Potential

Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 2/6/17
Scan Time: 8:22 PM
Logfile: potential.txt
Administrator: Yes
-Software Information-
Version: 3.0.6.1469
Components Version: 1.0.50
Update Package Version: 1.0.1064
License: Trial
-System Information-
OS: Windows 10
CPU: x64
File System: NTFS
User: LAPTOP-MBER7BG0\Cesar
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 457718
Time Elapsed: 12 min, 38 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
-Scan Details-
Process: 1
PUP.Optional.Amazon1Button.AppFlsh, C:\Program Files
(x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe, No Action By User,
[1749], [333344],1.0.1064
Module: 7
Adware.Elex, C:\PROGRAM FILES (X86)\COMMON FILES\SERVICES\ITHEMES.DLL, No Action By
User, [1624], [352907],1.0.1064
Adware.Elex, C:\USERS\CESAR\APPDATA\ROAMING\WINSNARE\WINSNARE.DLL, No Action By
User, [1624], [360752],1.0.1064
Adware.Elex.Generic, C:\Program Files (x86)\Lcerryzecoing Mapper\local64spl.dll, No
Action By User, [2143], [358278],1.0.1064
PUP.Optional.Elex, C:\PROGRAM FILES (X86)\WINARCHER\ARCHER.DLL, No Action By User,
[15], [338087],1.0.1064
[1749], [333344],1.0.1064
PUP.Optional.Elex, C:\PROGRAMDATA\WINSAPSVC\WINSAP.DLL, No Action By User, [15],
[338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\ClearLog.dll, No Action
By User, [15], [338081],1.0.1064
Registry Key: 86
Adware.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\iThemes5, No Action By User,
[1624], [352907],1.0.1064
PUP.Optional.Amonetize, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BitTorrent, No
Action By User, [13], [329249],1.0.1064
PUP.Optional.Linkury, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Nettrans, No Action By
User, [399], [331415],1.0.1064
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-
6C8B12E270D9, No Action By User, [131], [170024],1.0.1064
PUP.Optional.Wajam,
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, No
Action By User, [131], [-1],0.0.0
PUP.Optional.Wajam, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\56BF5154-0B48-4ADB-
902A-6C8B12E270D9, No Action By User, [131], [170024],1.0.1064
PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\56BF5154-0B48-4ADB-
902A-6C8B12E270D9, No Action By User, [131], [170024],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\
{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh,
HKLM\SOFTWARE\CLASSES\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO, No Action By
User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{BAC72C85-CEC6-
4B86-AF06-FA20C259FAB8}, No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\TYPELIB\{921462B2-5269-
45A2-AA8D-F8F7A3690255}, No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\INTERFACE\{FD1B7376-A344-
48BD-857D-C87B4D8502EF}, No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\
{FD1B7376-A344-48BD-857D-C87B4D8502EF}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\
{FD1B7376-A344-48BD-857D-C87B4D8502EF}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\
{921462B2-5269-45A2-AA8D-F8F7A3690255}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\
{921462B2-5269-45A2-AA8D-F8F7A3690255}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\
{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, No Action By User, [1749],
[333344],1.0.1064
{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{BAC72C85-CEC6-
4B86-AF06-FA20C259FAB8}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}, No Action By User, [1749],
[333344],1.0.1064
HKLM\SOFTWARE\CLASSES\Amazon1ButtonRuntime.Amazon1ButtonRuntime, No Action By User,
[1749], [333344],1.0.1064
HKLM\SOFTWARE\CLASSES\Amazon1ButtonRuntime.AmazonRuntimeServer, No Action By User,
[1749], [333344],1.0.1064
{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\TYPELIB\{48DDEC26-CEC3-
478E-9566-0842DAF10CEA}, No Action By User, [1749], [333344],1.0.1064
{6B7479D5-C493-40F0-99B6-BFC901980034}, No Action By User, [1749],
[333344],1.0.1064
{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}, No Action By User, [1749],
[333344],1.0.1064
{6B7479D5-C493-40F0-99B6-BFC901980034}, No Action By User, [1749],
[333344],1.0.1064
{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}, No Action By User, [1749],
[333344],1.0.1064
{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, No Action By User, [1749],
[333344],1.0.1064
{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, No Action By User, [1749],
[333344],1.0.1064
{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Amazon
1Button App Service, No Action By User, [1749], [333344],1.0.1064
{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\AmazonAppIE.AppGateway,
No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{BD6ECB00-7C4A-
4F97-B425-44117F2A7AAE}, No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\TYPELIB\{EB2BEAEF-150C-
4DE4-9D09-F16403C22769}, No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\INTERFACE\{3268A00F-D329-
42E1-ABF0-E78D5656BA2A}, No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\INTERFACE\{571139B2-8D93-
4B29-9AA9-496EF27D6AF8}, No Action By User, [1749], [333344],1.0.1064
{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, No Action By User, [1749],
[333344],1.0.1064
{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, No Action By User, [1749],
[333344],1.0.1064
{3268A00F-D329-42E1-ABF0-E78D5656BA2A}, No Action By User, [1749],
[333344],1.0.1064
{571139B2-8D93-4B29-9AA9-496EF27D6AF8}, No Action By User, [1749],
[333344],1.0.1064
{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, No Action By User, [1749],
[333344],1.0.1064
{EB2BEAEF-150C-4DE4-9D09-F16403C22769}, No Action By User, [1749],
[333344],1.0.1064
{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKU\S-1-5-
18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BD6ECB00-7C4A-4F97-B425-
44117F2A7AAE}, No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKU\S-1-5-21-3311198708-1922752997-573660941-
1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BD6ECB00-7C4A-4F97-B425-
44117F2A7AAE}, No Action By User, [1749], [333344],1.0.1064
{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, No Action By User, [1749],
[333344],1.0.1064
HKLM\SOFTWARE\CLASSES\AmazonAppIE.GadgetGateway, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{E4ADC61E-D06A-
4E0E-8582-78C809CC8450}, No Action By User, [1749], [333344],1.0.1064
{E4ADC61E-D06A-4E0E-8582-78C809CC8450}, No Action By User, [1749],
[333344],1.0.1064
{E4ADC61E-D06A-4E0E-8582-78C809CC8450}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
{E4ADC61E-D06A-4E0E-8582-78C809CC8450}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{BD6ECB00-7C4A-
4F97-B425-44117F2A7AAE}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, HKLM\SOFTWARE\CLASSES\CLSID\{E4ADC61E-D06A-
4E0E-8582-78C809CC8450}\InprocServer32, No Action By User, [1749],
[333344],1.0.1064
Adware.Elex, HKLM\SOFTWARE\jhdbca, No Action By User, [1033], [358186],1.0.1064
PUP.Optional.Amisites.ShrtCln, HKU\S-1-5-21-3311198708-1922752997-573660941-
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-
49120163DE86}, No Action By User, [2259], [342697],1.0.1064
PUP.Optional.Amisites.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET
EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, No Action By User,
[2259], [342697],1.0.1064
PUP.Optional.Amisites.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET
EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, No Action By User,
[2259], [342697],1.0.1064
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET
EXPLORER\SEARCHSCOPES\ielnksrch, No Action By User, [96], [259989],1.0.1064
PUP.Optional.Linkury.ACMB1,
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\Ronzap_RASAPI32, No Action By User,
[96], [259740],1.0.1064
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\Ronzap_RASMANCS, No Action By User,
[96], [259740],1.0.1064
PUP.Optional.Wiki,
HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fcgnigmofekcllgbiejhmigggmgehkip
, No Action By User, [3139], [360475],1.0.1064
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SILENTPROCESSEXIT\Ronzap.exe, No Action By User, [96],
[259795],1.0.1064
Adware.Sasquor.SPL, HKLM\SYSTEM\CURRENTCONTROLSET\CONTROL\PRINT\PROVIDERS\ii1pnzge,
No Action By User, [2085], [339986],1.0.1064
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting, No
Action By User, [96], [259928],1.0.1064
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-3311198708-1922752997-573660941-
1001\SOFTWARE\mtRonzap, No Action By User, [96], [259575],1.0.1064
PUP.Optional.Tuto4PC, HKU\S-1-5-21-3311198708-1922752997-573660941-
1001\SOFTWARE\MICROSOFT\wewewe, No Action By User, [113], [339689],1.0.1064
PUP.Optional.Smeazymo, HKLM\SOFTWARE\MICROSOFT\TRACING\Iceelectronics_RASAPI32, No
Action By User, [2391], [184223],1.0.1064
PUP.Optional.Smeazymo, HKLM\SOFTWARE\MICROSOFT\TRACING\Iceelectronics_RASMANCS, No
Action By User, [2391], [184223],1.0.1064
PUP.Optional.BitCoinMiner,
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\vnlgp, No Action By User,
[254], [261841],1.0.1064
PUP.Optional.Amisites.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\amisitesSoftware, No
Action By User, [2259], [343618],1.0.1064
Adware.Elex, HKLM\SOFTWARE\WOW6432NODE\jhdbca, No Action By User, [1033],
[358186],1.0.1064
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\mtRonzap, No Action By User,
[96], [259866],1.0.1064
PUP.Optional.Trotux, HKLM\SOFTWARE\WOW6432NODE\trotuxSoftware, No Action By User,
[419], [182848],1.0.1064
Adware.Elex, HKLM\SOFTWARE\WOW6432NODE\WinArcher, No Action By User, [1033],
[358185],1.0.1064
Adware.Elex, HKU\S-1-5-18\SOFTWARE\jhdbca, No Action By User, [1033],
[358190],1.0.1064
PUP.Optional.Linkury, HKU\S-1-5-21-3311198708-1922752997-573660941-
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{ielnksrch}, No Action By
User, [398], [259313],1.0.1064
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Archer, No Action By
User, [15], [339886],1.0.1064
Adware.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GubedZL, No Action By User,
[1033], [356694],1.0.1064
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinSAPSvc, No Action By
User, [15], [339887],1.0.1064
Adware.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinSnare, No Action By User,
[1033], [360760],1.0.1064
Registry Value: 20
PUP.Optional.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET
SETTINGS|PROXYENABLE, No Action By User, [131], [-1],0.0.0
PUP.Optional.Wajam, HKU\S-1-5-21-3311198708-1922752997-573660941-
1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No
Action By User, [131], [-1],0.0.0
PUP.Optional.Wajam, HKU\S-1-5-21-3311198708-1922752997-573660941-
1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No
Action By User, [131], [-1],0.0.0
PUP.Optional.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, No Action By User, [96], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, No Action By User, [96], [-1],0.0.0
PUP.Optional.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|
vnlgp, No Action By User, [254], [260489],1.0.1064
PUP.Optional.Amisites.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET
EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, No Action By
User, [2259], [342697],1.0.1064
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET
EXPLORER\SEARCHSCOPES\ielnksrch|URL, No Action By User, [96], [259989],1.0.1064
Adware.Sasquor.SPL, HKLM\SYSTEM\CURRENTCONTROLSET\CONTROL\PRINT\PROVIDERS\ii1pnzge|
NAME, No Action By User, [2085], [339986],1.0.1064
EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, No Action By
User, [2259], [342697],1.0.1064
PUP.Optional.Linkury, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NETTRANS|IMAGEPATH, No
Action By User, [398], [331424],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, No Action By User,
[96], [259988],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-
49120163DE86}|URL, No Action By User, [2259], [342692],1.0.1064
PUP.Optional.Linkury, HKU\S-1-5-21-3311198708-1922752997-573660941-
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{ielnksrch}|DISPLAYNAME, No
Action By User, [398], [259313],1.0.1064
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET
EXPLORER\SEARCHSCOPES\ielnksrch|DISPLAYNAME, No Action By User, [398],
[259314],1.0.1064
Trojan.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\THEMES|DEPENDONSERVICE, No
Action By User, [3344], [352344],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{ielnksrch}|URL, No Action
By User, [96], [259987],1.0.1064
Registry Data: 21
PUP.Optional.Amisites.ShrtCln,
HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND
|, No Action By User, [2259], [342695],1.0.1064
HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND|
, No Action By User, [2259], [342698],1.0.1064
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET
EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, No Action By User, [16489], [292819],1.0.1064
HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND|, No Action
By User, [2259], [342698],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH PAGE, No Action By User,
[96], [293485],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, No Action By User,
[2259], [342689],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|DEFAULT_PAGE_URL, No Action By User,
[2259], [342689],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, No Action By User, [96],
[293485],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, No Action By User,
[96], [293485],1.0.1064
1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, No Action By
User, [96], [293486],1.0.1064
HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND|, No Action
By User, [2259], [342695],1.0.1064
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|
DEFAULTSCOPE, No Action By User, [16489], [292819],1.0.1064
PUP.Optional.Amisites.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|
DEFAULT_PAGE_URL, No Action By User, [2259], [342686],1.0.1064
DEFAULT_SEARCH_URL, No Action By User, [2259], [342686],1.0.1064
SEARCH PAGE, No Action By User, [2259], [342686],1.0.1064
PUP.Optional.Amisites.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START
PAGE, No Action By User, [2259], [342686],1.0.1064
EXPLORER\MAIN|DEFAULT_PAGE_URL, No Action By User, [2259], [342686],1.0.1064
EXPLORER\MAIN|DEFAULT_SEARCH_URL, No Action By User, [2259], [342686],1.0.1064
EXPLORER\MAIN|SEARCH PAGE, No Action By User, [2259], [342686],1.0.1064
EXPLORER\MAIN|START PAGE, No Action By User, [2259], [342686],1.0.1064
1001_Classes\LOCAL
SETTINGS\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APPCONTAINER\STORAGE\MICROSOFT.M
ICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE\MAIN|HOMEBUTTONPAGE, No Action By User,
[2259], [342668],1.0.1064
Data Stream: 0
(No malicious items detected)
Folder: 15
PUP.Optional.Linkury, C:\PROGRAMDATA\NetworkPacketManitor, No Action By User,
[399], [331423],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic Handler\X64, No Action By User,
[4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic Handler\X86, No Action By User,
[4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\PROGRAMDATA\LOGIC HANDLER, No Action By User, [4348],
[183111],1.0.1064
Adware.Elex, C:\USERS\CESAR\APPDATA\ROAMING\WinSnare, No Action By User, [1624],
[360752],1.0.1064
Adware.Elex.Generic, C:\PROGRAM FILES (X86)\LCERRYZECOING MAPPER, No Action By
User, [2143], [358278],1.0.1064
PUP.Optional.Linkury, C:\WINDOWS\TEMP\SMARTBAR, No Action By User, [398],
[259312],1.0.1064
PUP.Optional.Elex, C:\PROGRAM FILES (X86)\WINARCHER, No Action By User, [15],
[338087],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel, No
Action By User, [254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp, No Action By
User, [254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\USERS\CESAR\APPDATA\ROAMING\VNLGP, No Action By User,
[254], [260489],1.0.1064
Adware.Elex, C:\PROGRAM FILES (X86)\GUBED, No Action By User, [1033],
[356680],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, C:\PROGRAM FILES (X86)\AMAZON\AMAZON1BUTTONAPP,
No Action By User, [1749], [333344],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update, No Action By User, [15],
[338081],1.0.1064
PUP.Optional.Elex, C:\PROGRAMDATA\WINSAPSVC, No Action By User, [15],
[338081],1.0.1064
File: 132
Adware.Elex, C:\PROGRAM FILES (X86)\COMMON FILES\SERVICES\ITHEMES.DLL, No Action By
User, [1624], [352907],1.0.1064
Adware.Elex, C:\USERS\CESAR\APPDATA\ROAMING\WINSNARE\WINSNARE.DLL, No Action By
User, [1624], [360752],1.0.1064
PUP.Optional.Amonetize, C:\PROGRAM FILES\BITTORRENT\BITTORRENT.EXE, No Action By
User, [13], [329249],1.0.1064
PUP.Optional.Linkury, C:\PROGRAMDATA\NETWORKPACKETMANITOR\NETTRANS.EXE, No Action
By User, [399], [331415],1.0.1064
PUP.Optional.Linkury, C:\ProgramData\NetworkPacketManitor\Config.xml, No Action By
User, [399], [331423],1.0.1064
PUP.Optional.Linkury, C:\ProgramData\NetworkPacketManitor\Nettrans.exe.config, No
Action By User, [399], [331423],1.0.1064
PUP.Optional.LogicHandler, C:\PROGRAMDATA\LOGIC HANDLER\SET.EXE.CONFIG, No Action
By User, [4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic Handler\X64\SQLite.Interop.dll, No
Action By User, [4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic Handler\X86\SQLite.Interop.dll, No
Action By User, [4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic Handler\Config.json, No Action By
User, [4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic Handler\System.Data.SQLite.dll, No
Action By User, [4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic
Handler\System.Data.SQLite.Linq.dll, No Action By User, [4348], [183111],1.0.1064
PUP.Optional.LogicHandler, C:\ProgramData\Logic Handler\System.Data.SQLite.xml, No
Action By User, [4348], [183111],1.0.1064
Adware.Elex, C:\PROGRAMDATA\WINSAPSVC\WINSAP_UPDATE\QQBROWSERFRAME.DLL, No Action
By User, [1033], [355140],1.0.1064
PUP.Optional.Linkury.Generic, C:\USERS\CESAR\APPDATA\ROAMING\AGENT.DAT, No Action
By User, [2380], [360491],1.0.1064
PUP.Optional.Linkury, C:\USERS\CESAR\APPDATA\ROAMING\LEXI-IS.BIN, No Action By
User, [398], [331415],1.0.1064
Trojan.Agent, C:\USERS\CESAR\APPDATA\ROAMING\WHITEFAN.EXE, No Action By User, [22],
[363443],1.0.1064
PUP.Optional.Linkury.Gen, C:\USERS\CESAR\APPDATA\ROAMING\WHITEFAN.TST, No Action By
User, [19836], [261636],1.0.1064
PUP.Optional.Linkury.ACMB1, C:\USERS\CESAR\APPDATA\ROAMING\CONFIG.XML, No Action By
User, [96], [302553],1.0.1064
PUP.Optional.Linkury, C:\USERS\CESAR\APPDATA\ROAMING\MATHTONE.BIN, No Action By
User, [398], [326154],1.0.1064
Adware.DotDo, C:\PROGRAMDATA\WINSAPSVC\WINSAP_UPDATE\LANCER.DLL, No Action By User,
[55], [367794],1.0.1064
PUP.Optional.LogicHandler, C:\USERS\CESAR\APPDATA\ROAMING\FLEXTONE.BIN, No Action
By User, [4519], [24306],1.0.1064
C:\USERS\CESAR\APPDATA\ROAMING\INSTALLATIONCONFIGURATION.XML, No Action By User,
[96], [302554],1.0.1064
PUP.Optional.Linkury, C:\USERS\CESAR\APPDATA\ROAMING\NOAH.DAT, No Action By User,
[398], [258092],1.0.1064
PUP.Optional.Linkury, C:\USERS\CESAR\APPDATA\ROAMING\MD.XML, No Action By User,
[398], [258091],1.0.1064
PUP.Optional.Linkury, C:\USERS\CESAR\APPDATA\ROAMING\UNINSTALL_TEMP.ICO, No Action
By User, [398], [258093],1.0.1064
Trojan.Agent.E, C:\USERS\CESAR\APPDATA\ROAMING\ADOBE\MANAGER.EXE, No Action By
User, [204], [363232],1.0.1064
Adware.Tuto4PC, C:\PROGRAM FILES\GQH3Z34NXG\UNINSTALLER.EXE, No Action By User,
[2316], [350732],1.0.1064
Adware.Tuto4PC, C:\PROGRAM FILES\UEPGFZJMFA\UNINSTALLER.EXE, No Action By User,
[2316], [350732],1.0.1064
Adware.Tuto4PC, C:\PROGRAM FILES\GQH3Z34NXG\GQH3Z34NX.EXE, No Action By User,
[2316], [350732],1.0.1064
Adware.Elex.Generic, C:\PROGRAM FILES (X86)\LCERRYZECOING
MAPPER\LOCAL64SPL.DLL.INI, No Action By User, [2143], [358278],1.0.1064
Adware.Elex.Generic, C:\Program Files (x86)\Lcerryzecoing Mapper\local64spl.dll, No
Action By User, [2143], [358278],1.0.1064
Adware.Tuto4PC, C:\PROGRAM FILES\UEPGFZJMFA\73VVOZPNE.EXE, No Action By User,
[2316], [350732],1.0.1064
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\DPOWER\UNINSTALLER.EXE, No Action By User,
[2316], [350732],1.0.1064
Adware.Elex, C:\PROGRAM FILES (X86)\MIO\MIO.EXE, No Action By User, [1033],
[364156],1.0.1064
CheatTool.CETTrainer, C:\$RECYCLE.BIN\S-1-5-21-3311198708-1922752997-573660941-
1001\$RIMMP46.EXE, No Action By User, [10702], [116813],1.0.1064
Adware.ICLoader, C:\$RECYCLE.BIN\S-1-5-21-3311198708-1922752997-573660941-
1001\$RPTCJ0B.EXE, No Action By User, [827], [363944],1.0.1064
Adware.ICLoader, C:\$RECYCLE.BIN\S-1-5-21-3311198708-1922752997-573660941-
1001\$RZ1B91Q.ZIP, No Action By User, [827], [363944],1.0.1064
PUP.Optional.Linkury.ACMB1, C:\WINDOWS\SYSWOW64\FINDIT.XML, No Action By User,
[96], [259512],1.0.1064
Hijack.HostFile, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, No Action By User, [212],
[329328],1.0.1064
PUP.Optional.InstallCore, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\AUTOTIME51495.EXE, No
Action By User, [8], [356458],1.0.1064
Adware.OxyPumper, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\DRIVERBOOSTERSETUP.EXE, No
Action By User, [464], [366316],1.0.1064
PUP.Optional.Sputnik, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\B573.TMP.EXE, No Action By
User, [3318], [352247],1.0.1064
Adware.Tuto4PC, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\E4ME77GGTAZX.EXE, No Action By
User, [2316], [350732],1.0.1064
Trojan.Agent, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\LINKER.EXE, No Action By User,
[22], [363443],1.0.1064
PUP.Optional.Tuto4PC, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\FBXWVPTI17.EXE, No Action
By User, [113], [314786],1.0.1064
Adware.Tuto4PC, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\GLOBAL_INSTALLER.EXE, No Action
By User, [2316], [350730],1.0.1064
Adware.Agent, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\PREPREINSTALLER_WIN.EXE, No Action
By User, [315], [353151],1.0.1064
PUP.Optional.Wajam, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\WAJAM_INSTALL.EXE, No Action
By User, [131], [244651],1.0.1064
Adware.Elex, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\TROTUX.EXE, No Action By User,
[1033], [344413],1.0.1064
Adware.Agent, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\00015930\NEWAUTOTIME_51495.JPG, No
Action By User, [315], [323624],1.0.1064
Adware.Agent, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\IS-926SH.TMP\AUTOTIME.EXE, No
Action By User, [315], [323847],1.0.1064
Adware.Tuto4PC, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\K1I06R15ZL\UNINMODULE.EXE, No
Action By User, [2316], [350732],1.0.1064
Adware.Amonetize, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\AE04ESUWI\VLNGPMINER.EXE, No
Action By User, [2507], [367821],1.0.1064
Adware.Tuto4PC, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\P2T4QZMGJ3\CAS.EXE, No Action By
User, [2316], [350732],1.0.1064
Trojan.Agent.MSIL, C:\USERS\CESAR\APPDATA\LOCAL\TEMP\XYH6I\TLC.EXE, No Action By
User, [208], [341171],1.0.1064
Adware.Elex, C:\WINDOWS\TEMP\UPC80C8.TMP\SECONDU71\QQBROWSERFRAME.DLL, No Action By
User, [1033], [355140],1.0.1064
PUP.Optional.Linkury, C:\WINDOWS\TEMP\SMARTBAR\ROUNDCORE.ICO, No Action By User,
[398], [259312],1.0.1064
CheatTool.CETTrainer, C:\USERS\CESAR\DOWNLOADS\STARDEW VALLEY V1.10 TRAINER +11
MRANTIFUN.ZIP, No Action By User, [10702], [116813],1.0.1064
CheatTool.CETTrainer, C:\USERS\CESAR\DOWNLOADS\580_STARDEW_VALLEY_.ZIPS, No Action
By User, [10702], [116813],1.0.1064
Adware.ICLoader, C:\USERS\CESAR\DOWNLOADS\MAGIC_ISO_MAKER_5.ZIP, No Action By User,
[827], [363944],1.0.1064
CheatTool.CETTrainer, C:\USERS\CESAR\DOWNLOADS\580_STARDEW_VALLEY_ (1).ZIPS, No
Action By User, [10702], [116813],1.0.1064
PUP.Optional.Smeazymo, C:\USERS\CESAR\APPDATA\LOCAL\ICEELECTRONICS.EXE.CONFIG, No
Action By User, [2391], [184220],1.0.1064
CheatTool.CETTrainer, C:\USERS\CESAR\DOWNLOADS\STARDEW VALLEY V2.27.2016 TRAINER +5
CheatTool.CETTrainer, C:\USERS\CESAR\DOWNLOADS\STARDEW VALLEY V1.03 TRAINER +11
PUP.Optional.OpenCandy, C:\USERS\CESAR\DOWNLOADS\CHEATENGINE66.EXE, No Action By
User, [645], [101648],1.0.1064
PUP.Optional.Smeazymo, C:\USERS\CESAR\APPDATA\LOCAL\ICEELECTRONICS.DAT, No Action
By User, [2391], [184220],1.0.1064
Trojan.Agent.MSIL, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\DONFIX,
No Action By User, [208], [341171],1.0.1064
PUP.Optional.Elex, C:\PROGRAM FILES (X86)\WINARCHER\ARCHER.DLL, No Action By User,
[15], [338087],1.0.1064
PUP.Optional.Elex, C:\Program Files (x86)\WinArcher\Packet.dll, No Action By User,
[15], [338087],1.0.1064
PUP.Optional.BitCoinMiner, C:\USERS\CESAR\APPDATA\ROAMING\VNLGP\VNLGP\START.CMD, No
Action By User, [254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\aes_helper.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\blake.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\blake256.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\bmw.cl, No Action By User, [254],
[260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\bmw256.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\cubehash.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\darkcoin-mod.cl, No Action By
User, [254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\decred.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\echo.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\fugue.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\groestl.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\groestl256.cl, No Action By User,
[254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\jh.cl,
No Action By User, [254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\keccak.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\keccak1600.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\luffa.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2re.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2rev2.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\lyra2v2.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\neoscrypt.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\shabal.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\shavite.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\simd.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\skein.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\skein256.cl, No Action By User,
[254], [260489],1.0.1064
C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\kernel\vanilla.cl, No Action By User,
[254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\decredGeForce
940MXgw256l4tc4032.bin, No Action By User, [254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\msvcr120.dll,
No Action By User, [254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\vnlgp.conf,
No Action By User, [254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp\vnlgp.exe, No
Action By User, [254], [260489],1.0.1064
PUP.Optional.BitCoinMiner, C:\Users\Cesar\AppData\Roaming\vnlgp\vnlgp-uninst.exe,
No Action By User, [254], [260489],1.0.1064
Adware.Elex, C:\PROGRAM FILES (X86)\GUBED\GUBEDZL.DLL, No Action By User, [1033],
[356680],1.0.1064
PUP.Optional.MyRadioXP, C:\USERS\CESAR\APPDATA\LOCAL\GOOGLE\CHROME\USER
DATA\ChromeDefaultData\LOCAL STORAGE\chrome-
extension_fnhfdmnphmbbjbgppnpcddkefmeokfho_0.localstorage, No Action By User,
[3140], [360496],1.0.1064
PUP.Optional.MyRadioXP, C:\USERS\CESAR\APPDATA\LOCAL\GOOGLE\CHROME\USER
DATA\Default\LOCAL STORAGE\chrome-
extension_fnhfdmnphmbbjbgppnpcddkefmeokfho_0.localstorage, No Action By User,
[3140], [360496],1.0.1064
PUP.Optional.Amazon1Button.AppFlsh, C:\PROGRAM FILES
(X86)\AMAZON\AMAZON1BUTTONAPP\Amazon1ButtonBrowserHelper.dll, No Action By User,
[1749], [333344],1.0.1064
(x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonBrowserHelper64.dll, No Action By User,
[1749], [333344],1.0.1064
(x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonRuntime.dll, No Action By User, [1749],
[333344],1.0.1064
[1749], [333344],1.0.1064
(x86)\Amazon\Amazon1ButtonApp\AmazonAppIE.dll, No Action By User, [1749],
[333344],1.0.1064
(x86)\Amazon\Amazon1ButtonApp\AmazonAppIE64.dll, No Action By User, [1749],
[333344],1.0.1064
(x86)\Amazon\Amazon1ButtonApp\AmazonExtIE.dll, No Action By User, [1749],
[333344],1.0.1064
(x86)\Amazon\Amazon1ButtonApp\AmazonExtIE64.dll, No Action By User, [1749],
[333344],1.0.1064
PUP.Optional.Elex, C:\PROGRAMDATA\WINSAPSVC\WINSAP.DLL, No Action By User, [15],
[338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\39.json, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\amule.msi, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\Archer.dllEx.dll, No
Action By User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\ClearLog.dll, No Action
By User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\DataBase, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\GubedZL.dll, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\hhhhh.exe, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\Install.dll, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\MIO.dll, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\Packet.dll, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\QQBrowser.exe, No Action
By User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\RegKey.dll, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\ttttt.exe, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\WinSAP.dll, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\winsap_cf, No Action By
User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\winsap_update\WinSnare.msi, No Action
By User, [15], [338081],1.0.1064
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\SETUP.dll, No Action By User, [15],
[338081],1.0.1064
Physical Sector: 0
(No malicious items detected)
(end)

Potential

Caricato da

Informazioni sul documento

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

Potential

Caricato da

Copyright:

Formati disponibili

Malwarebytes

Potrebbero piacerti anche