Korpill

PC is doing well. I don't think I'm facing the PUP issue. Threat scan found no PUP's today. Thanks!

ESET found threats. Below is the EST log. Thanks. ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=004596b65c92134b81022fdf63a4eecd # end=init # utc_time=2017-08-17 10:59:28 # local_time=2017-08-17 05:59:28 (-0600, Central Daylight Time) # country="United States" # osver=6.1.7601 NT Service Pack 1 Update Init Update Download Update Finalize Updated modules version: 34436 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=004596b65c92134b81022fdf63a4eecd # end=updated # utc_time=2017-08-17 11:04:25 # local_time=2017-08-17 06:04:25 (-0600, Central Daylight Time) # country="United States" # osver=6.1.7601 NT Service Pack 1 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7777 # api_version=3.1.1 # EOSSerial=004596b65c92134b81022fdf63a4eecd # engine=34436 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2017-08-18 03:17:32 # local_time=2017-08-17 10:17:32 (-0600, Central Daylight Time) # country="United States" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode_1='avast! Antivirus' # compatibility_mode=771 16777213 83 60 0 0 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 32205554 254569702 0 0 # scanned=311096 # found=5 # cleaned=5 # scan_time=15186 sh=C34DCF343F764E03BAC17CFAEF5F01712FFD25AD ft=1 fh=2ed4b7a22fb05e13 vn="a variant of Win32/Bundled.Toolbar.Ask.N potentially unsafe application (cleaned by deleting)" ac=C fn="C:\Users\Heath\AppData\LocalLow\Oracle\Java\jre1.8.0_101\java_sp.dll" sh=93F5D460B4B27AACEC931A9A11EDD450D3274A26 ft=1 fh=8ad5d720f8077a67 vn="a variant of Win32/Bundled.Toolbar.Ask.N potentially unsafe application (cleaned by deleting)" ac=C fn="C:\Users\Heath\AppData\LocalLow\Oracle\Java\jre1.8.0_101\java_sp\JavaIC.dll" sh=F063E55D85DFEA41127DFEB76171BE8454FB68B8 ft=1 fh=627de822ce5e1a09 vn="a variant of Win32/Bundled.Toolbar.Ask.M potentially unsafe application (cleaned by deleting)" ac=C fn="C:\Users\Heath\AppData\LocalLow\Sun\Java\jre1.7.0_67\java_sp.dll" sh=8B47F8F9C0CB46B01F19259C99F08D57223581C9 ft=0 fh=0000000000000000 vn="multiple threats (deleted)" ac=C fn="C:\Users\Heath\Desktop\Hirens CD\Hirens.BootCD.15.2.zip" sh=565B645851C49C4FB5CF1AF90540A4129033CE66 ft=0 fh=0000000000000000 vn="multiple threats (deleted)" ac=C fn="C:\Users\Heath\Desktop\Hirens CD\Hiren\Hiren's.BootCD.15.2.iso"

Thanks, Valinorum. Below is a copy of the AdwCleaner log (Step #1). # AdwCleaner 7.0.1.0 - Logfile created on Thu Aug 17 22:49:13 2017 # Updated on 2017/05/08 by Malwarebytes # Running on Windows 7 Home Premium (X64) # Mode: clean # Support: https://www.malwarebytes.com/support ***** [ Services ] ***** No malicious services deleted. ***** [ Folders ] ***** Deleted: C:\Users\Heath\AppData\Local\VirtualStore\Program Files (x86)\DeviceVM Deleted: C:\ProgramData\WinZip\WinZip Smart Monitor Deleted: C:\ProgramData\Application Data\WinZip\WinZip Smart Monitor Deleted: C:\Users\All Users\WinZip\WinZip Smart Monitor Deleted: C:\Program Files\WinZip Smart Monitor Deleted: C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 Deleted: C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 Deleted: C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} ***** [ Files ] ***** No malicious files deleted. ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** No malicious tasks deleted. ***** [ Registry ] ***** Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474} Deleted: [Key] - HKLM\SOFTWARE\MozillaPlugins\@pandonetworks.com\PandoWebPlugin ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries deleted. ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries deleted. ************************* ::Tracing keys deleted ::Winsock settings cleared ::Image File Execution Options%s keys deleted ::Prefetch files deleted ::Proxy settings cleared ::TCP/IP settings cleared ::Firewall rules cleared ::IPSec settings cleared ::BITS queue cleared ::IE policies deleted ::Chrome policies deleted ::Additional Actions: 0 ************************* C:/AdwCleaner/AdwCleaner[S0].txt - [1675 B] - [2017/8/17 22:47:0] ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

Hello all, Attached is a copy of the FR ST and Addition logs. Many thanks, Korp FRST.txt Addition.txt

Hello all, I recently downloaded Malwarebytes tonight and decided to run a 'threat scan' and two threats were found. I'm using Malwarebytes Version: 3.1.2.1733. The two items found were Registry Key/Registry Value PUP.Optional.ProductSetup. I quarantined these two threats. Should I be concerned? Is there anything I can do to remove this or look for other threats? I've attached the 'threat scan' log in a 'txt' file. Many thanks, Korp 8.14.17 scan.txt