# AdwCleaner v6.020 - Logfile created 17/09/2016 at 17:36:06
# Updated on 14/09/2016 by ToolsLib
# Database : 2016-09-17.1 [Server]
# Operating System : Windows 7 Ultimate (X86)
# Username : Administrator - KHAN
# Running from : C:\Users\Administrator\Desktop\adwcleaner_6.020.exe
# Mode: Scan
# Support : https://toolslib.net/forum



***** [ Services ] *****

Service Found: CfHelper33
Service Found: CfHelper44
Service Found: CfHelper55
Service Found: CfHelper66
Service Found: SoSoIm3
Service Found: SoSoIm5
Service Found: SoSoIm6
Service Found: rtop
Service Found: CloudPrinter
Service Found: MaohaWifiNetPro
Service Found: MaohaWifiSvr
Service Found: Kuaizip Update Checker
Service Found: KuaiZipDrive2
Service Found: ComputerZLock
Service Found: SparkSvc
Service Found: SparkUpdater
Service Found: SoSoIm6
Service Found: SoSoIm5
Service Found: SoSoIm3
Service Found: CfHelper66
Service Found: CfHelper55
Service Found: CfHelper44
Service Found: CfHelper33


***** [ Folders ] *****

Folder Found: C:\Program Files\03000200-1474060101-0500-0006-000700080009
Folder Found: C:\Users\Administrator\AppData\Local\03000200-1474081918-0500-0006-000700080009
Folder Found: C:\Users\Administrator\AppData\Local\AskToolbar
Folder Found: C:\Users\Administrator\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk
Folder Found: C:\Users\Administrator\AppData\Roaming\UPUpdata
Folder Found: C:\Users\Administrator\AppData\Roaming\ContentPush
Folder Found: C:\Users\Administrator\AppData\Roaming\Kuaizip
Folder Found: C:\Users\Administrator\AppData\Roaming\KuaiZip
Folder Found: C:\Users\Administrator\AppData\Roaming\LuDaShi
Folder Found: C:\Users\Administrator\AppData\Roaming\lockhomepage
Folder Found: C:\Users\Administrator\AppData\Roaming\Softlink
Folder Found: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence
Folder Found: C:\ProgramData\ByteFence
Folder Found: C:\ProgramData\CloudPrinter
Folder Found: C:\ProgramData\Logic Handler
Folder Found: C:\ProgramData\Quoteexs
Folder Found: C:\ProgramData\Application Data\ByteFence
Folder Found: C:\ProgramData\Application Data\CloudPrinter
Folder Found: C:\ProgramData\Application Data\Logic Handler
Folder Found: C:\ProgramData\Application Data\Quoteexs
Folder Found: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
Folder Found: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer
Folder Found: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ttwifi
Folder Found: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLVPlayer
Folder Found: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaohaWiFi
Folder Found: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaohaWifi
Folder Found: C:\Users\Public\Documents\pc faster
Folder Found: C:\Program Files\Ask.com
Folder Found: C:\Program Files\ByteFence
Folder Found: C:\Program Files\ttwifi
Folder Found: C:\Program Files\WeatherChickn
Folder Found: C:\Program Files\ContentPush
Folder Found: C:\Program Files\Kuaizip
Folder Found: C:\Program Files\GreatMaker
Folder Found: C:\Program Files\KuaiZip
Folder Found: C:\Program Files\SoSoIm_6
Folder Found: C:\Program Files\SoSoIm_5
Folder Found: C:\Program Files\SoSoIm_4
Folder Found: C:\Program Files\SoSoIm_3
Folder Found: C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Folder Found: C:\Users\Administrator\AppData\Local\app


***** [ Files ] *****

File Found: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MaohaWiFi.lnk
File Found: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\KuaiZip.lnk
File Found: C:\Users\Administrator\Desktop\AutoTime.lnk
File Found: C:\Users\Public\Desktop\ttwifi.lnk
File Found: C:\Windows\system32\findit.xml
File Found: C:\Windows\system32\drivers\KuaiZipDrive2.sys
File Found: C:\Program Files\Google\Chrome\Application\wtsapi32.dll
File Found: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_feeilhmlfcpfchpbgoknoeefdkbgionj_0.localstorage


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

Key Found: : \root\subscription\\ActiveScriptEventConsumer [ASEC]


***** [ Shortcuts ] *****

No infected shortcut found.


***** [ Scheduled Tasks ] *****

Task Found: ByteFence
Task Found: ByteFence Scan
Task Found: ttwifi
Task Found: svchost
Task Found: SparkUpdater
Task Found: UnregisterNonABICompliantCodeRange


***** [ Registry ] *****

Key Found: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\Classes\BaiduSparkHTML
Key Found: HKCU\Software\Classes\BaiduSparkHTML
Key Found: HKLM\SOFTWARE\Classes\Baidu.FacePack
Key Found: HKLM\SOFTWARE\Classes\BaiduSparkHTML
Key Found: HKLM\SOFTWARE\Classes\KuaiZip_FileAsso.Origin
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.ContextMenuExt
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.ContextMenuExt.1
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.DragDropMenu
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.DragDropMenu.1
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.KYDropHandler
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.KYDropHandler.1
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.KzShlobj
Key Found: HKLM\SOFTWARE\Classes\QZipShell2.KzShlobj.1
Key Found: HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found: HKCU\Software\Classes\CLSID\{16C8C46E-C811-4977-BF0A-B5CC1FA78D95}
Key Found: HKLM\SOFTWARE\Classes\CLSID\{AAA0C5B8-933F-4200-93AD-B143D7FFF9F3}
Key Found: HKU\.DEFAULT\Software\ByteFence
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\Ask.com
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\AskToolbar
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\ByteFence
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\DriverUpdaterPro
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\Installer
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\osTip
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\ttwifi
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\UCBrowserPID
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\AutoTime
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\KuaiZip
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\SNDA
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\KuaiZipSFX
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\Maoha
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\Ludashi
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\COMMONMSG
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\AppDataLow\AskToolbarInfo
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\AppDataLow\Software\AskToolbar
Key Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\Microsoft\Windows\CurrentVersion\Uninstall\Spark
Key Found: HKU\S-1-5-18\Software\ByteFence
Key Found: HKCU\Software\Ask.com
Key Found: HKCU\Software\AskToolbar
Key Found: HKCU\Software\ByteFence
Key Found: HKCU\Software\DriverUpdaterPro
Key Found: HKCU\Software\Installer
Key Found: HKCU\Software\osTip
Key Found: HKCU\Software\ttwifi
Key Found: HKCU\Software\UCBrowserPID
Key Found: HKCU\Software\AutoTime
Key Found: HKCU\Software\KuaiZip
Key Found: HKCU\Software\SNDA
Key Found: HKCU\Software\KuaiZipSFX
Key Found: HKCU\Software\Maoha
Key Found: HKCU\Software\Ludashi
Key Found: HKCU\Software\COMMONMSG
Key Found: HKCU\Software\AppDataLow\AskToolbarInfo
Key Found: HKCU\Software\AppDataLow\Software\AskToolbar
Key Found: HKLM\SOFTWARE\ByteFence
Key Found: HKLM\SOFTWARE\FlvPlayer
Key Found: HKLM\SOFTWARE\UCBrowserPID
Key Found: HKLM\SOFTWARE\mtQuoteex
Key Found: HKLM\SOFTWARE\trotuxSoftware
Key Found: HKLM\SOFTWARE\Maoha
Key Found: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Spark
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PopupProduct
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ttwifi
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeatherChickn
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ContentPush
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Spark
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found: HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Found: HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Key Found: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Data Found: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon [Userinit] -
Value Found: HKU\S-1-5-21-1495394455-1330258974-948738303-500\Software\Microsoft\Windows\CurrentVersion\Run [Installer]
Value Found: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Installer]
Key Found: HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SEARCHSCOPES\IELNKSRCH
Key Found: HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
Value Found: HKCU\Environment [SNF]
Value Found: HKCU\Environment [SNP]
Key Found: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting
Key Found: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\IELNKSRCH
Value Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [KuaiZip Shell Extension]
Value Found: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [kuaizipupdatesvc]
Key Found: HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\


KuaiZipShlExt
Key Found: HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\


KuaiZipShlExt
Key Found: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Quoteex.exe
Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\KzShlobj2
Key Found: HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
Key Found: HKLM\SOFTWARE\Classes\Directory\shell\ByteFence Folder Scan


***** [ Web browsers ] *****

No malicious Firefox based browser items found.
No malicious Chromium based browser items found.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [12323 Bytes] - [17/09/2016 17:36:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12397 Bytes] ##########