# AdwCleaner 7.0.6.0 - Logfile created on Wed Dec 27 14:27:25 2017
# Updated on 2017/21/12 by Malwarebytes 
# Running on Windows 10 Pro (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\INTEX\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\INTEX\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\INTEX\AppData\Roaming\ASP
Deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
Deleted: C:\Program Files (x86)\DriverToolkit
Deleted: C:\Users\INTEX\AppData\Local\DriverToolkit
Deleted: C:\Program Files (x86)\Tongbu
Deleted: C:\Users\INTEX\AppData\Local\Temp\Tongbu
Deleted: C:\Users\INTEX\Documents\Tongbu
Deleted: C:\Users\INTEX\Documents\vShare
Deleted: C:\Users\INTEX\AppData\Roaming\acestream
Deleted: C:\Users\INTEX\AppData\LocalLow\.acestream
Deleted: C:\Users\INTEX\AppData\Roaming\.acestream
Deleted: C:\_acestream_cache_
Deleted: C:\Users\Public\Documents\Downloaded Installers
Deleted: C:\Users\INTEX\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
Deleted: C:\ProgramData\Application Data\Tencent
Deleted: C:\Program Files\Common Files\Tencent
Deleted: C:\Users\INTEX\AppData\Local\VirtualStore\ProgramData\Application Data\Tencent
Deleted: C:\Users\INTEX\AppData\Local\VirtualStore\Program Files (x86)\Tencent
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
Deleted: C:\Users\INTEX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\è¾è®¯è½¯ä»¶
Deleted: C:\Program Files (x86)\Solvusoft
Deleted: C:\Users\INTEX\AppData\Roaming\DRPSu


***** [ Files ] *****

Deleted: C:\Windows\SysNative\drivers\TFsFltX64.sys
Deleted: C:\Users\INTEX\Favorites\Mail.Ru.url
Deleted: C:\Users\INTEX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ROX Player.lnk
Deleted: C:\Users\INTEX\Favorites\Mail.Ru ÐÐ³ÐµÐ½Ñ - Ð¸ÑÐ¿Ð¾Ð»ÑÐ·ÑÐ¹ Ð´Ð»Ñ Ð¾Ð±ÑÐµÐ½Ð¸Ñ!.url
Deleted: C:\spyhunter.fix
Deleted: C:\Windows\System32\sh4native.exe
Deleted: C:\Windows\SysWOW64\sh4native.exe
Deleted: C:\spyhunter.fix
Deleted: C:\Windows\System32\sh4native.exe
Deleted: C:\Windows\SysWOW64\sh4native.exe
Deleted: C:\Users\INTEX\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk
Deleted: C:\Windows\SysNative\drivers\TFsFltX64_ev.sys


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

Cleaned: C:\Users\INTEX\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk[url,FileProtocolHandler "http:\\www.mail.ru\cnt\20775012?gp=811008"]
Cleaned: C:\Users\INTEX\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk[url,FileProtocolHandler "http:\\www.mail.ru\cnt\20775012?gp=811008"]


***** [ Tasks ] *****

Deleted: UCBrowserUpdaterCore
Deleted: Driver Booster Scheduler


***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{47FCE1E3-BD42-4A63-BE6A-31CD748A9ADF}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6468F2AD-7C60-4B44-A87A-3FAD0DCCF2C8}
Deleted: [Key] - HKU\S-1-5-21-2749789909-2805580674-4075035479-1000\Software\Smart PC Solutions
Deleted: [Key] - HKCU\Software\Smart PC Solutions
Deleted: [Key] - HKU\S-1-5-21-2749789909-2805580674-4075035479-1000\Software\DriverToolkit
Deleted: [Key] - HKCU\Software\DriverToolkit
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1
Deleted: [Key] - HKLM\SOFTWARE\Hola
Deleted: [Key] - HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
Deleted: [Key] - HKU\.DEFAULT\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
Deleted: [Key] - HKU\S-1-5-21-2749789909-2805580674-4075035479-1000\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
Deleted: [Key] - HKU\S-1-5-18\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
Deleted: [Key] - HKCU\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{C379EAD1-CB34-4B09-AF6B-7E587F8BCD80}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
Deleted: [Key] - HKCU\Software\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{8E8F97CD-60B5-456F-A201-73065652D099}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E8F97CD-60B5-456F-A201-73065652D099}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E8F97CD-60B5-456F-A201-73065652D099}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{63332668-8CE1-445D-A5EE-25929176714E}
Deleted: [Key] - HKLM\SOFTWARE\Classes\SOFTWARE\Classes\CLSID\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{29B6CFD5-0064-411A-8C42-9890C83F9921}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{29B6CFD5-0064-411A-8C42-9890C83F9921}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{7A30415C-ABEE-4674-B64B-4CA145EEB0CA}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AE298D-7E8A-4F53-BE55-15D2B065F6C0}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Deleted: [Key] - HKCU\SOFTWARE\Classes\MIME\Database\Content Type\application\x-acestream-plugin
Deleted: [Key] - HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
Deleted: [Key] - HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\QMContextScan.DLL
Deleted: [Key] - HKCU\Software\Classes\MIME\Database\Content Type\application\x-acestream-plugin
Deleted: [Key] - HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
Deleted: [Key] - HKCU\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hola.org
Deleted: [Key] - HKU\S-1-5-21-2749789909-2805580674-4075035479-1000\Software\Mail.Ru
Deleted: [Key] - HKU\S-1-5-21-2749789909-2805580674-4075035479-1000\Software\AppDataLow\Software\Mail.Ru
Deleted: [Key] - HKCU\Software\Mail.Ru
Deleted: [Key] - HKCU\Software\AppDataLow\Software\Mail.Ru
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{C69276F0-9BC1-404F-8566-FCB14D0ED4B8}
Deleted: [Key] - HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{DCFCC2EC-3F33-45A8-8ADF-A6C81F11232F}
Deleted: [Key] - HKLM\SOFTWARE\drpsu
Deleted: [Key] - HKU\S-1-5-21-2749789909-2805580674-4075035479-1000\Software\drpsu
Deleted: [Key] - HKCU\Software\drpsu
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{5A83D7C9-4A14-4000-BC05-389268238753}
Deleted: [Value] - HKCU\Software\RegisteredApplications|AceStream


***** [ Firefox (and derivatives) ] *****

Plugin deleted: SaveFrom.net - helper - SaveFrom.net
Plugin deleted: SaveFrom.net - helper - SaveFrom.net


***** [ Chromium (and derivatives) ] *****

Plugin deleted: ÐÐ¸Ð·ÑÐ°Ð»ÑÐ½ÑÐµ ÐÐ°ÐºÐ»Ð°Ð´ÐºÐ¸ Mail.Ru - 
Plugin deleted: ÐÐ¾Ð¼Ð°ÑÐ½ÑÑ ÑÑÑÐ°Ð½Ð¸ÑÐ° Mail.Ru - 
Plugin deleted: ÐÐ¾Ð¼Ð°ÑÐ½ÑÑ ÑÑÑÐ°Ð½Ð¸ÑÐ° Mail.Ru - 
Plugin deleted: ÐÐ¸Ð·ÑÐ°Ð»ÑÐ½ÑÐµ ÐÐ°ÐºÐ»Ð°Ð´ÐºÐ¸ Mail.Ru - 


*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [10730 B] - [2017/12/27 14:20:57]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########