# AdwCleaner 7.0.0.0 - Logfile created on Tue Jul 25 10:43:45 2017
# Updated on 2017/17/07 by Malwarebytes 
# Database: 07-24-2017.1
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.AdvancedSystemCare, C:\ProgramData\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\ProgramData\Application Data\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\admin\AppData\LocalLow\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\admin\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, C:\Users\All Users\IObit\Advanced SystemCare
PUP.Optional.Legacy, C:\Users\admin\AppData\Roaming\DriverCure
PUP.Optional.Legacy, C:\Users\admin\AppData\Local\AdvinstAnalytics
PUP.Optional.Legacy, C:\ProgramData\IObit\ASCDownloader
PUP.Optional.Legacy, C:\ProgramData\Application Data\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Users\All Users\IObit\ASCDownloader
PUP.Optional.Legacy, C:\Users\All Users\Documents\XMUpdate
PUP.Optional.Legacy, C:\Users\Public\Documents\XMUpdate
PUP.Optional.RegCurePro, C:\ProgramData\PARETOLOGIC
PUP.Optional.RegCurePro, C:\ProgramData\Application Data\PARETOLOGIC
PUP.Optional.RegCurePro, C:\Users\admin\AppData\Roaming\PARETOLOGIC
PUP.Optional.RegCurePro, C:\Users\All Users\PARETOLOGIC


***** [ Files ] *****

Adware.ChinAd, C:\Windows\SysNative\drivers\cfidsk.sys


***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

PUP.Optional.Legacy, Driver Booster Scheduler


***** [ Registry ] *****

PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\IOBIT\ASC
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
PUP.Optional.AdvancedSystemCare, [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\DOMStorage\yeadesktop.com
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {5BA50F0B-5F9F-4884-9EC5-A7EC1726B411}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {0BEA4A79-6C05-4BDD-B704-74DD2D66BAB3}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\AppDataLow\Software\Tv-Plug-In
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\AppDataLow\Software\Tv-Plug-In
PUP.Optional.Legacy, [Key] - HKCU\Software\AppDataLow\Software\Tv-Plug-In
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\PopWnd
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\PopWnd
PUP.Optional.Legacy, [Key] - HKCU\Software\PopWnd
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\ParetoLogic
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\ParetoLogic
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\ParetoLogic
PUP.Optional.Legacy, [Key] - HKCU\Software\ParetoLogic
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\dobreprogramy
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\dobreprogramy
PUP.Optional.Legacy, [Key] - HKCU\Software\dobreprogramy
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Speedownloader0099
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\Speedownloader0099
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\Speedownloader0099
PUP.Optional.Legacy, [Key] - HKCU\Software\Speedownloader0099
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Quotenamron.exe
Adware.FileTour, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\Installer
Adware.FileTour, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\Installer
Adware.FileTour, [Key] - HKCU\Software\Installer
Adware.OnlineIO, [Key] - HKLM\SOFTWARE\Microleaves
PUP.Optional.ByteFence, [Key] - HKLM\SOFTWARE\ByteFence
PUP.Optional.ByteFence, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION | ByteFence.exe
PUP.Optional.MoneyFriend, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\msaver
PUP.Optional.MoneyFriend, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\msaver
PUP.Optional.MoneyFriend, [Key] - HKCU\Software\msaver
PUP.Optional.FastDataX, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\FastDataX
PUP.Optional.FastDataX, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\FastDataX
PUP.Optional.FastDataX, [Key] - HKCU\Software\FastDataX
PUP.Optional.DiskPower, [Key] - HKLM\SOFTWARE\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
PUP.Optional.DiskPower, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
PUP.Optional.DiskPower, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
PUP.Optional.DiskPower, [Key] - HKCU\Software\Microsoft\{6711eba6-cf08-4edw-9528-86004fa424bb}
PUP.Optional.SystemHealer, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\System Healer
PUP.Optional.SystemHealer, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\System Healer
PUP.Optional.SystemHealer, [Key] - HKCU\Software\System Healer
PUP.Optional.WizzWifiHotspot, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\Hotspot
PUP.Optional.WizzWifiHotspot, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\Hotspot
PUP.Optional.WizzWifiHotspot, [Key] - HKCU\Software\Hotspot
PUP.Optional.ProxyGate, [Key] - HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services
PUP.Optional.Yontoo, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\Amigo
PUP.Optional.Yontoo, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\Amigo
PUP.Optional.Yontoo, [Key] - HKCU\Software\Amigo
PUP.Optional.DriverPack, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001\Software\drpsu
PUP.Optional.DriverPack, [Key] - HKU\S-1-5-21-1693114668-2537149228-3336235061-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07252017010825091\Software\drpsu
PUP.Optional.DriverPack, [Key] - HKCU\Software\drpsu
PUP.Optional.Jawego, [Key] - HKLM\SOFTWARE\Jawego
PUP.Optional.PCCleanPlus, [Key] - HKLM\SOFTWARE\PC Clean Plus


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[S1].txt - [3878 B] - [2016/6/7 19:3:38]


########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########