# AdwCleaner v6.046 - Logfile created 13/05/2017 at 14:19:21
# Updated on 24/04/2017 by Malwarebytes
# Database : 2017-05-13.1 [Server]
# Operating System : Windows 10 Pro (X64)
# Username : CAPCAFE M - DESKTOP-N48988L
# Running from : C:\Users\CAPCAFE M\Downloads\Programs\adwcleaner_6.046.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

[-] Service deleted: KuaiZipDrive


***** [ Folders ] *****

[-] Folder deleted: C:\Users\CAPCAFE M\AppData\LocalLow\IObit\Advanced SystemCare
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Roaming\vnlgp
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Roaming\Kuaizip
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Roaming\Softlink
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Roaming\Microleaves
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Roaming\BrowserModule
[#] Folder deleted on reboot: C:\Users\CAPCAFE M\AppData\Roaming\BROWSERMODULE
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Roaming\UCChannel
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Roaming\IObit\Advanced SystemCare
[-] Folder deleted: C:\ProgramData\Microleaves
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Microleaves
[-] Folder deleted: C:\Program Files (x86)\Microleaves
[-] Folder deleted: C:\Users\CAPCAFE M\AppData\Local\svchost
[#] Folder deleted on reboot: C:\Users\CAPCAFE M\AppData\Roaming\BrowserModule


***** [ Files ] *****

[#] File deleted: C:\WINDOWS\SysNative\drivers\KuaiZipDrive.sys
[#] File deleted: C:\ProgramData\igfxDH.dll
[#] File deleted: C:\ProgramData\igfxDH.dll


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****

[-] Task deleted: Traffic Exchange Guardian
[-] Task deleted: Traffic Exchange Updater
[-] Task deleted: Traffic Exchange
[-] Task deleted: Traffic Exchange Guard
[-] Task deleted: UCBrowserSecureUpdater
[-] Task deleted: traffic exchange


***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService
[#] Key deleted on reboot: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\googlechromeupservice
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\googlechromeupservice
[-] Key deleted: HKLM\SOFTWARE\Classes\KuaiZip.kz
[-] Key deleted: HKLM\SOFTWARE\Classes\KuaiZip.zip
[-] Key deleted: HKLM\SOFTWARE\Classes\KuaiZipMount_FileAsso.Origin
[-] Key deleted: HKLM\SOFTWARE\Classes\KuaiZip_FileAsso.Origin
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt.1
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu.1
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler.1
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.KzShlobj
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.KzShlobj.1
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.PropertyExt
[-] Key deleted: HKLM\SOFTWARE\Classes\QZipShell.PropertyExt.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZip.kz
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZip.zip
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount_FileAsso.Origin
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\KuaiZip_FileAsso.Origin
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.KzShlobj
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.KzShlobj.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.PropertyExt
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\QZipShell.PropertyExt.1
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{9CC34070-3A38-4C7A-89CB-EF8177EF07A1}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{86C4C3BA-4EA4-4CF8-98B9-6B07B477B835}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E3605470-291B-44EB-8648-745EE356599A}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E3605470-291B-44EB-8648-745EE356599A}
[-] Key deleted: HKU\.DEFAULT\Software\KuaiZip
[-] Key deleted: HKU\.DEFAULT\Software\UpgSvr
[-] Key deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\Installer
[-] Key deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\AutoTime
[-] Key deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\KuaiZip
[-] Key deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\SNDA
[-] Key deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\KuaiZipSFX
[-] Key deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\PopWnd
[-] Key deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\UpgSvr
[#] Key deleted on reboot: HKU\S-1-5-18\Software\KuaiZip
[#] Key deleted on reboot: HKU\S-1-5-18\Software\UpgSvr
[#] Key deleted on reboot: HKCU\Software\Installer
[#] Key deleted on reboot: HKCU\Software\AutoTime
[#] Key deleted on reboot: HKCU\Software\KuaiZip
[#] Key deleted on reboot: HKCU\Software\SNDA
[#] Key deleted on reboot: HKCU\Software\KuaiZipSFX
[#] Key deleted on reboot: HKCU\Software\PopWnd
[#] Key deleted on reboot: HKCU\Software\UpgSvr
[-] Key deleted: HKLM\SOFTWARE\Microleaves
[#] Key deleted on reboot: [x64] HKCU\Software\Installer
[#] Key deleted on reboot: [x64] HKCU\Software\AutoTime
[#] Key deleted on reboot: [x64] HKCU\Software\KuaiZip
[#] Key deleted on reboot: [x64] HKCU\Software\SNDA
[#] Key deleted on reboot: [x64] HKCU\Software\KuaiZipSFX
[#] Key deleted on reboot: [x64] HKCU\Software\PopWnd
[#] Key deleted on reboot: [x64] HKCU\Software\UpgSvr
[-] Key deleted: [x64] HKLM\SOFTWARE\Microleaves
[-] Value deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [apphide]
[-] Value deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [vnlgp]
[-] Value deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [msiql]
[-] Value deleted: HKU\S-1-5-21-1056267411-2311456188-724950215-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [svchost0]
[-] Key deleted: HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\


KuaiZipShlExt
[-] Key deleted: HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\


KuaiZipShlExt
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\QZipShell.DLL
[-] Key deleted: HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\


KuaiZipShlExt
[-] Key deleted: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.ascplugin.protect
[-] Value deleted: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER [ENABLESHELLEXECUTEHOOKS]


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [7780 Bytes] - [13/05/2017 14:19:21]
C:\AdwCleaner\AdwCleaner[S0].txt - [7267 Bytes] - [13/05/2017 14:18:17]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7926 Bytes] ##########