# AdwCleaner v6.042 - Logfile created 22/01/2017 at 14:05:55 # Updated on 06/01/2017 by Malwarebytes # Database : 2017-01-22.1 [Server] # Operating System : Windows 8.1 Pro (X64) # Username : Piotr - PIOTR # Running from : C:\Users\Piotr\Downloads\adwcleaner_6.042.exe # Mode: Scan # Support : https://www.malwarebytes.com/support ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** Folder Found: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent Folder Found: C:\ProgramData\WinTools ***** [ Files ] ***** File Found: C:\Users\Piotr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\UC浏览器.lnk File Found: C:\Program Files (x86)\Common Files\SERVICES\ITHEMES.DLL ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious keys found. ***** [ Shortcuts ] ***** No infected shortcut found. ***** [ Scheduled Tasks ] ***** Task Found: WinTOOL ***** [ Registry ] ***** Key Found: HKU\.DEFAULT\Software\jhdbca Key Found: HKU\S-1-5-21-1787938467-411497002-959167669-1002\Software\dobreprogramy Key Found: HKU\S-1-5-21-1787938467-411497002-959167669-1002\Software\PRODUCTSETUP Key Found: HKU\S-1-5-21-1787938467-411497002-959167669-1002\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I Key Found: HKU\S-1-5-21-1787938467-411497002-959167669-1002\Software\csastats Key Found: HKU\S-1-5-18\Software\jhdbca Key Found: HKCU\Software\dobreprogramy Key Found: HKCU\Software\PRODUCTSETUP Key Found: HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I Key Found: HKCU\Software\csastats Key Found: HKLM\SOFTWARE\ScreenShot Key Found: HKLM\SOFTWARE\jhdbca Key Found: HKLM\SOFTWARE\WinArcher Key Found: [x64] HKCU\Software\dobreprogramy Key Found: [x64] HKCU\Software\PRODUCTSETUP Key Found: [x64] HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I Key Found: [x64] HKCU\Software\csastats Key Found: [x64] HKLM\SOFTWARE\jhdbca Value Found: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [WinSAPSvc] Value Found: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [ArcherGroupEx] Value Found: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [GubedZLGroupEx] ***** [ Web browsers ] ***** No malicious Firefox based browser items found. No malicious Chromium based browser items found. ************************* C:\AdwCleaner\AdwCleaner[C0].txt - [7505 Bytes] - [17/01/2017 11:54:42] C:\AdwCleaner\AdwCleaner[C2].txt - [1555 Bytes] - [17/01/2017 13:57:12] C:\AdwCleaner\AdwCleaner[C3].txt - [1806 Bytes] - [18/01/2017 01:00:25] C:\AdwCleaner\AdwCleaner[C4].txt - [3533 Bytes] - [19/01/2017 14:46:43] C:\AdwCleaner\AdwCleaner[C5].txt - [2931 Bytes] - [19/01/2017 14:54:43] C:\AdwCleaner\AdwCleaner[S0].txt - [6903 Bytes] - [17/01/2017 11:53:51] C:\AdwCleaner\AdwCleaner[S1].txt - [1970 Bytes] - [17/01/2017 13:56:56] C:\AdwCleaner\AdwCleaner[S2].txt - [2201 Bytes] - [18/01/2017 01:00:11] C:\AdwCleaner\AdwCleaner[S3].txt - [3675 Bytes] - [19/01/2017 14:46:15] C:\AdwCleaner\AdwCleaner[S4].txt - [2768 Bytes] - [19/01/2017 14:53:29] C:\AdwCleaner\AdwCleaner[S5].txt - [2799 Bytes] - [19/01/2017 15:13:10] C:\AdwCleaner\AdwCleaner[S6].txt - [3218 Bytes] - [22/01/2017 14:05:55] ########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [3291 Bytes] ##########