# AdwCleaner 7.0.8.0 - Logfile created on Tue Apr 03 06:52:34 2018
# Updated on 2018/08/02 by Malwarebytes 
# Running on Windows 7 Professional (X86)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Program Files\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\Herman\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\Herman\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Program Files\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\Herman\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\Herman\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\Herman\AppData\Roaming\IObit\Advanced SystemCare V8
Deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip
Deleted: C:\Program Files\predm
Deleted: C:\Program Files\relaydouble
Deleted: C:\Users\Herman\AppData\Roaming\DriverFinder
Deleted: C:\Program Files\LinkProc
Deleted: C:\Program Files\OLBPre
Deleted: C:\Users\Herman\AppData\Local\ShdUpdate
Deleted: C:\Users\Herman\AppData\Roaming\ap_logs
Deleted: C:\Users\Herman\AppData\Roaming\DriverCure
Deleted: C:\ProgramData\eSafe
Deleted: C:\ProgramData\Application Data\eSafe
Deleted: C:\Users\All Users\eSafe
Deleted: C:\Program Files\SiteLookup
Deleted: C:\Users\Herman\AppData\Roaming\StPrsSW
Deleted: C:\Users\Herman\AppData\Roaming\driverfinder
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\ProgramData\Application Data\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
Deleted: C:\Program Files\Common Files\337
Deleted: C:\Users\Herman\Documents\PC Speed Maximizer
Deleted: C:\Program Files\Super Optimizer
Deleted: C:\ProgramData\Performance Optimizer
Deleted: C:\ProgramData\Application Data\Performance Optimizer
Deleted: C:\Users\All Users\Performance Optimizer
Deleted: C:\ProgramData\93f94e6a
Deleted: C:\ProgramData\ec63c25d00007680


***** [ Files ] *****

Deleted: C:\Users\Herman\AppData\Roaming\\appdataFr2.bin
Deleted: C:\Users\Herman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url
Deleted: C:\Users\Herman\AppData\Roaming\LiveSupport.exe_log.txt
Deleted: C:\Windows\System32\RegistryHelperLM.ocx
Deleted: C:\Users\Herman\AppData\Roaming\regsvr32.exe_log.txt
Deleted: C:\Windows\System32\roboot.exe
Deleted: C:\Users\Herman\AppData\LocalLow\SkwConfig.bin


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\IObit\Advanced SystemCare
Deleted: [Key] - HKCU\Software\IObit\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
Deleted: [Key] - HKLM\SOFTWARE\IObit\ASC
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\ImInstaller
Deleted: [Key] - HKCU\Software\ImInstaller
Deleted: [Key] - HKU\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted: [Key] - HKU\S-1-5-19\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted: [Key] - HKU\S-1-5-20\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1001\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted: [Key] - HKU\S-1-5-18\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted: [Key] - HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1001\Software\PepperZip
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\genesis
Deleted: [Key] - HKCU\Software\genesis
Deleted: [Key] - HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Deleted: [Key] - HKU\.DEFAULT\Software\WNLT
Deleted: [Key] - HKU\S-1-5-18\Software\WNLT
Deleted: [Key] - HKLM\SOFTWARE\SiteSee
Deleted: [Key] - HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Deleted: [Key] - HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Deleted: [Key] - HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\BABSOLUTION
Deleted: [Key] - HKCU\Software\BABSOLUTION
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\BI
Deleted: [Key] - HKCU\Software\BI
Deleted: [Key] - HKLM\SOFTWARE\Desksvc
Deleted: [Key] - HKLM\SOFTWARE\hdcode
Deleted: [Key] - HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Deleted: [Key] - HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Deleted: [Key] - HKU\S-1-5-18\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Deleted: [Key] - HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\GoldenGate
Deleted: [Key] - HKCU\Software\GoldenGate
Deleted: [Key] - HKLM\SOFTWARE\MaxPower
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{E7BC34A1-BA86-11CF-84B1-CBC2DA68BF6C}
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{E7BC34A0-BA86-11CF-84B1-CBC2DA68BF6C}
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\Softonic
Deleted: [Key] - HKCU\Software\Softonic
Deleted: [Key] - HKLM\SOFTWARE\Reimage
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\OffersWizard
Deleted: [Key] - HKCU\Software\OffersWizard
Deleted: [Key] - HKLM\SOFTWARE\ReviverSoft
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\ReviverSoft
Deleted: [Key] - HKCU\Software\ReviverSoft
Deleted: [Key] - HKLM\SOFTWARE\Secrv
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Deleted: [Key] - HKLM\SOFTWARE\ReviverSoft
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\ReviverSoft
Deleted: [Key] - HKCU\Software\ReviverSoft
Deleted: [Value] - HKCU\Software\Microsoft\Internet Explorer\TabbedBrowsing|bProtectShowTabsWelcome
Deleted: [Key] - HKLM\SOFTWARE\TermTutor
Deleted: [Key] - HKLM\SOFTWARE\ReviverSoft
Deleted: [Key] - HKU\S-1-5-21-1719932567-3506215398-4039828936-1000\Software\ReviverSoft
Deleted: [Key] - HKCU\Software\ReviverSoft
Deleted: [Key] - HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [10833 B] - [2018/4/3 6:49:33]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########