# AdwCleaner 7.0.6.0 - Logfile created on Wed Dec 20 13:31:24 2017
# Updated on 2017/21/12 by Malwarebytes 
# Database: 12-26-2017.1
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

PUP.Optional.Legacy, Update service


***** [ Folders ] *****

PUP.Optional.Legacy, C:\Users\RikenManon\AppData\LocalLow\Zynga
PUP.Optional.Legacy, C:\ProgramData\WinZip\WinZip Smart Monitor
PUP.Optional.Legacy, C:\ProgramData\Application Data\WinZip\WinZip Smart Monitor
PUP.Optional.Legacy, C:\Users\All Users\WinZip\WinZip Smart Monitor
PUP.Optional.Legacy, C:\Users\RikenManon\AppData\Roaming\TotalAV
PUP.Optional.Solvusoft, C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft
PUP.Optional.Solvusoft, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft


***** [ Files ] *****

PUP.Optional.Legacy, C:\Users\RikenManon\AppData\Roaming\Mozilla\Firefox\Profiles\ynff83qn.default\searchplugins\yahoo! powered search.xml


***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

PUP.Optional.Legacy, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk - https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D
PUP.Optional.Legacy, C:\Users\RikenManon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D
PUP.Optional.Legacy, C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D
PUP.Optional.Legacy, C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D
PUP.Optional.Legacy, C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D
PUP.Optional.Legacy, C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D


***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Data] - HKCU\Software\Microsoft\Internet Explorer\Main | Start Page [http:\\hp.myway.com\easypdfcombine\ttab02\index.html?n=783A3333&p2=%5EBSB%5Exdm012%5ETTAB02%5Enl&ptb=C9771E2B-1E44-4CAB-BA05-BB1851CA2FD4&si=CL_3-bW1wtUCFYZuGwod2G0PEA&coid=ea3a3daff6704ae7b0124f532d60f9fd]
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{9B0A261C-1F53-481F-B90A-77FDD0623E1E}C:\users\rikenmanon\appdata\local\popcorn time community\nw.exe
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{0FC932E7-2B82-4D72-A1F5-04FF43BCB993}C:\users\rikenmanon\appdata\local\popcorn time community\nw.exe
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\NICO MAK COMPUTING\WinZip Registry Optimizer
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\CLASSES\APPID\WinZipSmartMonitorService.exe
PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
PUP.Optional.Reimage, [Key] - HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
PUP.Optional.Reimage, [Key] - HKLM\SOFTWARE\Reimage
PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\Reimage
PUP.Optional.Reimage, [Key] - HKCU\Software\Reimage
PUP.Optional.MyWebShield, [Key] - HKCU\Software\Classes\CLSID\{d79b57ed-727c-4ab8-ba67-e7c6fd30fac1}
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Legacy, Plugin found: MSN Homepage & Bing Search Engine - 
PUP.Optional.Legacy, SearchProvider found: Ask Search - search.ask.com
PUP.Optional.Legacy, SearchProvider found: Ask.com - dts.search.ask.com
PUP.Optional.Legacy, SearchProvider found: Conduit Search - search.conduit.com

/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271 


*************************



########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########