Scribd
Upload
26 views5 pages

AdwCleaner (C0)

The log file details the removal of malware and adware from the system including deletion of services, folders, files, registry keys and browser extensions. Over 50 items were removed covering areas like installed programs, startup programs, browser settings and more.

Uploaded by

Lazaroiu Stelian
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
26 views5 pages

AdwCleaner (C0)

The log file details the removal of malware and adware from the system including deletion of services, folders, files, registry keys and browser extensions. Over 50 items were removed covering areas like installed programs, startup programs, browser settings and more.

Uploaded by

Lazaroiu Stelian
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 5

# AdwCleaner v6.

021 - Logfile created 14/10/2016 at 09:51:53


# Updated on 06/10/2016 by ToolsLib
# Database : 2016-10-13.2 [Server]
# Operating System : Windows 7 Ultimate Service Pack 1 (X86)
# Username : CRRPH Comanesti - STELI
# Running from : C:\Users\CRRPH Comanesti\Downloads\adwcleaner_6.021.exe
# Mode: Clean
# Support : https://toolslib.net/forum

***** [ Services ] *****

[-] Service deleted: BaiduHips


[-] Service deleted: bd0001
[-] Service deleted: bd0002
[-] Service deleted: BDMRTP
[-] Service deleted: BDMWrench
[-] Service deleted: QMUdisk
[-] Service deleted: TSSK
[-] Service deleted: softaal
[-] Service deleted: SRepairDrv
[-] Service deleted: tsnethlp

***** [ Folders ] *****

[-] Folder deleted: C:\Program Files\MTV20160128


[-] Folder deleted: C:\Users\CRRPH Comanesti\AppData\Local\VirtualStore\Program
Files\tencent
[#] Folder deleted on reboot: C:\Users\CRRPH
Comanesti\AppData\Local\VirtualStore\Program Files\Tencent
[-] Folder deleted: C:\Users\CRRPH Comanesti\AppData\Roaming\DriverCure
[-] Folder deleted: C:\Users\CRRPH Comanesti\AppData\Roaming\ParetoLogic
[-] Folder deleted: C:\Users\CRRPH Comanesti\AppData\Roaming\tencent
[#] Folder deleted on reboot: C:\Users\CRRPH Comanesti\AppData\Roaming\Tencent
[-] Folder deleted: C:\ProgramData\tencent
[-] Folder deleted: C:\ProgramData\TXQMPC
[#] Folder deleted on reboot: C:\ProgramData\Tencent
[#] Folder deleted on reboot: C:\ProgramData\Application Data\tencent
[#] Folder deleted on reboot: C:\ProgramData\Application Data\TXQMPC
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Tencent
[-] Folder deleted: C:\Program Files\tencent
[#] Folder deleted on reboot: C:\Program Files\Tencent
[-] Folder deleted: C:\Program Files\Common Files\tencent
[#] Folder deleted on reboot: C:\Program Files\Common Files\Tencent
[-] Folder deleted: C:\Windows\GJFix
[-] Folder deleted:
C:\Windows\system32\config\systemprofile\AppData\LocalLow\Yahoo! Companion
[-] Folder deleted:
C:\Windows\system32\config\systemprofile\AppData\LocalLow\Yahoo!\Companion

***** [ Files ] *****

[-] File deleted: C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


[#] File deleted: C:\ProgramData\Application Data\{262E20B8-6E20-4CEF-B1FD-
D022AB1085F5}.dat
[-] File deleted: C:\Windows\system32\tssk.sys
***** [ DLL ] *****

***** [ WMI ] *****

***** [ Shortcuts ] *****

***** [ Scheduled Tasks ] *****

***** [ Registry ] *****

[!] Key not deleted:


HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdsManPro
[!] Key not deleted: HKLM\SOFTWARE\Classes\BDDownloadProxy.Downloader
[!] Key not deleted: HKLM\SOFTWARE\Classes\BDDownloadProxy.Downloader.1
[!] Key not deleted: HKLM\SOFTWARE\Classes\Bolwt.WtBol
[!] Key not deleted: HKLM\SOFTWARE\Classes\Bolwt.WtBol.1
[!] Key not deleted: HKLM\SOFTWARE\Classes\metnsd
[!] Key not deleted: HKLM\SOFTWARE\Classes\PCSuiteContactsView
[!] Key not deleted: HKLM\SOFTWARE\Classes\PCSuiteMessagesView
[!] Key not deleted: HKLM\SOFTWARE\Classes\qmgcfiles
[!] Key not deleted: HKLM\SOFTWARE\Classes\Sample.BrowserHandler
[!] Key not deleted: HKLM\SOFTWARE\Classes\Sample.BrowserHandler.1
[!] Key not deleted: HKLM\SOFTWARE\Classes\Sample.YTBPartnerSample
[!] Key not deleted: HKLM\SOFTWARE\Classes\Sample.YTBPartnerSample.1
[!] Key not deleted: HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar
[!] Key not deleted: HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar.1
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\Classes\TypeLib\{157B1AA6-3E5C-404A-9118-C1D91F537040}
[!] Key not deleted: HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-
298B8E759EB1}
[!] Key not deleted: HKLM\SOFTWARE\Classes\AppID\{7375D127-3955-4654-8E7D-
1949A7A9C902}
[!] Key not deleted: HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-
86DB50A2FD64}
[!] Key not deleted: HKLM\SOFTWARE\Classes\CLSID\{15DEE173-1BE9-4424-81E0-
58A87076E9B1}
[!] Key not deleted: HKLM\SOFTWARE\Classes\CLSID\{91B5E4DE-4C97-41CD-9F94-
84BFAABB7371}
[!] Key not deleted: HKLM\SOFTWARE\Classes\CLSID\{920D873D-05AB-4574-AD3A-
872DD173658A}
[!] Key not deleted: HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-
ECA9878B8D48}
[!] Key not deleted: HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-
00104B265ED5}
[!] Key not deleted: HKLM\SOFTWARE\Classes\Interface\{6B3732AA-F6D4-4F16-9E22-
49EDC52C9514}
[!] Key not deleted: HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-
E501D0A9E48E}
[!] Key not deleted: HKLM\SOFTWARE\Classes\Interface\{371AD4A5-1520-4AA2-A8A4-
F9AD3BAC6957}
[!] Key not deleted: HKLM\SOFTWARE\Classes\Interface\{7F124846-5453-4BB8-A41D-
E11481FFC9DF}
[!] Key not deleted: HKLM\SOFTWARE\Classes\Interface\{8FD65019-BF09-45DA-AD81-
E95AE911F1FD}
[!] Key not deleted: HKCU\Software\Classes\TypeLib\{157B1AA6-3E5C-404A-9118-
C1D91F537040}
[!] Key not deleted: HKLM\SOFTWARE\Classes\TypeLib\{F6C2BABA-9E4C-425F-9AEC-
24AB8F2B640D}
[!] Key not deleted:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{15DEE173-1BE9-4424-81E0-58A87076E9B1}
[!] Key not deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\
{15DEE173-1BE9-4424-81E0-58A87076E9B1}
[!] Key not deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\
{29B6CFD5-0064-411A-8C42-9890C83F9921}
[!] Key not deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\
{15DEE173-1BE9-4424-81E0-58A87076E9B1}
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\Conduit
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\InstalledBrowserExtensions
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\Myfree Codec
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-1000\Software\OB
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\WEBAPP
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\Yahoo\Companion
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\Yahoo\YFriendsBar
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\SavePass 1.1-nv-ie
[!] Key not deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\AppDataLow\Software\Yahoo\Companion
[!] Key not deleted: HKCU\Software\Microsoft\Internet
Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-466879663-47384589-4096548802-
1000\Software\Yahoo\YFriendsBar
[!] Key not deleted: HKCU\Software\InstalledBrowserExtensions
[!] Key not deleted: HKCU\Software\Myfree Codec
[!] Key not deleted: HKCU\Software\OB
[!] Key not deleted: HKCU\Software\WEBAPP
[!] Key not deleted: HKCU\Software\Yahoo\YFriendsBar
[!] Key not deleted: HKCU\Software\AppDataLow\Software\Yahoo\Companion
[!] Key not deleted:
HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[!] Key not deleted: HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[!] Key not deleted: HKLM\SOFTWARE\GlobalUpdate
[!] Key not deleted: HKLM\SOFTWARE\InstalledBrowserExtensions
[!] Key not deleted: HKLM\SOFTWARE\Myfree Codec
[!] Data not deleted: HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[!] Value not deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
[baiduAnTray]
[!] Value not deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [MTView]
[!] Value not deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [un]
[!] Key not deleted: HKEY_CLASSES_ROOT\.qmgc
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.bmp
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.dib
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.emf
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.exif
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.gif
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.ico
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.jfif
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.jpe
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.jpeg
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.jpg
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.png
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.tif
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.tiff
[-] Key deleted: HKLM\SOFTWARE\Classes\MTview.wmf
[-] Key deleted: HKU\.DEFAULT\Software\Yahoo\Companion
[-] Key deleted: HKU\.DEFAULT\Software\SavePass 1.1-nv-ie
[-] Key deleted: HKU\S-1-5-21-466879663-47384589-4096548802-
1000\Software\ParetoLogic
[#] Key deleted on reboot: HKU\S-1-5-18\Software\Yahoo\Companion
[#] Key deleted on reboot: HKU\S-1-5-18\Software\SavePass 1.1-nv-ie
[-] Key deleted: HKCU\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\ParetoLogic
[-] Key deleted: HKCU\Software\Yahoo\Companion
[-] Key deleted: HKCU\Software\SavePass 1.1-nv-ie
[-] Key deleted: HKLM\SOFTWARE\istartsurfSoftware
[-] Key deleted: HKLM\SOFTWARE\ParetoLogic
[-] Key deleted: HKLM\SOFTWARE\Yahoo\Companion
[-] Key deleted: HKLM\SOFTWARE\SavePass 1.1-nv-ie
[-] Key deleted: HKCU\Software\Microsoft\Internet
Explorer\DOMStorage\bestpriceninja.com
[-] Key deleted: HKCU\Software\Microsoft\Internet
Explorer\DOMStorage\foxi69.tlscdn.com
[-] Key deleted: HKCU\Software\Microsoft\Internet
Explorer\DOMStorage\pstatic.bestpriceninja.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\qq.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\tlscdn.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\v.qq.com
[-] Key deleted: HKCU\Software\Microsoft\Internet
Explorer\LowRegistry\DOMStorage\hao123.com
[-] Key deleted: HKCU\Software\Microsoft\Internet
Explorer\LowRegistry\DOMStorage\www.hao123.com
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP
[-] Key deleted: HKCU\Software\Classes\VirtualStore\MACHINE\SOFTWARE\Tencent

***** [ Web browsers ] *****

*************************

:: "Tracing" keys deleted


:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [10156 Bytes] - [14/10/2016 09:51:53]


C:\AdwCleaner\AdwCleaner[R0].txt - [3956 Bytes] - [10/06/2015 15:35:09]
C:\AdwCleaner\AdwCleaner[S0].txt - [3939 Bytes] - [10/06/2015 15:36:37]
C:\AdwCleaner\AdwCleaner[S1].txt - [9599 Bytes] - [14/10/2016 09:36:41]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [10449 Bytes] ##########

You might also like