Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mqddwtgf (Trojan.FakeAlert.Gen) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\clickpotatolite@clickpotatolite.com (Adware.ClickPotato) → Quarantined and deleted successfully.
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 (Adware.Seekmo) → Quarantined and deleted successfully.
C:\ProgramData\ClickPotatoLiteSA (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Users\Alex\AppData\Roaming\ClickPotatoLite (Adware.ClickPotato) → Delete on reboot.
C:\ProgramData\ResultBar (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0 (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\firefox (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\firefox\extensions (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\firefox\extensions\plugins (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0} (Adware.ResultBar) → Delete on reboot.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0}\chrome (Adware.ResultBar) → Delete on reboot.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0}\defaults (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0}\defaults\preferences (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Program Files (x86)\ResultBar (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Program Files (x86)\ShoppingReport2 (Adware.ShoppingReport2) → Quarantined and deleted successfully.
C:\Program Files (x86)\ShoppingReport2\Bin (Adware.ShoppingReport2) → Quarantined and deleted successfully.
C:\Program Files (x86)\ShoppingReport2\Bin\2.7.21 (Adware.ShoppingReport2) → Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato (Adware.ClickPotato) → Quarantined and deleted successfully.
Files Infected:
C:\Users\Alex\AppData\Local\Temp\uupfuubkj\wemjqdctsbl.exe (Trojan.FakeAlert.Gen) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\ClickPotatoLiteSAAX.dll (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\ClickPotatoLiteSABHO.dll (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ShoppingReport2\Bin\2.7.21\ShoppingReport.dll (Adware.ShoppingReport2) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\ClickPotatoLiteUninstaller.exe (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\LaunchHelp.dll (Adware.Seekmo) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\firefox\extensions\plugins\npclntax_ClickPotatoLiteSA.dll (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\plugins\npclntax_ClickPotatoLiteSA.dll (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ResultBar\resultbar.exe (Adware.ResultBar) → Quarantined and deleted successfully.
C:\ProgramData\ResultBar\resultbar113.exe (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Users\Alex\AppData\Local\Temp\00075070.exe (Trojan.FakeAlert.Gen) → Quarantined and deleted successfully.
C:\Windows\Temp\RES3207.tmp\upgrade.exe (Adware.Dropper.Gen) → Quarantined and deleted successfully.
C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSA.dat (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSAAbout.mht (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSAau.dat (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSAEULA.mht (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\ProgramData\ClickPotatoLiteSA\ClickPotatoLiteSA_kyf.dat (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\firefox\extensions\chrome.manifest (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\ClickPotatoLite\bin\10.0.621.0\firefox\extensions\install.rdf (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0}\chrome.manifest (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0}\install.rdf (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0}\chrome\resultbar.jar (Adware.ResultBar) → Delete on reboot.
C:\Program Files (x86)\Mozilla Firefox\extensions{34EFA911-B536-4C08-BECE-CD5E55C875B0}\defaults\preferences\prefs.js (Adware.ResultBar) → Quarantined and deleted successfully.
C:\Program Files (x86)\ShoppingReport2\Uninst.exe (Adware.ShoppingReport2) → Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato\About Us.lnk (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato\ClickPotato Customer Support.lnk (Adware.ClickPotato) → Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato\ClickPotato Uninstall Instructions.lnk (Adware.ClickPotato) → Quarantined and deleted successfully.