# ------------------------------- # Malwarebytes AdwCleaner 8.3.1.0 # ------------------------------- # Build: 11-18-2021 # Database: 2021-12-02.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 12-22-2021 # Duration: 00:00:15 # OS: Windows 10 Home Single Language # Scanned: 32023 # Detected: 44 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** Adware.pokki C:\Users\Administrador\AppData\Local\Host App Service Adware.pokki C:\Users\Default\AppData\Local\Host App Service Adware.pokki C:\Users\Public\App Explorer Adware.pokki C:\Users\luize\AppData\Local\Host App Service Adware.pokki C:\Users\testet\AppData\Local\Host App Service Adware.pokki C:\Windows\ServiceProfiles\LocalService\AppData\Local\Host App Service Adware.pokki C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Host App Service PUP.Optional.AmazonAssistant C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion PUP.Optional.WebCompanion C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion PUP.Optional.WebCompanion C:\Users\luize\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG ***** [ Files ] ***** Adware.pokki C:\ProgramData\Microsoft\Windows\Start Menu\Programs\App Explorer.lnk Adware.pokki C:\Windows\System32\Tasks_Migrated\App Explorer ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** Adware.pokki C:\Windows\System32\Tasks\APP EXPLORER ***** [ Registry ] ***** Adware.pokki HKCU\Software\App Host Service Adware.pokki HKCU\Software\Host App Service Adware.pokki HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service Adware.pokki HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B73565F3-E73E-462B-B3F5-E4E07E8E6984} Adware.pokki HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{7D2B3E1D-D096-4594-9D8F-A6667F12E0AC} PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\browser.exe PUP.Optional.SpeedBrowser HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\browser.exe PUP.Optional.SpeedBrowser HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\App Paths\browser.exe PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com PUP.Optional.YTDToolbar HKLM\Software\Wow6432Node\{DAF8B7E5-449D-4180-8281-10E536E597F2} ***** [ Chromium (and derivatives) ] ***** PUP.Optional.AmazonBrowserBar Amazon Assistant for Chrome - pbjikboenpfhbbejgkoklgkhjpfogcam PUP.Optional.AmazonBrowserBar Amazon Assistant para o Chrome - pbjikboenpfhbbejgkoklgkhjpfogcam PUP.Optional.AmazonBrowserBar Amazon Assistant para o Chrome - pbjikboenpfhbbejgkoklgkhjpfogcam PUP.Optional.Legacy mnkioblodjcgkdailhejgcocjkkoochj ***** [ Chromium URLs ] ***** PUP.Optional.Legacy http://searchfunmoods.com/?f=1&a=1543n&cd=2XzuyEtN2Y1L1Qzu0FyE0C0EyEyCtDyC0Ezz0EyDtAtBzztBtN0D0Tzu0CyBtDtBtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1CzutCyDyEtA1G&cr=978522087&ir= PUP.Optional.Legacy http://websearch.searchguru.info/?pid=373&r=2013/12/08&hid=10277907611027540660&lg=BR&cc=BR&unqvl=43 ***** [ Firefox (and derivatives) ] ***** PUP.Optional.BrowseToSave SaveFrom.net helper - helper-sig@savefrom.net ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. ***** [ Hosts File Entries ] ***** No malicious hosts file entries found. ***** [ Preinstalled Software ] ***** Preinstalled.ACERAOPFramework Folder C:\Program Files (x86)\ACER\AOP FRAMEWORK Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B} Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B} Preinstalled.AcerPortal Folder C:\ProgramData\ACER\ACER PORTAL Preinstalled.AcerUEIPFramework Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM\FRAMEWORK Preinstalled.AcerUEIPFramework Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM\PLUGIN\APPMONITOR Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7367E6CC-8CC4-4028-B0BA-9292DB492C99} Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UbtFrameworkService Preinstalled.AcerUEIPFramework Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12A718F2-2357-4D41-9E1F-18583A4745F7} Preinstalled.AcerUEIPFramework Task C:\Windows\System32\Tasks\UBTFRAMEWORKSERVICE Preinstalled.AcerUpdater Folder C:\ProgramData\ACER\ACER UPDATER Preinstalled.AcerabBox Registry HKLM\Software\Classes\CLSID\{5CCE71FA-9F61-4F24-9CD1-98D819B40D68} AdwCleaner[S00].txt - [5755 octets] - [22/12/2021 16:33:51] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########