# AdwCleaner v5.119 - Logfile created 13/06/2016 at 16:59:16
# Updated 30/05/2016 by Xplode
# Database : 2016-06-12.1 [Server]
# Operating system : Windows 8.1 Pro  (X64)
# Username : pc user - AIDRIAN
# Running from : C:\Users\pc user\Downloads\adwcleaner_5.119.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : QMUdisk
[-] Service Deleted : TS888x64
[-] Service Deleted : Program Manager

***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\apn
[-] Folder Deleted : C:\ProgramData\tencent
[-] Folder Deleted : C:\ProgramData\Tmp0x0x
[-] Folder Deleted : C:\ProgramData\TXQMPC
[-] Folder Deleted : C:\ProgramData\ytd video downloader
[-] Folder Deleted : C:\ProgramData\13438947756880973375
[-] Folder Deleted : C:\ProgramData\{0b4c8161-0ef9-03b1-0b4c-c81610ef0584}
[#] Folder Deleted : C:\ProgramData\Application Data\apn
[#] Folder Deleted : C:\ProgramData\Application Data\tencent
[#] Folder Deleted : C:\ProgramData\Application Data\Tmp0x0x
[#] Folder Deleted : C:\ProgramData\Application Data\TXQMPC
[#] Folder Deleted : C:\ProgramData\Application Data\ytd video downloader
[#] Folder Deleted : C:\ProgramData\Application Data\13438947756880973375
[#] Folder Deleted : C:\ProgramData\Application Data\{0b4c8161-0ef9-03b1-0b4c-c81610ef0584}
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ÃÀͼä¯ÀÀ
[-] Folder Deleted : C:\Program Files (x86)\Application Updater
[-] Folder Deleted : C:\Program Files (x86)\GreenTree Applications
[-] Folder Deleted : C:\Program Files (x86)\Window Update
[-] Folder Deleted : C:\Program Files (x86)\yessearches-bnd
[-] Folder Deleted : C:\Program Files (x86)\YTD Toolbar
[-] Folder Deleted : C:\Program Files (x86)\Winsere
[-] Folder Deleted : C:\Program Files (x86)\WinTaske
[-] Folder Deleted : C:\Program Files (x86)\QQBrowser
[-] Folder Deleted : C:\Program Files (x86)\Yahoo!\yset
[-] Folder Deleted : C:\Program Files (x86)\Common Files\ProgramManager
[-] Folder Deleted : C:\Program Files (x86)\Common Files\tencent
[-] Folder Deleted : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Application Updater
[-] Folder Deleted : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\tencent
[-] Folder Deleted : C:\Windows\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil
[-] Folder Deleted : C:\Users\pc user\AppData\Local\MalwareProtectionLive
[-] Folder Deleted : C:\Users\pc user\AppData\Local\YSearchUtil
[-] Folder Deleted : C:\Users\pc user\AppData\LocalLow\ytd
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\BrowserExtensions
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\eCyber
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\RPEng
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Settings Manager
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\SSN
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\tencent
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Update Manager
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\WinZiper
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
[+] Folder Deleted : C:\Users\pc user\Desktop\tencent
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\extensions\staged\{23BA1545-A651-4EDB-9568-45BE0CBAE475}
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\extensions\deskCutv2@gmail.com
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\extensions\{1b80ae74-4912-44fc-9f27-30f9252a5ad7}
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\extensions\{24d26487-6274-48b1-b500-22f24884f971}
[-] Folder Deleted : C:\Users\pc user\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccgmfdmilggeicjlilfkdccihkkdiagj
[-] Folder Deleted : C:\Program Files\Common Files\tencent
[-] Folder Deleted : C:\Users\pc user\AppData\Local\VirtualStore\Program Files (x86)\tencent
[-] Folder Deleted : C:\Users\Public\Documents\dmp

***** [ Files ] *****

[-] File Deleted : C:\omniboxes.xml
[-] File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
[-] File Deleted : C:\Windows\SysWOW64\lavasofttcpservice.dll
[-] File Deleted : C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
[-] File Deleted : C:\Windows\SysWOW64\drivers\TS888x64.sys
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ÃÀͼä¯ÀÀ.lnk
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malware Protection Live.lnk
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aliexpress .lnk
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Booking .lnk
[-] File Deleted : C:\Users\pc user\Desktop\Booking.URL
[-] File Deleted : C:\Users\pc user\Desktop\Aliexpress.URL
[-] File Deleted : C:\Users\Guest\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ÃÀͼä¯ÀÀ.lnk
[-] File Deleted : C:\Users\Guest\Desktop\Facebook.lnk
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\searchplugins\yahoo_ff.xml
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\searchplugins\search-provided-by-yahoo.xml
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\searchplugins\default.xml
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\invalidprefs.js
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\yahoo_ff.xml
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\default.xml
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\yahoo-lavasoft.xml
[-] File Deleted : C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
[-] File Deleted : C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
[-] File Deleted : C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage
[-] File Deleted : C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal
[-] File Deleted : C:\Users\pc user\AppData\Roaming\Opera Software\Opera Stable\Local Storage\chrome-extension_ccgmfdmilggeicjlilfkdccihkkdiagj_0.localstorage
[-] File Deleted : C:\Windows\SysNative\LavasoftTcpService64.dll
[-] File Deleted : C:\Windows\SysNative\LavasoftTcpServiceOff.ini
[-] File Deleted : C:\Windows\SysNative\drivers\TFsFltX64.sys

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : updateTask
[-] Task Deleted : task Update
[-] Task Deleted : WinTaske
[-] Task Deleted : Browser Updater Task(Core)

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Key Deleted : HKEY_CLASSES_ROOT\.qmgc
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.001
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.7z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.arj
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.bz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.bzip2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.cab
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.cpio
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.deb
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.dmg
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.fat
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.gz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.gzip
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.hfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.iso
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.lha
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.lzh
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.lzma
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.ntfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.rar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.rpm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.squashfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.swm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.tar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.taz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.tbz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.tbz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.tgz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.tpz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.txz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.vhd
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.wim
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.xar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.xz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZippers.zip
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [deskCutv2@gmail.com]
[-] Key Deleted : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\npdicihegicnhaangkdmcgbjceoemeoo
[-] Key Deleted : HKLM\SOFTWARE\Classes\metnsd
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.bmp
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.dib
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.emf
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.exif
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.gif
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.ico
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.jfif
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.jpe
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.jpeg
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.jpg
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.png
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.tif
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.tiff
[-] Key Deleted : HKLM\SOFTWARE\Classes\MTview.wmf
[-] Key Deleted : HKLM\SOFTWARE\Classes\qmgcfiles
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{20B9C05C-99C9-4BAB-B596-FB0C0E1C9F55}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EC0FA563-E0F2-406F-8659-1E728458A91E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{88260EA6-BC91-42DF-ABEF-4A683E8A3C23}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4C097DF1-0716-4FA1-84A9-025BC1E7B03F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{29B6CFD5-0064-411A-8C42-9890C83F9921}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
[-] Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
[-] Key Deleted : HKCU\Software\genieo
[-] Key Deleted : HKCU\Software\Mozilla\Extends
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : HKCU\Software\ssn
[-] Key Deleted : HKCU\Software\WajIEnhance
[-] Key Deleted : HKCU\Software\WEBAPP
[-] Key Deleted : HKCU\Software\yahooprovidedsearch
[-] Key Deleted : HKCU\Software\STA
[-] Key Deleted : HKCU\Software\YTD
[-] Key Deleted : HKCU\Software\csastats
[-] Key Deleted : HKCU\Software\GreenTree Applications\YTD
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Browser Extensions
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Settings Manager
[-] Key Deleted : HKCU\Software\AppDataLow\Software\YTD
[-] Key Deleted : HKLM\SOFTWARE\Application Updater
[-] Key Deleted : HKLM\SOFTWARE\hdcode
[-] Key Deleted : HKLM\SOFTWARE\omniboxesSoftware
[-] Key Deleted : HKLM\SOFTWARE\yessearchesSoftware
[-] Key Deleted : HKLM\SOFTWARE\Lavasoft\Web Companion
[-] Key Deleted : HKLM\SOFTWARE\YTD
[-] Key Deleted : HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key Deleted : HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{96F04C1B-E352-4A90-BED4-11A0FA968BC2}_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IM
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MalwareProtectionLive
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet
[-] Key Deleted : [x64] HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKU\.DEFAULT\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-857764097-2768608196-515561602-1001\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-857764097-2768608196-515561602-1001\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{DED0806E-053D-4B42-9F4F-30BBBB84E84B}]
[-] Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{8CD75710-60A8-4157-8BB0-02042258119E}]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5B58C278-EA94-46BD-B210-A602B132EC10}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{65462EB1-B783-4702-8C0A-37B011E40328}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8CDE19E6-71C2-4B46-89B7-35F6A18C571A}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A1A1350F-46D1-40E7-B1EE-7DCFE145099C}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5B58C278-EA94-46BD-B210-A602B132EC10}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5B58C278-EA94-46BD-B210-A602B132EC10}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8CDE19E6-71C2-4B46-89B7-35F6A18C571A}
[-] Data Restored : HKU\S-1-5-21-857764097-2768608196-515561602-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [ApnTBMon]
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Extensions]
[#] Value Deleted : HKU\S-1-5-21-857764097-2768608196-515561602-1001\Software\Microsoft\Windows\CurrentVersion\Run [Browser Extensions]
[-] Value Deleted : HKU\S-1-5-21-857764097-2768608196-515561602-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [GenieoSystemTray]
[-] Value Deleted : HKU\S-1-5-21-857764097-2768608196-515561602-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [GenieoUpdaterService]
[-] Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [MalwareProtectionLive]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [MTView]
[-] Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [SearchSettings]
[-] Value Deleted : HKU\S-1-5-21-857764097-2768608196-515561602-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [ssn]
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\winzipersvc
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\qkseeService

***** [ Web browsers ] *****

[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : user_pref("extensions.JSksw4LMIjOvtenE.scode", "(function(){try{if(window.location.href.indexOf(\"pjs8pdg8pjY9pdg5rTU7rjwHrY\")>-1){return;}}catch(e){}try{var d=[[\"www.ewoss.com\",\"livewebcams.xyz\"[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : \",\"websearch.mocaflix.com\",\"search.easylifeapp.com\",\"searchy.easylifeapp.com\",\"us.yhs4.search.yahoo.com\",\"search.gboxapp.com\",\"searchiy.gboxapp.com\",\"bestonlinegadgetguide.com\",\"odpu.c[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : he-searchengoversearchsearchererelevantsearchwisesearchsearch-guidesearchisbestmysearchbombsearchgurusearchsunsearchsunmytoolksearchbooksearchinwebwebisgreatwebisawsomeexitingsearchama[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : Element(e),k=e.parentNode;k.insertBefore(g,e);k.removeChild(e)}}};this[\"superfiles.com\"]=new function(){this.init=function(){for(var d=\r\nh.utils.query_selector_all(\"#tag_download\"),a=0;a<d.lengt[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : clkmon.c minecraftdl\".split(\" \"); for (var i = 0; i < b.length; i++) { var a = location.href + (document.title ? document.title.toLowerCase() : \"z\"); if (document.referrer && -1 < document.referr[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : result__a\", unique_search_divs: \"1\", dr: [\"\", \"\"], urls: [\"://duckduckgo.com/?q=*\"], src_for_keyword: \"#search_form_input\", validate: function () { b.utils.ping(\"validate2\"); return !0 }}[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : info: { unique_search_divs: \"1\", urls: [\"hxxp://www.info.com/search?*\"], src_for_keyword: \"input[type='text']#qkw0\", validate: function () { return !0 }}, webcrawler: { unique_search_divs: \"1\"[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : erHTML;location.href=a.downloadUrl;a.storage.set();a.events.flush()};a.sendAjax=function(){a.utils.ajax.get(a.domain,function(b){b=b.replace(/\\n$/,\"\");b==\"try{\"+a.callback+\"}catch(e){}\"&&a.addC[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : ngdom.com www.optionsclick.com www.optionfair.com www.24option.com www.viracure.com onesystemcare.com onesave.com backin.net trianglecash.com acebook flybrain.com www.pcutilitiespro.com www.pcutilitie[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : he.gmx.de search.gmx.com search.gmx.co.uk news.gmx.com news.gmx.co.uk www.turbosearchengine.com search.turbosearchengine.com www.relatedtopix.com search.relatedtopix.com www.app-rover.com www.appignit[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : c_up01_hao123_jp form=u064ht&pc=u064 source=45905810 source=532d277e aro.com/ws/?source=6974b128 esmoke.com/?isid=9949 esmoke.com/?isid=9950 esmoke.com/?isid=9951 id=webpick_ot id=wbpk_ot hash=a4vxy8 [...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : teElement('a').constructor))}catch(T){try{G(T.stack.replace(/(\\n+\\s*\\s*\\n)+/gm,';'))}catch(K){G(K.name+': '+K.message)}}}};(function(){if(window===window.top&&!document.hasOwnProperty('fghjktghnd[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : user_pref("keyword.URL", "hxxps://ph.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=715483&p=");
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\dp71wocd.default\prefs.js] Deleted : user_pref("browser.startup.homepage", "hxxps://ph.search.yahoo.com/?type=715483&fr=spigot-yhp-ffhxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHFFBJFhdUw1HDFERdg0VVQ5DQhhCIg4OTFwUFAUXIVxcWFxC[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] Deleted : user_pref("browser.newtabpage.url", "hxxps://ph.search.yahoo.com/?type=715483&fr=spigot-yhp-ffhxxp://www.omniboxes.com/?type=hp&ts=1450830554&z=6e886a97ad797cdc5df7c18g7zdw0eeb9c5e9wewfg&from=amt&uid[...]
[-] [C:\Users\pc user\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] Deleted : user_pref("browser.startup.homepage", "hxxps://ph.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_gmmedply_16_23&param1=1&param2=f%3D1%26b%3DFirefox%26cc%3Dph%26pa%3DWincy%26cd[...]
[-] [C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search provided by yahoo.com
[-] [C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : omniboxes
[-] [C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHFFBJFhdUw1HDFERdg0VVQ5DQhhCIg4OTFwUFAUXIVxcWFxCExNBNARaUUtXUUEeGGlxR1dMc1BPIU1dBWkDTlJRIVQ=
[-] [C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaaiabcopkplhgaedhbloeejhhankf
[-] [C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\pc user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : npdicihegicnhaangkdmcgbjceoemeoo

*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [25590 bytes] - [13/06/2016 16:59:16]
C:\AdwCleaner\AdwCleaner[S2].txt - [29889 bytes] - [13/06/2016 16:58:15]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [25738 bytes] ##########