Scribd Logo
Upload

Welcome to Scribd!

  • 82 views

    Mal Wares List

    Uploaded by

    Aditya Singh
    The Malwarebytes log file summarizes the results of a scan run on 9/17/19. The scan found 215 threats which were all quarantined. The majority of threats detected were potentially unwanted programs or adware located in the registry and registry values. A few threats were also found related to bitcoin mining and disabling Windows defenses.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Mal Wares List

    Uploaded by

    Aditya Singh
    82 views13 pages
    The Malwarebytes log file summarizes the results of a scan run on 9/17/19. The scan found 215 threats which were all quarantined. The majority of threats detected were potentially unwanted programs or adware located in the registry and registry values. A few threats were also found related to bitcoin mining and disabling Windows defenses.

    Original Description:

    This is a list of possible malware on your computer

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The Malwarebytes log file summarizes the results of a scan run on 9/17/19. The scan found 215 threats which were all quarantined. The majority of threats detected were potentially unwanted programs or adware located in the registry and registry values. A few threats were also found related to bitcoin mining and disabling Windows defenses.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    82 views13 pages

    Mal Wares List

    Uploaded by

    Aditya Singh
    The Malwarebytes log file summarizes the results of a scan run on 9/17/19. The scan found 215 threats which were all quarantined. The majority of threats detected were potentially unwanted programs or adware located in the registry and registry values. A few threats were also found related to bitcoin mining and disabling Windows defenses.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    of 13

    Malwarebytes

    www.malwarebytes.com

    -Log Details-
    Scan Date: 9/17/19
    Scan Time: 10:38 PM
    Log File: c45bff80-d96d-11e9-ad5a-7446a0a19058.json

    -Software Information-
    Version: 3.8.3.2965
    Components Version: 1.0.613
    Update Package Version: 1.0.12527
    License: Trial

    -System Information-
    OS: Windows 7 Service Pack 1
    CPU: x64
    File System: NTFS
    User: AD10711\Administrator

    -Scan Summary-
    Scan Type: Threat Scan
    Scan Initiated By: Manual
    Result: Completed
    Objects Scanned: 304762
    Threats Detected: 215
    Threats Quarantined: 215
    Time Elapsed: 10 min, 19 sec

    -Scan Options-
    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Detect
    PUM: Detect

    -Scan Details-
    Process: 0
    (No malicious items detected)

    Module: 0
    (No malicious items detected)

    Registry Key: 49
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\REI_AxControl.DLL,
    Delete-on-Reboot, [357], [327193],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\REI_AxControl.DLL,
    Delete-on-Reboot, [357], [327193],1.0.12527
    Adware.Tuto4PC, HKLM\SOFTWARE\Foldershare, Delete-on-Reboot, [2841],
    [536223],1.0.12527
    PUP.Optional.Reimage, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\LOCAL APPWIZARD-GENERATED APPLICATIONS\Fixer - Windows Problem
    Relief., Delete-on-Reboot, [357], [709541],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-
    EAD298611484}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, Delete-on-
    Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{10ECCE17-29B5-4880-
    A8F5-EAD298611484}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-
    2A5CF9CC0A36}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-
    DEA536F23BA4}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-
    EF962DF64546}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9BB31AD8-5DB2-
    459E-A901-DEA536F23BA4}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BD51A48E-EB5F-
    4454-8774-EF962DF64546}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9BB31AD8-5DB2-
    459E-A901-DEA536F23BA4}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BD51A48E-EB5F-
    4454-8774-EF962DF64546}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FA6468D2-FAA4-
    4951-A53B-2A5CF9CC0A36}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FA6468D2-FAA4-
    4951-A53B-2A5CF9CC0A36}, Delete-on-Reboot, [357], [327197],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, Delete-on-
    Reboot, [357], [327197],1.0.12527
    PUP.Optional.PCVARK, HKLM\SOFTWARE\QWRyb2l0IFN5c3RlbSBDYXJl, Delete-on-Reboot,
    [476], [702107],1.0.12527
    PUP.Optional.Reimage, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\REIMAGE\PC REPAIR, Delete-on-Reboot, [357], [327204],1.0.12527
    RiskWare.BitCoinMiner, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\EpicNet Inc., Delete-on-Reboot, [791], [451809],1.0.12527
    PUP.Optional.Reimage, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\Reimage, Delete-on-Reboot, [357], [357494],1.0.12527
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B4
    7FF8B6E079E5A2220E, Delete-on-Reboot, [2949], [260247],1.0.12527
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FF
    F0C58C7844B47FF8B6E079E5A2220E, Delete-on-Reboot, [2949], [260247],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\REI_AxControl.DLL, Delete-on-
    Reboot, [357], [327193],1.0.12527
    PUP.Optional.PCVARK, HKLM\SOFTWARE\XSC-PR, Delete-on-Reboot, [476],
    [698879],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\Reimage Repair, Delete-on-Reboot,
    [357], [336077],1.0.12527
    RiskWare.BitCoinMiner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinmonFS, Delete-on-
    Reboot, [791], [700103],1.0.12527
    RiskWare.BitCoinMiner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinmonProcessMonitor,
    Delete-on-Reboot, [791], [700104],1.0.12527
    Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINDEFENDER, Delete-on-Reboot,
    [450], [428246],1.0.12527
    Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINMON, Delete-on-Reboot,
    [94], [431630],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\TYPELIB\{23311E82-B997-
    11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\INTERFACE\{23387882-DEAA-
    4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\INTERFACE\{2532D782-C4FC-
    4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\INTERFACE\{2F343382-EFC2-
    49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\
    {23387882-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\
    {2532D782-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\
    {2F343382-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\
    {23387882-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\
    {2532D782-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\
    {2F343382-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\
    {23311E82-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\
    {23311E82-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\tscmon,
    Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-
    2AB076D4E8CB}, Delete-on-Reboot, [357], [327206],1.0.12527
    PUP.Optional.AdvancedSystemRepair, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\asrdmon,
    Delete-on-Reboot, [485], [708572],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-
    E26DD59B350A}, Delete-on-Reboot, [357], [332494],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-
    9B81-E26DD59B350A}, Delete-on-Reboot, [357], [332494],1.0.12527
    PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{28FF42B8-A0DA-4BE5-
    9B81-E26DD59B350A}, Delete-on-Reboot, [357], [332494],1.0.12527
    Adware.Wajam,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES,
    Delete-on-Reboot, [531], [-1],0.0.0

    Registry Value: 15
    PUP.Optional.Reimage, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\REIMAGE\PC REPAIR|QUITMESSAGE, Delete-on-Reboot, [357],
    [327204],1.0.12527
    PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|
    DONTREPORTINFECTIONINFORMATION, Delete-on-Reboot, [7018], [676881],1.0.12527
    PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU,
    Delete-on-Reboot, [7018], [676880],1.0.12527
    PUP.Optional.PCVARK, HKLM\SOFTWARE\XSC-PR|UTM_CAMPAIGN, Delete-on-Reboot, [476],
    [698879],1.0.12527
    PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|
    DONTREPORTINFECTIONINFORMATION, Delete-on-Reboot, [7018], [676881],1.0.12527
    PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|
    DONTOFFERTHROUGHWUAU, Delete-on-Reboot, [7018], [676880],1.0.12527
    Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINDEFENDER|IMAGEPATH, Delete-
    on-Reboot, [450], [428246],1.0.12527
    Trojan.BitCoinMiner,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREW
    ALLRULES|{DF92E9C5-DD1E-42CA-BB0B-85E406B1FB35}, Delete-on-Reboot, [575],
    [446017],1.0.12527
    PUP.Optional.CloudNet,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREW
    ALLRULES|{1EE96EA3-67D9-416E-8971-F9E25BD3A8E5}, Delete-on-Reboot, [6031],
    [446028],1.0.12527
    Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINMON|IMAGEPATH, Delete-on-
    Reboot, [94], [431630],1.0.12527
    PUP.Optional.AppForInstagram, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|
    ebmdoffeooapnmjcnidddmhancpfpjab, Delete-on-Reboot, [2205], [701794],1.0.12527
    Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET
    SETTINGS|PROXYENABLE, Delete-on-Reboot, [531], [-1],0.0.0
    Adware.Wajam, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE,
    Delete-on-Reboot, [531], [-1],0.0.0
    Adware.Wajam, HKU\S-1-5-21-160590135-1835760977-4077769297-
    500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE,
    Delete-on-Reboot, [531], [-1],0.0.0
    Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET
    SETTINGS|PROXYENABLE, Delete-on-Reboot, [531], [-1],0.0.0

    Registry Data: 17
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, Replace-on-
    Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, Replace-on-
    Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{00A629DA-CDA4-
    4E05-810C-F5403877C990}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{298AB3A4-C4F5-
    424A-9515-922542BE127B}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{298AB3A4-C4F5-
    424A-9515-922542BE127B}|DhcpNameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{383B125D-5F85-
    49DE-9C8B-51C0BAAE0342}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{69D6D517-9BFD-
    4B40-A3F4-DC5F3E1BF739}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{7B685788-9B96-
    421F-8A64-C4FF8DBF80D5}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{7ED6A298-9AAB-
    4A4F-BDD7-0EB5BFA72FF9}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{7ED6A298-9AAB-
    4A4F-BDD7-0EB5BFA72FF9}|DhcpNameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{80D9F201-17C8-
    43D6-BAB2-DFCFE420E09C}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{93B2A13A-5A8C-
    40B9-B530-F518B35B04B8}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{A751B50B-77F3-
    4C8B-9528-858EE5210F66}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{BD0B5972-CD81-
    4DC1-A523-64A5DD4B3D50}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    PUP.Optional.DNSUnlocker.ACMB2,
    HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{C53CEA6A-031F-
    43EA-B5B1-3E56231727B7}|NameServer, Replace-on-Reboot, [2949], [-1],0.0.0
    Adware.SonicSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET
    EXPLORER\SEARCHURL|DEFAULT, Replace-on-Reboot, [13294], [693611],1.0.12527
    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|
    NAMESERVER, Replace-on-Reboot, [7266], [293494],1.0.12527

    Data Stream: 0
    (No malicious items detected)

    Folder: 30
    Adware.Adposhel.Generic, C:\PROGRAMDATA\A7F88ABC-19BE-3425-1E36-E3A779C6EF1B,
    Delete-on-Reboot, [3756], [702566],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\Program Files (x86)\Advanced System Repair
    Pro 1.8.1.0.0\reports, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\PROGRAM FILES (X86)\Advanced System Repair
    Pro 1.8.1.0.0, Delete-on-Reboot, [485], [506683],1.0.12527
    Adware.Neoreklami.TskLnk,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCALLOW\CNOGANTVANULS, Delete-on-
    Reboot, [858], [546459],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\en_UK,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\pt_BR,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\de,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\en,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\es,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\fr,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\he,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\hi,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\ja,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\ko,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\nl,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\pl,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\ru,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\th,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\vi,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_metadata, Delete-
    on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales, Delete-
    on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\lib, Delete-on-
    Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css, Delete-on-
    Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img, Delete-on-
    Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js, Delete-on-
    Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0, Delete-on-Reboot,
    [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\lost,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\GOOGLE\CHROME\USER
    DATA\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab, Delete-on-
    Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\GOOGLE\CHROME\USER
    DATA\Default\Sync Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab, Delete-on-
    Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\GOOGLE\CHROME\USER
    DATA\Default\EXTENSIONS\ebmdoffeooapnmjcnidddmhancpfpjab, Delete-on-Reboot, [2205],
    [701794],1.0.12527

    File: 104
    Adware.Adposhel.Generic, C:\PROGRAMDATA\A7F88ABC-19BE-3425-1E36-E3A779C6EF1B\
    {9F9EA79E-8C26-6D66-222D-663898954359}, Delete-on-Reboot, [3756],
    [702566],1.0.12527
    Adware.Linkury, C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\installer.dat,
    Delete-on-Reboot, [394], [715618],1.0.12527
    Adware.Linkury,
    C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\installer.dat, Delete-on-
    Reboot, [394], [715618],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\Program Files (x86)\Advanced System Repair
    Pro 1.8.1.0.0\reports\fraglist_c.luar, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\Program Files (x86)\Advanced System Repair
    Pro 1.8.1.0.0\AdvancedSystemRepairPro.exe, Delete-on-Reboot, [485],
    [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\Program Files (x86)\Advanced System Repair
    Pro 1.8.1.0.0\asrscan.sys, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\Program Files (x86)\Advanced System Repair
    Pro 1.8.1.0.0\pcw.dll, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\Program Files (x86)\Advanced System Repair
    Pro 1.8.1.0.0\pcw.pack, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\Program Files (x86)\Advanced System Repair
    Pro 1.8.1.0.0\tscmon.exe, Delete-on-Reboot, [485], [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\DOCUMENTS AND
    SETTINGS\PUBLIC\Desktop\Advanced System Repair Pro.lnk, Delete-on-Reboot, [485],
    [506683],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\USERS\PUBLIC\Desktop\Advanced System Repair
    Pro.lnk, Delete-on-Reboot, [485], [506683],1.0.12527
    Adware.Neoreklami.TskLnk,
    C:\Users\Administrator.INNESCWKST004\AppData\LocalLow\cnOgaNtVaNULS\Storage.db,
    Delete-on-Reboot, [858], [546459],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css\content.css,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css\content.css.ma
    p, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css\content.scss,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css\direct.css,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css\direct.css.map
    , Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css\direct.scss,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\css\_scroll.scss,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\128.png,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\32.png,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\64.png,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\camera-d.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\camera.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\download.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\left-arrow-
    d.svg, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\left-
    arrow.svg, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\loading.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\messages-
    d.svg, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\messages.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\moon-d.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\moon.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\refresh-d.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\refresh.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\right-arrow-
    d.svg, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\right-
    arrow.svg, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\settings-
    d.svg, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\settings.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\tv-d.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\tv.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\user-d.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\img\user.svg,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\lib\jquery.min.
    js, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\lib\tippy.all.m
    in.js, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\analytics.js,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\background.js,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\content.js,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\direct.js,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\setnavigator.js
    , Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\storage.js,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\js\ua.js, Delete-
    on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\de\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\en\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\en_UK\mes
    sages.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\es\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\fr\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\he\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\hi\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\ja\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\ko\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\nl\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\pl\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\pt_BR\mes
    sages.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\ru\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\th\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_locales\vi\messag
    es.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_metadata\computed
    _hashes.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\_metadata\verified
    _contents.json, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\128x128.png,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\direct.html,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Extensions\ebmdoffeooapnmjcnidddmhancpfpjab\1.2.6_0\manifest.json,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension
    Settings\ebmdoffeooapnmjcnidddmhancpfpjab\lost\000003.log, Delete-on-Reboot,
    [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension
    Settings\ebmdoffeooapnmjcnidddmhancpfpjab\lost\MANIFEST-000001, Delete-on-Reboot,
    [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\000004.ldb,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\000006.log,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\CURRENT,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\LOCK,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\LOG, Delete-
    on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\LOG.old,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Local Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\MANIFEST-
    000001, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Sync Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\000003.log,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Sync Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\CURRENT,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Sync Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\LOCK, Delete-
    on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Sync Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\LOG, Delete-
    on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Sync Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\LOG.old,
    Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\Users\Administrator.INNESCWKST004\AppData\Local\Google\Chrome\User
    Data\Default\Sync Extension Settings\ebmdoffeooapnmjcnidddmhancpfpjab\MANIFEST-
    000001, Delete-on-Reboot, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\GOOGLE\CHROME\USER
    DATA\Default\Secure Preferences, Replaced, [2205], [701794],1.0.12527
    PUP.Optional.AppForInstagram,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\GOOGLE\CHROME\USER
    DATA\Default\Preferences, Replaced, [2205], [701794],1.0.12527
    PUP.Optional.Reimage, C:\WINDOWS\REIMAGE.INI, Delete-on-Reboot, [357],
    [412667],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\WINDOWS\SYSTEM32\DRIVERS\ASRDMON.SYS, Delete-
    on-Reboot, [485], [708572],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\PROGRAMDATA\TSR7SETTINGS\DSUTIL.ZIP, Delete-
    on-Reboot, [485], [724287],1.0.12527
    PUP.Optional.AdvancedSystemRepair, C:\PROGRAMDATA\TSR7SETTINGS\DSUTIL.EXE, Delete-
    on-Reboot, [485], [724287],1.0.12527
    Adware.Wajam, C:\WINDOWS\TEMP\NSH89E8.TMP\BGNCWSSPKYS.DLL, Delete-on-Reboot, [531],
    [560904],1.0.12527
    Adware.Wajam, C:\WINDOWS\TEMP\NSW741.TMP\BGNCWSSPKYS.DLL, Delete-on-Reboot, [531],
    [560904],1.0.12527
    PUP.Optional.Reimage,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\TEMP\~NSU.TMP\AU_.EXE, Delete-
    on-Reboot, [357], [331559],1.0.12527
    PUP.Optional.Reimage,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\APPDATA\LOCAL\TEMP\~NSU.TMP\BU_.EXE, Delete-
    on-Reboot, [357], [726642],1.0.12527
    PUP.Optional.InstallCore, C:\USERS\ADMINISTRATOR.INNESCWKST004\DOWNLOADS\CHEAT-
    ENGINE-6-7.EXE, Delete-on-Reboot, [454], [500846],1.0.12527
    RiskWare.Crack,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\DOWNLOADS\IDM_CRACK_6.31_BUILD_2_INCL_PATCH__1
    00__WORKING__LATEST_FREE_DOWNLOAD.ZIP, Delete-on-Reboot, [7722], [698484],1.0.12527
    Generic.Malware/Suspicious,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\DOWNLOADS\GAME_SETUP.EXE, Delete-on-Reboot,
    [0], [392686],1.0.12527
    Trojan.Downloader, C:\USERS\ADMINISTRATOR.INNESCWKST004\DOWNLOADS\BOOK-
    _69BB5CCA.ZIP, Delete-on-Reboot, [536], [500992],1.0.12527
    Generic.Malware/Suspicious,
    C:\USERS\ADMINISTRATOR.INNESCWKST004\DOWNLOADS\PLAYERUNKNOWNS BATTLEGROUNDS -
    INSTALLSHIELD WIZARD.EXE, Delete-on-Reboot, [0], [392686],1.0.12527
    PUP.Optional.DriverHive, C:\WINDOWS\INSTALLER\3D2669.MSI, Delete-on-Reboot, [2958],
    [542209],1.0.12527
    RiskWare.Crack, C:\USERS\ADMINISTRATOR.INNESCWKST004\DESKTOP\NEW FOLDER (2)\32BIT
    PATCH BUILD 2.EXE, Delete-on-Reboot, [7722], [698484],1.0.12527
    RiskWare.Crack, C:\USERS\ADMINISTRATOR.INNESCWKST004\DESKTOP\NEW FOLDER (2)\64BIT
    PATCH BUILD 2.EXE, Delete-on-Reboot, [7722], [698484],1.0.12527

    Physical Sector: 0
    (No malicious items detected)

    WMI: 0
    (No malicious items detected)

    (end)

    You might also like