# AdwCleaner 7.0.6.0 - Logfile created on Wed Jan 03 13:52:48 2018 # Updated on 2017/21/12 by Malwarebytes # Database: 01-01-2018.1 # Running on Windows 8.1 (X64) # Mode: scan # Support: https://www.malwarebytes.com/support ***** [ Services ] ***** PUP.Optional.ByteFence, rtop ***** [ Folders ] ***** PUP.Optional.Legacy, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przyspiesz Komputer PUP.Optional.Legacy, C:\Program Files (x86)\Przyspiesz Komputer PUP.Optional.Legacy, C:\Users\user\AppData\Local\globalUpdate PUP.Optional.Legacy, C:\ProgramData\MailUpdate PUP.Optional.Legacy, C:\ProgramData\Application Data\MailUpdate PUP.Optional.Legacy, C:\Users\All Users\MailUpdate PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\MailUpdate PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\cpuminer PUP.Optional.Legacy, C:\Program Files (x86)\Video Update PUP.Optional.Legacy, C:\Users\user\AppData\Local\SweetLabs App Platform PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\imminent PUP.Optional.Legacy, C:\Users\Administrator\AppData\Local\Pokki PUP.Optional.Legacy, C:\Users\Default\AppData\Local\Pokki PUP.Optional.Legacy, C:\Users\Default User\AppData\Local\Pokki PUP.Optional.Legacy, C:\Users\Public\Pokki PUP.Optional.Legacy, C:\Users\user\AppData\Local\Pokki PUP.Optional.ByteFence, C:\ProgramData\ByteFence PUP.Optional.ByteFence, C:\ProgramData\Application Data\ByteFence PUP.Optional.ByteFence, C:\Program Files\ByteFence PUP.Optional.ByteFence, C:\Users\All Users\ByteFence PUP.Optional.ByteFence, C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence PUP.Optional.OSpeedy, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Optimizer PUP.Optional.SpringFiles, C:\ProgramData\Microsoft\Windows\Start Menu\SrpnFiles PUP.Optional.SpringFiles, C:\Program Files (x86)\SrpnFiles PUP.Optional.SmartWeb, C:\Users\user\AppData\Local\SmartWeb PUP.Adware.Heuristic, C:\Users\user\AppData\Local\28050 ***** [ Files ] ***** PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\Main.dat PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\Installer.dat PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Menu.lnk PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url PUP.Optional.Legacy, C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk PUP.Optional.Legacy, C:\Windows\SysNative\cpuminer-conf.json PUP.Optional.PCAppStore, C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** PUP.Optional.Legacy, SweetLabs App Platform PUP.Optional.Legacy, PC-Mechanic Subscription PUP.Optional.Legacy, System Optimizer Schedule ***** [ Registry ] ***** Adware.Elex, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\cpuminer PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Tv-Plug-In PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Tv-Plug-In PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\AppDataLow\Software\Tv-Plug-In PUP.Optional.Legacy, [Key] - HKCU\Software\Tv-Plug-In PUP.Optional.Legacy, [Key] - HKCU\Software\AppDataLow\Software\Tv-Plug-In PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\gameo PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\gameo PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\SIMPLYTECH PUP.Optional.Legacy, [Key] - HKCU\Software\SIMPLYTECH PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\SecureWebChannel PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Kromtech PUP.Optional.Legacy, [Key] - HKCU\Software\Kromtech PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gpuminer PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\APN PIP PUP.Optional.Legacy, [Key] - HKCU\Software\APN PIP PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\GlobalUpdate PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\GlobalUpdate PUP.Optional.Legacy, [Key] - HKCU\Software\GlobalUpdate PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\InstalledBrowserExtensions PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\InstalledBrowserExtensions PUP.Optional.Legacy, [Key] - HKCU\Software\InstalledBrowserExtensions PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Pokki PUP.Optional.Legacy, [Key] - HKCU\Software\Pokki PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21} PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21} PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SU PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Prompt Downloader PUP.Optional.Legacy, [Key] - HKCU\Software\Prompt Downloader PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Mozilla\Extends PUP.Optional.Legacy, [Key] - HKCU\Software\Mozilla\Extends PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\GoldenGate PUP.Optional.Legacy, [Key] - HKCU\Software\GoldenGate PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Tinstalls PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Tinstalls PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\dobreprogramy PUP.Optional.Legacy, [Key] - HKCU\Software\dobreprogramy PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Sparta PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Sparta PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\INSTALLPATH\STATUS PUP.Optional.Legacy, [Key] - HKCU\Software\INSTALLPATH\STATUS PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\simplytech PUP.Optional.Legacy, [Key] - HKCU\Software\simplytech PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID | {1F91A9A1-01BA-4C81-863D-3BA0751E1419} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7} PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Run | Seviler PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | Seviler PUP.Optional.Legacy, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | Seviler PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | System Optimizer PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | Windesk Winsearch PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | Pokki PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | pcspeedup PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | ssn PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | Gameo PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 | SmartWeb PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | gpuminer PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | gpuminer PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\AllFileSystemObjects\shell\pokki PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Drive\shell\pokki PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\lnkfile\shell\pokki PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 | SmartWeb PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\PrivoxyService PUP.Optional.Conduit, [Key] - HKLM\SOFTWARE\Conduit PUP.Optional.Conduit, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Conduit PUP.Optional.Conduit, [Key] - HKCU\Software\Conduit PUP.Optional.ByteFence, [Key] - HKLM\SOFTWARE\ByteFence PUP.Optional.ByteFence, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence PUP.Optional.ByteFence, [Value] - HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store | C:\Program Files\ByteFence\Uninstall.exe PUP.Optional.CrossRider, [Key] - HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_ PUP.Optional.CrossRider, [Key] - HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_ Adware.pokki, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\SweetLabs App Platform Adware.pokki, [Key] - HKCU\Software\SweetLabs App Platform Adware.IStartSurf, [Key] - HKLM\SOFTWARE\istartsurfSoftware PUP.Optional.AppEnable.A, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66} PUP.Optional.AppEnable.A, [Key] - HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB} PUP.Optional.AppEnable.A, [Key] - HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5} PUP.Optional.Elex, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Seviler PUP.Optional.Elex, [Key] - HKCU\Software\Seviler Adware.FileTour, [Key] - HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer Adware.FileTour, [Key] - HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer PUP.Optional.SetMyHomePage, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\SetMyHomePage PUP.Optional.SetMyHomePage, [Key] - HKCU\Software\SetMyHomePage PUP.Optional.Linkey.AppFlsh, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey PUP.Optional.Linkey.AppFlsh, [Key] - HKU\S-1-5-21-2390899136-229835132-1058128049-1001\Software\Linkey PUP.Optional.Linkey.AppFlsh, [Key] - HKCU\Software\Linkey Adware.TryMedia, [Key] - HKLM\SOFTWARE\Trymedia Systems PUP.Optional.BrowseFox.A, [Key] - HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} PUP.Optional.EoRezo, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder PUP.Adware.Heuristic, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf ***** [ Firefox (and derivatives) ] ***** PUP.Optional.Legacy, SearchProvider found: search.delta-homes.com - delta-homes ***** [ Chromium (and derivatives) ] ***** PUP.Optional.WizeSearch, Plugin found: Wize Search SafeFinder - /!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271 ************************* ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########