuneup PUP.Optional.Legacy, C:\Program Files\avg web tuneup PUP.Optional.Legacy, C:\Program Files (x86)\avg web tuneup PUP.Optional.Legacy, C:\Users\All Users\avg web tuneup PUP.Optional.Legacy, C:\Users\Computer\AppData\Local\avg web tuneup PUP.Optional.Legacy, C:\Users\Computer\AppData\Local\Downloaded Installers PUP.Optional.Legacy, C:\Users\Public\Documents\Downloaded Installers PUP.Optional.Legacy, C:\Program Files (x86)\Yahoo!\yset PUP.Optional.Legacy, C:\Users\Computer\AppData\Local\AdvinstAnalytics PUP.Optional.SimpleStar, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimpleStar PUP.Optional.SimpleStar, C:\ProgramData\SimpleStar PUP.Optional.SimpleStar, C:\Users\All Users\SimpleStar PUP.Optional.Chip, C:\Program Files (x86)\Chip Digital GmbH PUP.Optional.Chip, C:\Users\Computer\AppData\Local\Downloaded Installations\{DAD82379-C684-4D04-83D5-2B9934A9C362} PUP.Optional.Chip, C:\Windows\Installer\{503CA94E-0834-4CEE-AD92-BA17AF4E809A} PUP.Optional.Chip, C:\Program Files (x86)\CHIP Updater PUP.Optional.BrowserHijack, C:\Users\Computer\AppData\Roaming\RenewSoftware.com PUP.Optional.Spigot.Generic, C:\Users\Computer\AppData\Local\VideoConverter PUP.Optional.RegCurePro, C:\ProgramData\PARETOLOGIC PUP.Optional.RegCurePro, C:\Program Files (x86)\Common Files\PARETOLOGIC PUP.Optional.RegCurePro, C:\Users\All Users\PARETOLOGIC PUP.Optional.RegCurePro, C:\Users\Computer\AppData\Roaming\PARETOLOGIC PUP.Optional.Conduit.A, C:\Users\Computer\AppData\Roaming\RHEng PUP.Optional.ASPackage.A, C:\Users\Computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASPackage PUP.Optional.ASPackage, C:\Users\Computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASPackage PUP.Optional.SlimCleanerPlus, C:\ProgramData\slimware utilities inc PUP.Optional.SlimCleanerPlus, C:\Users\All Users\slimware utilities inc PUP.Optional.SlimCleanerPlus, C:\Users\Computer\AppData\Local\slimware utilities inc PUP.Optional.SlimCleanerPlus, C:\ProgramData\SlimWare Utilities Inc PUP.Optional.SlimCleanerPlus, C:\Users\All Users\SlimWare Utilities Inc PUP.Optional.SlimCleanerPlus, C:\Users\Computer\AppData\Local\SlimWare Utilities Inc ***** [ Files ] ***** PUP.Optional.Legacy, C:\END PUP.Optional.Legacy, C:\Windows\System32\lavasofttcpservice.dll PUP.Optional.Legacy, C:\Windows\SysWOW64\lavasofttcpservice.dll PUP.Optional.Legacy, C:\Windows\SysNative\LavasoftTcpService64.dll PUP.Optional.Legacy, C:\Users\Computer\AppData\Roaming\Mozilla\Firefox\Profiles\85pf4r00.default-1425491253211\searchplugins\avg-secure-search.xml ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** PUP.Optional.Legacy, [Data] - HKCU\Software\Microsoft\Internet Explorer\Main | Start Page [https:\\mysearch.avg.com\?cid={2E2055F0-0870-4141-B270-6EEA055F6394}&mid=9c02c083121a47cc905b69de1c6349fd-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=de&ds=AVG&coid=avgtbavg&cmpid=0916tb&pr=fr&d=2016-07-25 21:28:10&v=4.3.5.160&pid=wtu&sg=&sap=hp] PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\estdemin PUP.Optional.Legacy, [Key] - HKCU\Software\estdemin PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\ParetoLogic PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\ParetoLogic PUP.Optional.Legacy, [Key] - HKCU\Software\ParetoLogic PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21} PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21} PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\Microsoft\Tinstalls PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Tinstalls PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\dobreprogramy PUP.Optional.Legacy, [Key] - HKCU\Software\dobreprogramy PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Eusing Free Registry Cleaner PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\AVG Tuneup PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Lavasoft\Web Companion PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\TWEAKBIT PUP.Optional.Legacy, [Key] - HKCU\Software\TWEAKBIT PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Searchy PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DD0688A5-FC8B-4E93-A485-CBF606A56D49} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\DMunversion PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{08ACFB57-8187-47F0-AF93-56360D03634A} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{94CB6BE7-AE1A-4751-AE74-1EDD6B567264} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\MozillaPlugins\@avg.com\AVG SiteSafety plugin,version=11.0.0.1,application\x-avg-sitesafety-plugin PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\mseff32.DLL PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{503CA94E-0834-4CEE-AD92-BA17AF4E809A} PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6 PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6 PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E49AC3054380EEC4DA29AB71FAE408A9 PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Classes\Installer\Features\E49AC3054380EEC4DA29AB71FAE408A9 PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Classes\Installer\Products\E49AC3054380EEC4DA29AB71FAE408A9 PUP.Optional.Chip, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\chip 1-click download service PUP.Optional.Auslogics, [Key] - HKLM\SOFTWARE\BSD PUP.Optional.Auslogics, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\BSD PUP.Optional.Auslogics, [Key] - HKCU\Software\BSD PUP.Optional.YahooChrome, [Key] - HKLM\SOFTWARE\Yahoo\SS PUP.Optional.Linkey.AppFlsh, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\Linkey PUP.Optional.Linkey.AppFlsh, [Key] - HKCU\Software\Linkey PUP.Optional.WeatherAlerts, [Key] - HKLM\SOFTWARE\Microsoft\APreSam PUP.Optional.WeatherAlerts, [Key] - HKLM\SOFTWARE\Microsoft\NSaveA PUP.Optional.WeatherAlerts, [Key] - HKLM\SOFTWARE\Microsoft\PrAmNP PUP.Optional.WeatherAlerts, [Key] - HKLM\SOFTWARE\Microsoft\MPrForShutT PUP.Optional.WeatherAlerts, [Key] - HKLM\SOFTWARE\Microsoft\PrIncub PUP.Optional.WeatherAlerts, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\Microsoft\{cc6eb6d8-85b7-435p-8b86-51e4d16ea76d} PUP.Optional.WeatherAlerts, [Key] - HKCU\Software\Microsoft\{cc6eb6d8-85b7-435p-8b86-51e4d16ea76d} PUP.Optional.AuslogicsDriverUpdater, [Key] - HKLM\SOFTWARE\Auslogics PUP.Optional.SlimCleanerPlus, [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc PUP.Optional.SlimCleanerPlus, [Key] - HKU\S-1-5-21-3993077788-801993031-1647673089-1000\Software\SlimWare Utilities Inc PUP.Optional.SlimCleanerPlus, [Key] - HKCU\Software\SlimWare Utilities Inc PUP.Optional.InfoG, [Key] - HKLM\SOFTWARE\Classes\CLSID\{48E59293-9880-11CF-9754-00AA00C00908} PUP.Adware.Heuristic, [Key] - HKLM\SOFTWARE\Classes\ctTOOLBAR.ctToolBarCtrl.4 ***** [ Firefox (and derivatives) ] ***** PUP.Optional.Legacy, Plugin found: Search and New Tab by Yahoo - Yahoo ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries. ************************* ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########