# ------------------------------- # Malwarebytes AdwCleaner 8.0.8.0 # ------------------------------- # Build: 10-08-2020 # Database: 2021-01-06.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Clean # ------------------------------- # Start: 01-07-2021 # Duration: 00:04:05 # OS: Windows 10 Pro # Cleaned: 63 # Failed: 1 ***** [ Services ] ***** No malicious services cleaned. ***** [ Folders ] ***** Deleted C:\Program Files (x86)\Multitimer Deleted C:\Program Files (x86)\ProxyGate Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion Deleted C:\ProgramData\Outbyte Deleted C:\Users\AFERRIS\AppData\Roaming\IObit\Advanced SystemCare Deleted C:\Users\AFERRIS\AppData\Roaming\UtcTimer Deleted C:\Users\SalvadorFerris\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG Deleted C:\Users\SalvadorFerris\AppData\Local\YSearchUtil Deleted C:\Users\SalvadorFerris\AppData\Roaming\Lavasoft\Web Companion ***** [ Files ] ***** No malicious files cleaned. ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** No malicious tasks cleaned. ***** [ Registry ] ***** Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion Deleted HKLM\Software\Wow6432Node\Outbyte Deleted HKLM\System\Setup\FirstBoot\Services\pgt_svc ***** [ Chromium (and derivatives) ] ***** Deleted cknghehebaconkajgiobncfleofebcog ***** [ Chromium URLs ] ***** Deleted V9 Deleted V9 Deleted http://search.babylon.com/?affID=112088&tt=010712_6&babsrc=HP_ss&mntrId=9443911d000000000000001302020553 Deleted http://search.babylon.com/?affID=112088&tt=010712_6&babsrc=HP_ss&mntrId=9443911d000000000000001302020553 Deleted http://searchy.easylifeapp.com/ ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries cleaned. ***** [ Firefox URLs ] ***** Deleted findit Deleted findit ***** [ Hosts File Entries ] ***** No malicious hosts file entries cleaned. ***** [ Preinstalled Software ] ***** Deleted Preinstalled.CyberLinkShellExtension Registry HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} Deleted Preinstalled.LenovoBlueToothLocker Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|BTLocker Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER Deleted Preinstalled.LenovoIMController Folder C:\Users\AFERRIS\AppData\Local\LENOVO\IMCONTROLLER Deleted Preinstalled.LenovoIMController Folder C:\Users\SALVAFF\AppData\Local\LENOVO\IMCONTROLLER Deleted Preinstalled.LenovoIMController Folder C:\Users\SalvadorFerris\AppData\Local\LENOVO\IMCONTROLLER Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1 Deleted Preinstalled.LenovoPower2Go Folder C:\Program Files (x86)\LENOVO\POWER2GO Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLMLServer_For_P2G8 Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLVirtualDrive Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLMLServer_For_P2G8 Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLVirtualDrive Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} Deleted Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} Deleted Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} Deleted Preinstalled.LenovoREACHit Folder C:\Program Files (x86)\LENOVO\REACHIT Deleted Preinstalled.LenovoREACHit Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\REACHIT Deleted Preinstalled.LenovoREACHit Folder C:\Users\AFERRIS\AppData\Local\LENOVO\REACHIT Deleted Preinstalled.LenovoREACHit Folder C:\Users\SALVAFF\AppData\Local\LENOVO\REACHIT Deleted Preinstalled.LenovoREACHit Folder C:\Users\SalvadorFerris\AppData\Local\LENOVO\REACHIT Deleted Preinstalled.LenovoREACHit Folder C:\Users\defadmins2k\AppData\Local\LENOVO\REACHIT Deleted Preinstalled.LenovoREACHit Registry HKLM\Software\Classes\CLSID\{2B3256D4-49AA-11D1-8429-0050AE509033} Deleted Preinstalled.LenovoREACHit Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{2B3256D4-49AA-11D1-8429-0050AE509033} Deleted Preinstalled.LenovoREACHit Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4532E4C5-C84D-4040-A044-ECFCC5C6995B} Deleted Preinstalled.LenovoSHAREit Folder C:\Program Files (x86)\LENOVO\SHAREIT Deleted Preinstalled.LenovoSHAREit Registry HKLM\Software\Classes\CLSID\{430BD134-576D-4E75-87CD-0F5C6221A82B} Deleted Preinstalled.LenovoSHAREit Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\SHAREit_is1 Deleted Preinstalled.LenovoSettings Folder C:\Program Files (x86)\LENOVO\LENOVO SETTINGS Deleted Preinstalled.LenovoSettings Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO SETTINGS Deleted Preinstalled.LenovoSettings Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{42F8AFC3-7944-46CC-9689-94FF9869D0A7} Deleted Preinstalled.LenovoSettings Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{42F8AFC3-7944-46CC-9689-94FF9869D0A7} Deleted Preinstalled.LenovoSolutionCenter Folder C:\Program Files\LENOVO\LENOVO SOLUTION CENTER Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{49277B39-D2E8-4342-9CE8-FC080C3FA344} Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AB46AC6D-3E9A-4484-8061-64FF10301B41} Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AFDE512F-7BCD-46B6-91C0-230812139EEF} Deleted Preinstalled.LenovoUtility Folder C:\Program Files\LENOVO\LENOVOUTILITY Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoUtility Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LenovoUtility Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA} Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA} Not Deleted Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER ************************* [+] Delete Tracing Keys [+] Reset Winsock ************************* AdwCleaner[S00].txt - [8008 octets] - [07/01/2021 12:00:39] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########