# ------------------------------- # Malwarebytes AdwCleaner 8.0.5.0 # ------------------------------- # Build: 05-25-2020 # Database: 2020-05-19.1 (Local) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Clean # ------------------------------- # Start: 06-12-2020 # Duration: 00:00:28 # OS: Windows 7 Home Premium # Cleaned: 118 # Failed: 2 ***** [ Services ] ***** No malicious services cleaned. ***** [ Folders ] ***** Deleted C:\Program Files (x86)\DAEMON Tools Toolbar Deleted C:\Program Files (x86)\DELTA\DELTA Deleted C:\Program Files (x86)\SweetIM Deleted C:\Program Files (x86)\VideoConverter Deleted C:\ProgramData\Ask Deleted C:\ProgramData\SweetIM Deleted C:\Users\Pati\AppData\Local\ShdUpdate Deleted C:\Users\Pati\AppData\Local\Temp\AskSearch Deleted C:\Users\Pati\AppData\Local\Temp\mt_ffx Deleted C:\Users\Pati\AppData\Local\btclient Deleted C:\Users\Pati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard Deleted C:\Users\Pati\AppData\Roaming\StPrsSW Deleted C:\Windows\SysWOW64\BitGuard ***** [ Files ] ***** Deleted C:\END Deleted C:\Users\Pati\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences Deleted C:\Users\Pati\AppData\Roaming\Mozilla\Firefox\Profiles\c0py85rr.default\bprotector_extensions.sqlite Deleted C:\Users\Pati\AppData\Roaming\Mozilla\Firefox\Profiles\c0py85rr.default\bprotector_prefs.js Deleted C:\Users\Pati\AppData\Roaming\Mozilla\Firefox\Profiles\c0py85rr.default\searchplugins\bingp.xml ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** No malicious tasks cleaned. ***** [ Registry ] ***** Deleted HKCU\SOFTWARE\53edcd1e134ba42 Deleted HKCU\Software\APN Deleted HKCU\Software\AppDataLow\AskToolbarInfo Deleted HKCU\Software\AppDataLow\Software\Conduit Deleted HKCU\Software\AppDataLow\Software\Smartbar Deleted HKCU\Software\AppDataLow\Toolbar Deleted HKCU\Software\BABSOLUTION Deleted HKCU\Software\BI Deleted HKCU\Software\BackgroundContainer Deleted HKCU\Software\BrowserMngr Deleted HKCU\Software\Conduit Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\babylon.com Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\eshopcomp.com Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\foxi69.tlscdn.com Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\isearch.babylon.com Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\pstatic.eshopcomp.com Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\tlscdn.com Deleted HKCU\Software\Microsoft\Internet Explorer\Main|BrowserMngr Start Page Deleted HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B} Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17} Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B} Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17} Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC} Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\PDF Reader Packages Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0} Deleted HKCU\Software\YahooPartnerToolbar Deleted HKCU\Software\delta Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE55AF3F-406D-455D-8C4B-6F759476121B} Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE55AF3F-406D-455D-8C4B-6F759476121B} Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RtbSync Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ShdUpdate Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\cpu grid computing Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{0489B082-1B06-4E87-ADDE-ED8F95279A34} Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{FE6607E7-0124-47A9-BC47-EA8B0C43363E} Deleted HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Deleted HKLM\Software\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17} Deleted HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3 Deleted HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B Deleted HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3 Deleted HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B Deleted HKLM\Software\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0 Deleted HKLM\Software\Classes\Prod.cap Deleted HKLM\Software\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19} Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\services\BitGuard Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3 Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B Deleted HKLM\Software\Wow6432Node\53edcd1e134ba42 Deleted HKLM\Software\Wow6432Node\BrowserMngr Deleted HKLM\Software\Wow6432Node\Conduit Deleted HKLM\Software\Wow6432Node\Trymedia Systems Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17} Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B} Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19} Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847} Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\delta Deleted HKLM\Software\Wow6432Node\delta Deleted HKLM\Software\Wow6432Node\dt soft\daemon tools toolbar Deleted HKU\.DEFAULT\SOFTWARE\53edcd1e134ba42 Deleted HKU\S-1-5-18\SOFTWARE\53edcd1e134ba42 Deleted HKU\S-1-5-21-425697130-2423384976-1920107721-1001\Software\AppDataLow\AskToolbarInfo Not Deleted HKLM\Software\Microsoft\Internet Explorer\Toolbar|{32099AAC-C132-4136-9E9A-4E364A424E17} Not Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Toolbar|{32099AAC-C132-4136-9E9A-4E364A424E17} ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries cleaned. ***** [ Chromium URLs ] ***** No malicious Chromium URLs cleaned. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries cleaned. ***** [ Firefox URLs ] ***** No malicious Firefox URLs cleaned. ***** [ Hosts File Entries ] ***** No malicious hosts file entries cleaned. ***** [ Preinstalled Software ] ***** No Preinstalled Software cleaned. ************************* [+] Delete Tracing Keys [+] Reset Winsock ************************* AdwCleaner[S00].txt - [19170 octets] - [12/06/2020 16:45:32] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########