# AdwCleaner v6.041 - Logfile created 16/12/2016 at 20:10:08
# Updated on 16/12/2016 by Malwarebytes
# Database : 2016-12-15.1 [Server]
# Operating System : Windows 10 Home  (X64)
# Username : kobis 
# Running from : C:\Users\kobis\Downloads\adwcleaner_6.041.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****

[#] Folder deleted on reboot: C:\Users\kobis\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk
[-] Folder deleted: C:\Users\kobis\AppData\Roaming\Microleaves
[-] Folder deleted: C:\ProgramData\ytd video downloader


***** [ Files ] *****

[-] File deleted: C:\WINDOWS\SysWoW64\findit.xml


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.CRX
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTM
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTML
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.MHT
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTM
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTML
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.WEBP
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHT
[-] Key deleted: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHTML
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\Classes\AppXrh6feys59dqfzsv9p3s9p6aep0hwtb23
[#] Key deleted on reboot: HKCU\Software\Classes\AppXrh6feys59dqfzsv9p3s9p6aep0hwtb23
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\AppXrh6feys59dqfzsv9p3s9p6aep0hwtb23
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\Installer
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\osTip
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\UCBrowser
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\UCBrowserPID
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\AutoTime
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\mtQuoteex
[-] Key deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\GreenTree Applications
[#] Key deleted on reboot: HKCU\Software\Installer
[#] Key deleted on reboot: HKCU\Software\osTip
[#] Key deleted on reboot: HKCU\Software\UCBrowser
[#] Key deleted on reboot: HKCU\Software\UCBrowserPID
[#] Key deleted on reboot: HKCU\Software\AutoTime
[#] Key deleted on reboot: HKCU\Software\mtQuoteex
[#] Key deleted on reboot: HKCU\Software\GreenTree Applications
[-] Key deleted: HKLM\SOFTWARE\UCBrowser
[-] Key deleted: HKLM\SOFTWARE\UCBrowserPID
[-] Key deleted: HKLM\SOFTWARE\mtQuoteex
[-] Key deleted: HKLM\SOFTWARE\Microleaves
[#] Key deleted on reboot: [x64] HKCU\Software\Installer
[#] Key deleted on reboot: [x64] HKCU\Software\osTip
[#] Key deleted on reboot: [x64] HKCU\Software\UCBrowser
[#] Key deleted on reboot: [x64] HKCU\Software\UCBrowserPID
[#] Key deleted on reboot: [x64] HKCU\Software\AutoTime
[#] Key deleted on reboot: [x64] HKCU\Software\mtQuoteex
[#] Key deleted on reboot: [x64] HKCU\Software\GreenTree Applications
[-] Key deleted: [x64] HKLM\SOFTWARE\Microleaves
[-] Value deleted: HKU\S-1-5-21-2973696725-2151443549-252006422-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [msiql]
[-] Value deleted: HKCU\Environment [SNF]
[-] Value deleted: HKCU\Environment [SNP]
[#] Key deleted on reboot: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting
[-] Key deleted: HKLM\SOFTWARE\Clients\StartMenuInternet\UCBrowser
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\UCBrowser.exe
[-] Value deleted: HKLM\SOFTWARE\RegisteredApplications [UCBrowser]
[-] Key deleted: HKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\UCBrowser.exe
[-] Key deleted: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Quoteex.exe


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1827 Bytes] - [08/04/2016 17:57:36]
C:\AdwCleaner\AdwCleaner[C2].txt - [4773 Bytes] - [16/12/2016 20:10:08]
C:\AdwCleaner\AdwCleaner[S1].txt - [1792 Bytes] - [08/04/2016 17:44:06]
C:\AdwCleaner\AdwCleaner[S2].txt - [4708 Bytes] - [16/12/2016 20:09:03]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [4992 Bytes] ##########