Malwarebytes Reports Traces Of Hicosmea

Hello, PaulF1

Please re-run HitmanPro, activate the 30-day Trial License, then fix these detections:
Potential Unwanted Programs

Ignore all other detections.
Afterwards, click the Next button.
HitmanPro may want to reboot the PC in order for the changes to take affect, please do so.
After reboot and when you are back in Windows, run another scan with HitmanPro and then attach the latest HitmanPro log.

Now please download Junkware Removal Tool to your desktop.

• Make sure to shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
• The tool will open and start scanning your system.
• Note: That JRT may reset your home page to a google default so you will need to restore your home page setting if this happens.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Attach JRT.txt to your next message.

Next download AdwCleaner by Xplode and save to your Desktop.

• Close all open windows and browsers.
• Double click on AdwCleaner.exe to run the tool.
  Vista/Windows 7/8 users right-click and select Run As Administrator
• Click on the Scan button.
• AdwCleaner will begin...be patient as the scan may take some time to complete.
• When it's done you'll see: Pending: Please uncheck elements you don't want removed.
• Now click on the Logfile button...a logfile (AdwCleaner[S#].txt) will open in Notepad for review (where the largest value of # represents the most recent report).
• Attach that logfile to your next reply.
• A copy of all logfiles are saved in the C:\AdwCleaner folder which are created when running the tool.

This is mostly caused by an adware add-on browser extension. Let's reset your browsers to their default settings.
Reset Internet Explorer 9, 10, and 11 to Defaults
Reset Chrome to Defaults
Reset Firefox to Defaults
Reset Opera

Also if you use a shortcut link or quicklaunch icon to start your browser -

Right-click on the shortcut and look at the Properties to see if anything unwanted has been forced to load during the execution of the browser.​

Then upload the below logs:

• the JRT.TXT log
• AdwCleaner[S#].txt
• updated Hitman Pro log.txt

Make sure you tell me how things are working now!

 

You're welcome.

Now to remove what AdwCleaner detected..

Using AdwCleaner.exe previously downloaded:

• Double click on AdwCleaner.exe to run the tool. (Vista, Win7/8 users should right-click and "Run As Administrator")
• Click on the Scan button.
• After the scan has finished..
• Click on the Clean button.
• Press OK when asked to close all programs and follow the onscreen prompts.
• Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
• After rebooting, a logfile report (AdwCleaner[C#].txt) will open automatically (where the largest value of # represents the most recent report).
• A copy of that logfile will also be saved in the C:\AdwCleaner folder.
• Upload this log to your next reply.

 

Ok - let me know if Malwarebytes' detects anything after a couple of days.

 

Those registry keys are not malware. They are normal and on every PC. @Dr. Moriarty, Check your own Win 7 PC.

 

Here is an example: https://github.com/wine-mirror/wine/blob/master/dlls/mshtml/mshtml_classes.idl