# AdwCleaner v6.047 - Logfile created 23/05/2017 at 17:23:11 # Updated on 19/05/2017 by Malwarebytes # Database : 2017-05-22.1 [Server] # Operating System : Windows 8.1 (X64) # Username : Oli - OLIWIA # Running from : C:\Users\Oli\Downloads\AdwCleaner.exe # Mode: Scan # Support : https://www.malwarebytes.com/support ***** [ Services ] ***** Service Found: iSafeKrnl Service Found: iSafeKrnlBoot Service Found: iSafeKrnlKit Service Found: iSafeKrnlMon Service Found: iSafeKrnlR3 Service Found: iSafeService Service Found: isafekrnl Service Found: isafekrnlboot Service Found: isafekrnlkit Service Found: isafekrnlmon Service Found: isafekrnlr3 Service Found: isafeservice Service Found: SSSvc ***** [ Folders ] ***** Folder Found: C:\Users\Oli\AppData\Roaming\Browser-Security Folder Found: C:\Users\Oli\AppData\Roaming\Elex-tech Folder Found: C:\Program Files (x86)\Elex-tech ***** [ Files ] ***** File Found: C:\Users\Oli\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ScreenShot.lnk File Found: C:\WINDOWS\SysNative\log\iSafeKrnlCall.log File Found: C:\WINDOWS\SysNative\drivers\iSafeKrnlBoot.sys File Found: C:\ProgramData\Microsoft\Windows\Start Menu\ScreenShot.lnk File Found: C:\Users\Public\Documents\temp.dat File Found: C:\Users\Public\Documents\report.dat ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious keys found. ***** [ Shortcuts ] ***** No infected shortcut found. ***** [ Scheduled Tasks ] ***** No malicious task found. ***** [ Registry ] ***** Key Found: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\geekbuddyrsp Key Found: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\geekbuddyrsp Key Found: HKU\S-1-5-21-2083115291-1334581206-888238541-1001\Software\dobreprogramy Key Found: HKU\S-1-5-21-2083115291-1334581206-888238541-1001\Software\PRODUCTSETUP Key Found: HKU\S-1-5-21-2083115291-1334581206-888238541-1001\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I Key Found: HKU\S-1-5-21-2083115291-1334581206-888238541-1001\Software\csastats Key Found: HKU\S-1-5-21-2083115291-1334581206-888238541-1001\Software\Bagsarah Key Found: HKCU\Software\dobreprogramy Key Found: HKCU\Software\PRODUCTSETUP Key Found: HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I Key Found: HKCU\Software\csastats Key Found: HKCU\Software\Bagsarah Key Found: HKLM\SOFTWARE\Elex-tech Key Found: HKLM\SOFTWARE\ScreenShot Key Found: HKLM\SOFTWARE\Bagsarah Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Browser-Security Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ScreenShot Key Found: [x64] HKCU\Software\dobreprogramy Key Found: [x64] HKCU\Software\PRODUCTSETUP Key Found: [x64] HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I Key Found: [x64] HKCU\Software\csastats Key Found: [x64] HKCU\Software\Bagsarah Value Found: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [arthurj8283@gmail.com] Value Found: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [arthurj8283@gmail.com] Value Found: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [arthurj8283@gmail.com] ***** [ Web browsers ] ***** No malicious Firefox based browser items found. No malicious Chromium based browser items found. ************************* C:\AdwCleaner\AdwCleaner[S0].txt - [3352 Bytes] - [23/05/2017 17:23:11] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3425 Bytes] ##########