Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 5/25/20
Scan Time: 9:59 AM
Log File: 42429642-9e40-11ea-b81f-34689560e9d4.json

-Software Information-
Version: 3.8.3.2965
Components Version: 1.0.629
Update Package Version: 1.0.16290
License: Trial

-System Information-
OS: Windows 8.1
CPU: x64
File System: NTFS
User: DELL\SRINIVAS

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 243214
Threats Detected: 69
Threats Quarantined: 69
Time Elapsed: 14 min, 13 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 26
PUP.Optional.ProxyHijacker.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Quarantined, [4823], [-1],0.0.0
PUP.Optional.MSoft.ChrPRST, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\akhdblbjebmbllhinponghfmaekhlhob, Quarantined, [2197], [408561],1.0.16290
Adware.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WINUPDATE, Quarantined, [87], [311535],1.0.16290
Adware.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8D986355-AAB7-477F-9CF9-A83E22359301}, Quarantined, [87], [311535],1.0.16290
Adware.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{8D986355-AAB7-477F-9CF9-A83E22359301}, Quarantined, [87], [311535],1.0.16290
PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bghejdcdajlenjngcknlkkoakmmjfanb, Quarantined, [6195], [252978],1.0.16290
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\ProductivityBoss_e5, Quarantined, [712], [240793],1.0.16290
PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\DEALZ, Quarantined, [2525], [246750],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\ProductivityBoss_e5, Quarantined, [712], [240649],1.0.16290
PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Dealz1.0.1.17, Quarantined, [2525], [246751],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\APPDATALOW\SOFTWARE\ProductivityBoss_e5, Quarantined, [712], [240507],1.0.16290
PUP.Optional.MindSpark.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ProductivityBoss_e5bar Uninstall Internet Explorer, Quarantined, [1813], [477826],1.0.16290
PUP.Optional.Dealz, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\DEALZ, Quarantined, [2525], [246748],1.0.16290
PUP.Optional.Dealz, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Dealz1.0.1.7, Quarantined, [2525], [246749],1.0.16290
PUP.Optional.ASK, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{a37187ba-df01-4b27-a7c9-a645524b0517}, Quarantined, [281], [245525],1.0.16290
PUP.Optional.MindSpark, HKLM\SOFTWARE\CLASSES\CLSID\{5754A7F4-5CB7-4287-8354-170A8C185349}, Quarantined, [712], [168308],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{5754A7F4-5CB7-4287-8354-170A8C185349}, Quarantined, [712], [168308],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{5754A7F4-5CB7-4287-8354-170A8C185349}, Quarantined, [712], [168308],1.0.16290
PUP.Optional.MindSpark, HKLM\SOFTWARE\CLASSES\CLSID\{589CD417-937B-4D56-BB76-55260209DC19}, Quarantined, [712], [168315],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{589CD417-937B-4D56-BB76-55260209DC19}, Quarantined, [712], [168315],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{589CD417-937B-4D56-BB76-55260209DC19}, Quarantined, [712], [168315],1.0.16290
PUP.Optional.MindSpark, HKLM\SOFTWARE\CLASSES\CLSID\{EA729DF7-FEA8-443C-8781-327FA3AB7529}, Quarantined, [712], [168498],1.0.16290
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{EA729DF7-FEA8-443C-8781-327FA3AB7529}, Quarantined, [712], [168498],1.0.16290
PUP.Optional.MindSpark, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{EA729DF7-FEA8-443C-8781-327FA3AB7529}, Quarantined, [712], [168498],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EA729DF7-FEA8-443C-8781-327FA3AB7529}, Quarantined, [712], [168498],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EA729DF7-FEA8-443C-8781-327FA3AB7529}, Quarantined, [712], [168498],1.0.16290

Registry Value: 19
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYSERVER, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYSERVER, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [4823], [-1],0.0.0
PUP.Optional.MSoft.ChrPRST, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|AKHDBLBJEBMBLLHINPONGHFMAEKHLHOB, Quarantined, [2197], [408561],1.0.16290
PUP.Optional.ChromePatcher.ChrPRST, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|BGHEJDCDAJLENJNGCKNLKKOAKMMJFANB, Quarantined, [6195], [252978],1.0.16290
PUP.Optional.Dealz, HKLM\SOFTWARE\WOW6432NODE\DEALZ|PARTNER, Quarantined, [2525], [246750],1.0.16290
PUP.Optional.Dealz, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\DEALZ|PARTNER, Quarantined, [2525], [246748],1.0.16290
PUP.Optional.ASK, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{a37187ba-df01-4b27-a7c9-a645524b0517}|DISPLAYNAME, Quarantined, [281], [245525],1.0.16290
PUP.Optional.ASK, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{a37187ba-df01-4b27-a7c9-a645524b0517}|URL, Quarantined, [281], [245524],1.0.16290
PUP.Optional.MindSpark, HKU\S-1-5-21-694628291-767070351-3124995916-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{EA729DF7-FEA8-443C-8781-327FA3AB7529}, Quarantined, [712], [168498],1.0.16290
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{EA729DF7-FEA8-443C-8781-327FA3AB7529}, Quarantined, [712], [168498],1.0.16290

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 1
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\WINDOWS\LISTS, Quarantined, [4823], [253762],1.0.16290

File: 23
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\WINDOWS\LISTS\URL KILLFILE.TXT, Quarantined, [4823], [253762],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\AllowCookies.txt, Quarantined, [4823], [253762],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Bypass List.txt, Quarantined, [4823], [253762],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Keyword list.txt, Quarantined, [4823], [253762],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\Kill Images.txt, Quarantined, [4823], [253762],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\MIME Fix List.txt, Quarantined, [4823], [253762],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\Windows\Lists\URL Alias List.txt, Quarantined, [4823], [253762],1.0.16290
PUP.Optional.MSoft.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, Quarantined, [2197], [408561],1.0.16290
PUP.Optional.MSoft.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\USER\REGISTRY.POL, Quarantined, [2197], [408561],1.0.16290
PUP.Optional.MSoft.ChrPRST, C:\USERS\SRINIVAS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [2197], [408561],1.0.16290
PUP.Optional.MSoft.ChrPRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\NTUSER.POL, Quarantined, [2197], [-1],0.0.0
PUP.Optional.MSoft.ChrPRST, C:\PROGRAMDATA\NTUSER.POL, Quarantined, [2197], [-1],0.0.0
PUP.Optional.MSoft.ChrPRST, C:\USERS\SRINIVAS\NTUSER.POL, Quarantined, [2197], [-1],0.0.0
PUP.Optional.MSoft.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\USER\REGISTRY.POL, Quarantined, [2197], [-1],0.0.0
PUP.Optional.MSoft.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, Quarantined, [2197], [-1],0.0.0
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\WINDOWS\INITCVTR.BAT, Quarantined, [4823], [253761],1.0.16290
Hijack.AutoConfigURL, C:\WINDOWS\SYSTEM32\DRIVERS\WINPACKET.PAC, Quarantined, [5735], [251062],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\WINDOWS\MSTDCVTR.BAT, Quarantined, [4823], [253763],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\WINDOWS\PLOFGYE, Quarantined, [4823], [253764],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\WINDOWS\SOXE, Quarantined, [4823], [253765],1.0.16290
Adware.Agent, C:\WINDOWS\SYSTEM32\TASKS\WINUPDATE, Quarantined, [87], [311535],1.0.16290
PUP.Optional.ProxyHijacker.PrxySvrRST, C:\WINDOWS\CYGAVB.EXE, Quarantined, [4823], [253760],1.0.16290
PUP.Optional.ChromePatcher.ChrPRST, C:\USERS\SRINIVAS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Replaced, [6195], [252978],1.0.16290

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)