# AdwCleaner 7.0.6.0 - Logfile created on Wed Dec 20 13:49:02 2017
# Updated on 2017/21/12 by Malwarebytes 
# Running on Windows 7 Home Premium (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

Deleted: Update service


***** [ Folders ] *****

Deleted: C:\Users\RikenManon\AppData\LocalLow\Zynga
Deleted: C:\ProgramData\WinZip\WinZip Smart Monitor
Deleted: C:\ProgramData\Application Data\WinZip\WinZip Smart Monitor
Deleted: C:\Users\All Users\WinZip\WinZip Smart Monitor
Deleted: C:\Users\RikenManon\AppData\Roaming\TotalAV
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft


***** [ Files ] *****

Deleted: C:\Users\RikenManon\AppData\Roaming\Mozilla\Firefox\Profiles\ynff83qn.default\searchplugins\yahoo! powered search.xml


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk[https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D]
Cleaned: C:\Users\RikenManon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk[https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D]
Cleaned: C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk[https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D]
Cleaned: C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk[https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D]
Cleaned: C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk[https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D]
Cleaned: C:\Users\RikenManon\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk[https:\\launchpage.org\?uid=oTlCGKjchx1sXu9Wsr5ThKgHc5q8a4VxX8Qdzy9Fl5AGZem9BCdkO%2FKakl3e5oMXLw%3D%3D]


***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Data] - HKCU\Software\Microsoft\Internet Explorer\Main|Start Page [http:\\hp.myway.com\easypdfcombine\ttab02\index.html?n=783A3333&p2=%5EBSB%5Exdm012%5ETTAB02%5Enl&ptb=C9771E2B-1E44-4CAB-BA05-BB1851CA2FD4&si=CL_3-bW1wtUCFYZuGwod2G0PEA&coid=ea3a3daff6704ae7b0124f532d60f9fd]
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{9B0A261C-1F53-481F-B90A-77FDD0623E1E}C:\users\rikenmanon\appdata\local\popcorn time community\nw.exe
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{0FC932E7-2B82-4D72-A1F5-04FF43BCB993}C:\users\rikenmanon\appdata\local\popcorn time community\nw.exe
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
Deleted: [Key] - HKLM\SOFTWARE\NICO MAK COMPUTING\WinZip Registry Optimizer
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\APPID\WinZipSmartMonitorService.exe
Deleted: [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted: [Key] - HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted: [Key] - HKLM\SOFTWARE\Reimage
Deleted: [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\Reimage
Deleted: [Key] - HKCU\Software\Reimage
Deleted: [Key] - HKCU\Software\Classes\CLSID\{d79b57ed-727c-4ab8-ba67-e7c6fd30fac1}
Deleted: [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\csastats
Deleted: [Key] - HKCU\Software\csastats
Deleted: [Key] - HKU\S-1-5-21-141004943-2956378002-402243414-1000\Software\PRODUCTSETUP
Deleted: [Key] - HKCU\Software\PRODUCTSETUP


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

Plugin deleted: MSN Homepage & Bing Search Engine - 
SearchProvider deleted: Ask Search - search.ask.com
SearchProvider deleted: Ask.com - dts.search.ask.com
SearchProvider deleted: Conduit Search - search.conduit.com


*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [6094 B] - [2017/12/20 13:31:24]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########