# ------------------------------- # Malwarebytes AdwCleaner 8.0.1.0 # ------------------------------- # Build: 12-17-2019 # Database: 2020-01-24.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Clean # ------------------------------- # Start: 01-26-2020 # Duration: 00:00:12 # OS: Windows 10 Home # Cleaned: 49 # Failed: 0 ***** [ Services ] ***** No malicious services cleaned. ***** [ Folders ] ***** Deleted C:\Program Files (x86)\AVG Security Toolbar Deleted C:\Program Files (x86)\iLivid Deleted C:\ProgramData\AVG_UPDATE_0215TB Deleted C:\ProgramData\AVG_UPDATE_0814TB Deleted C:\ProgramData\AVG_UPDATE_1114TB Deleted C:\ProgramData\AVG_UPDATE_1214TB Deleted C:\ProgramData\Ask Deleted C:\ProgramData\Uniblue Deleted C:\Users\Tiffany\AppData\Local\Ilivid Player Deleted C:\Users\Tiffany\AppData\Roaming\AppMaster Deleted C:\Users\Tiffany\AppData\Roaming\download Manager ***** [ Files ] ***** No malicious files cleaned. ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** Deleted C:\Windows\System32\Tasks\0915TBUPDATEINFO Deleted C:\Windows\Tasks\0915TBUPDATEINFO.JOB ***** [ Registry ] ***** Deleted HKCU\Software\APN PIP Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\s.thebrighttag.com Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\snagit.en.softonic.com Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\softonic.com Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\thebrighttag.com Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\s.thebrighttag.com Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\snagit.en.softonic.com Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\softonic.com Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\thebrighttag.com Deleted HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_AJAX_CONNECTIONEVENTS|AppMaster.exe Deleted HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|AppMaster.exe Deleted HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_CLIPCHILDREN_OPTIMIZATION|AppMaster.exe Deleted HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_GPU_RENDERING|AppMaster.exe Deleted HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_NINPUT_LEGACYMODE|AppMaster.exe Deleted HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_DOCUMENT_ZOOM|AppMaster.exe Deleted HKCU\Software\ilivid Deleted HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL Deleted HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Deleted HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B78A5639-A97A-447E-A39F-CE11B8101E20} Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B78A5639-A97A-447E-A39F-CE11B8101E20} Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0915TBUPDATEINFO Deleted HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Deleted HKLM\Software\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE} Deleted HKLM\Software\Classes\driverscanner Deleted HKLM\Software\Classes\ilivid Deleted HKLM\Software\Wow6432Node\Uniblue Deleted HKLM\Software\Wow6432Node\\Classes\AppID\GenericAskToolbar.DLL Deleted HKLM\Software\Wow6432Node\\Classes\AppID\ScriptHelper.EXE Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237} Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE} Deleted HKLM\Software\Wow6432Node\ilivid Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\geekbuddyrsp ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries cleaned. ***** [ Chromium URLs ] ***** No malicious Chromium URLs cleaned. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries cleaned. ***** [ Firefox URLs ] ***** No malicious Firefox URLs cleaned. ***** [ Preinstalled Software ] ***** No Preinstalled Software cleaned. ************************* [+] Delete Tracing Keys [+] Reset Winsock ************************* AdwCleaner[S00].txt - [7900 octets] - [23/01/2020 20:32:34] AdwCleaner[S01].txt - [7961 octets] - [26/01/2020 10:23:56] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########