# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build:    09-25-2018
# Database: 2018-11-14.2 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    11-16-2018
# Duration: 00:03:06
# OS:       Windows 8.1 Enterprise
# Cleaned:  100
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\ProgramData\BwinpB
Deleted       C:\ProgramData\UWINPU
Deleted       C:\ProgramData\JWINPJ
Deleted       C:\ProgramData\2WINP2
Deleted       C:\ProgramData\1WINP1
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
Deleted       C:\ProgramData\ByteFence
Deleted       C:\Program Files\ByteFence
Deleted       C:\Program Files (x86)\Gub
Deleted       C:\Program Files (x86)\Gubed
Deleted       C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\aMule
Deleted       C:\Program Files (x86)\InterHop
Deleted       C:\Users\J. Pablo y Betty\AppData\Roaming\eCyber
Deleted       C:\extensions
Deleted       C:\Program Files (x86)\QQBrowser
Deleted       C:\Program Files (x86)\Uncheckit

***** [ Files ] *****

Deleted       C:\Users\Public\Documents\temp.dat
Deleted       C:\Users\Public\Documents\report.dat

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted       C:\Windows\System32\Tasks\Browser Updater Task(Core)

***** [ Registry ] *****

Deleted       HKLM\SOFTWARE\Classes\WinZippers.zip
Deleted       HKLM\SOFTWARE\Classes\WinZippers.z
Deleted       HKLM\SOFTWARE\Classes\WinZippers.xz
Deleted       HKLM\SOFTWARE\Classes\WinZippers.xar
Deleted       HKLM\SOFTWARE\Classes\WinZippers.wim
Deleted       HKLM\SOFTWARE\Classes\WinZippers.vhd
Deleted       HKLM\SOFTWARE\Classes\WinZippers.txz
Deleted       HKLM\SOFTWARE\Classes\WinZippers.tpz
Deleted       HKLM\SOFTWARE\Classes\WinZippers.tgz
Deleted       HKLM\SOFTWARE\Classes\WinZippers.tbz2
Deleted       HKLM\SOFTWARE\Classes\WinZippers.tbz
Deleted       HKLM\SOFTWARE\Classes\WinZippers.taz
Deleted       HKLM\SOFTWARE\Classes\WinZippers.tar
Deleted       HKLM\SOFTWARE\Classes\WinZippers.swm
Deleted       HKLM\SOFTWARE\Classes\WinZippers.squashfs
Deleted       HKLM\SOFTWARE\Classes\WinZippers.rpm
Deleted       HKLM\SOFTWARE\Classes\WinZippers.rar
Deleted       HKLM\SOFTWARE\Classes\WinZippers.ntfs
Deleted       HKLM\SOFTWARE\Classes\WinZippers.lzma
Deleted       HKLM\SOFTWARE\Classes\WinZippers.lzh
Deleted       HKLM\SOFTWARE\Classes\WinZippers.lha
Deleted       HKLM\SOFTWARE\Classes\WinZippers.iso
Deleted       HKLM\SOFTWARE\Classes\WinZippers.hfs
Deleted       HKLM\SOFTWARE\Classes\WinZippers.gzip
Deleted       HKLM\SOFTWARE\Classes\WinZippers.gz
Deleted       HKLM\SOFTWARE\Classes\WinZippers.fat
Deleted       HKLM\SOFTWARE\Classes\WinZippers.dmg
Deleted       HKLM\SOFTWARE\Classes\WinZippers.deb
Deleted       HKLM\SOFTWARE\Classes\WinZippers.cpio
Deleted       HKLM\SOFTWARE\Classes\WinZippers.cab
Deleted       HKLM\SOFTWARE\Classes\WinZippers.bzip2
Deleted       HKLM\SOFTWARE\Classes\WinZippers.bz2
Deleted       HKLM\SOFTWARE\Classes\WinZippers.arj
Deleted       HKLM\SOFTWARE\Classes\WinZippers.7z
Deleted       HKLM\SOFTWARE\Classes\WinZippers.001
Deleted       HKU\S-1-5-18\SOFTWARE\EE4F55C6BA7B3C2E8EFD431C102F36D6
Deleted       HKU\S-1-5-18\SOFTWARE\7206C710C90371F3C2069F3E7529CF6C
Deleted       HKU\S-1-5-18\SOFTWARE\5BE68713A0DCCC31D16C2E1E36EAB0D8
Deleted       HKCU\SOFTWARE\EE4F55C6BA7B3C2E8EFD431C102F36D6
Deleted       HKU\.DEFAULT\SOFTWARE\EE4F55C6BA7B3C2E8EFD431C102F36D6
Deleted       HKU\.DEFAULT\SOFTWARE\7206C710C90371F3C2069F3E7529CF6C
Deleted       HKU\.DEFAULT\SOFTWARE\5BE68713A0DCCC31D16C2E1E36EAB0D8
Deleted       HKU\S-1-5-18\Software\ByteFence
Deleted       HKCU\Software\ByteFence
Deleted       HKU\.DEFAULT\Software\ByteFence
Deleted       HKLM\Software\Wow6432Node\ByteFence
Deleted       HKLM\Software\ByteFence
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
Deleted       HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|ByteFence.exe
Deleted       HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
Deleted       HKCU\Software\csastats
Deleted       HKLM\Software\Wow6432Node\InterHop
Deleted       HKLM\Software\Wow6432Node\WinZiper
Deleted       HKU\S-1-5-18\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
Deleted       HKU\.DEFAULT\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
Deleted       HKLM\Software\Wow6432Node\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
Deleted       HKLM\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
Deleted       HKLM\Software\Wow6432Node\hdcode
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F39E5917C417B4041A46F88010121C6E
Deleted       HKLM\Software\Classes\Installer\Products\F39E5917C417B4041A46F88010121C6E
Deleted       HKLM\Software\Classes\Installer\Features\F39E5917C417B4041A46F88010121C6E
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F4D5720ABAFF24A489478B171B4CACD3
Deleted       HKLM\Software\Classes\Installer\Products\F4D5720ABAFF24A489478B171B4CACD3
Deleted       HKLM\Software\Classes\Installer\Features\F4D5720ABAFF24A489478B171B4CACD3
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-4133759467-418885721-3657519486-1000\Products\E4DFFE2B890D5484D965ED57EB3B9531
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-4133759467-418885721-3657519486-1000\Components\E4DFFE2B890D5484D965ED57EB3B9531
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost|GubZLGroEx
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost|WinSAPSvc
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost|ArcherGroupEx
Deleted       HKLM\SOFTWARE\Classes\Directory\shell\ByteFence Folder Scan
Deleted       HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
Deleted       HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
Deleted       HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
Deleted       HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
Deleted       HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
Deleted       HKLM\Software\Wow6432Node\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B3378B3D-A3A7-475D-8BD5-32045D35B7C6}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B3378B3D-A3A7-475D-8BD5-32045D35B7C6}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Updater Task(Core)
Deleted       HKCU\Software\Vittalia

***** [ Chromium (and derivatives) ] *****

Deleted       chfdnecihphmhljaaejmgoiahnihplgn

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [9424 octets] - [16/11/2018 06:32:27]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########