cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.4.9 (07.14.2015:2)
OS: Microsoft Windows XP x86
Ran by Administrator on Wed 07/15/2015 at 21:57:51.65
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Failed to delete: [Service] bprotectex
Successfully deleted: [Service] globalupdate [Reboot required]
Successfully deleted: [Service] globalupdatem [Reboot required]
Successfully deleted: [Service] pcfapiutil [Reboot required]
Successfully deleted: [Service] spbiupdd [Reboot required]
Successfully deleted: [Service] updatecheck [Reboot required]
Successfully deleted: [Service] wikibrowserupdateservice [Reboot required]



~~~ Tasks

Successfully deleted: [Task] C:\WINDOWS\tasks\5ec6771e-cc44-45f6-9fcf-6f7d452df056-1-6.job
Successfully deleted: [Task] C:\WINDOWS\tasks\5ec6771e-cc44-45f6-9fcf-6f7d452df056-1-7.job
Successfully deleted: [Task] C:\WINDOWS\tasks\5ec6771e-cc44-45f6-9fcf-6f7d452df056-4.job
Successfully deleted: [Task] C:\WINDOWS\tasks\5ec6771e-cc44-45f6-9fcf-6f7d452df056-5.job
Successfully deleted: [Task] C:\WINDOWS\tasks\e350c3ad-3b62-4e39-8e76-4eb3f6437054-1-6.job
Successfully deleted: [Task] C:\WINDOWS\tasks\e350c3ad-3b62-4e39-8e76-4eb3f6437054-1-7.job
Successfully deleted: [Task] C:\WINDOWS\tasks\e350c3ad-3b62-4e39-8e76-4eb3f6437054-4.job
Successfully deleted: [Task] C:\WINDOWS\tasks\e350c3ad-3b62-4e39-8e76-4eb3f6437054-5.job
Successfully deleted: [Task] C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job
Successfully deleted: [Task] C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job
Successfully deleted: [Task] C:\WINDOWS\tasks\ShopperPro.job
Successfully deleted: [Task] C:\WINDOWS\tasks\ShopperPro.job
Successfully deleted: [Task] C:\WINDOWS\tasks\SMupdate2.job
Successfully deleted: [Task] C:\WINDOWS\tasks\SMupdate3.job
Successfully deleted: [Task] C:\WINDOWS\tasks\SPBIW_UpdateTask_Time_323034393230303835332d3437415a556c2a3223346c41.job



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1708537768-1897051121-1614895754-500\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\APN PIP
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AskPartnerNetwork
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\AskPartnerNetwork
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6B528F7B-1290-4F85-BA27-8515B393FF4B}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6BA4BBC5-3A34-465E-A7AD-CA216AD72022}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\globalupdate.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Successfully repaired: [Registry Key] HKEY_LOCAL_MACHINE\Software\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command



~~~ Files



~~~ Folders

Failed to delete: [Folder] C:\Program Files\lavasoft\web companion
Failed to delete: [Folder] C:\Program Files\pc faster
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\iqiyi video
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\lavasoft\web companion
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\opencandy
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\oursurfing
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\pc faster
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\ppslog
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\local settings\application data\crashrpt
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\local settings\application data\globalupdate
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\local settings\application data\installer
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\local settings\application data\sysassistbyhotwheel
Successfully deleted: [Folder] C:\Program Files\Common Files\shopperpro
Successfully deleted: [Folder] C:\Program Files\coupoon
Successfully deleted: [Folder] C:\Program Files\DIGITA~1
Successfully deleted: [Folder] C:\Program Files\globalupdate
Successfully deleted: [Folder] C:\Program Files\iqiyi video
Successfully deleted: [Folder] C:\Program Files\miuitab
Successfully deleted: [Folder] C:\Program Files\shopperpro



~~~ FireFox

Successfully deleted: [File] C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\l0cf6u4u.default-1434771663281\user.js
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\l0cf6u4u.default-1434771663281\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\l0cf6u4u.default-1434771663281\extensions\staged
Successfully deleted: [Folder] C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\l0cf6u4u.default-1434771663281\extensions\{746505dc-0e21-4667-97f8-72ea6bcf5eef}
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\searchffv2@gmail.com
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\sweetsearch@gmail.com
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@iqiyi.com/npclient
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@iqiyi.com/npwebplayer
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@staging.google.com/globalupdate update;version=10
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@staging.google.com/globalupdate update;version=4
Successfully deleted the following from C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\l0cf6u4u.default-1434771663281\prefs.js

user_pref(browser.newtab.url, chrome://quick_start/content/index.html);
user_pref(browser.search.searchengine.alias, oursurfing);
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine);
user_pref(browser.search.searchengine.iconURL, hxxp://www.oursurfing.com/favicon.ico);
user_pref(browser.search.searchengine.name, oursurfing);
user_pref(browser.search.searchengine.ptid, amt);
user_pref(browser.search.searchengine.uid, FUJITSUXMHW2080BH_K10AT762647FT762647FX);
user_pref(browser.search.searchengine.url, hxxp://www.oursurfing.com/web/?type=ds&ts=1436814524&z=12a10aabb0496b1db391a8cg5z9ceqebdg8z9z1g9t&from=amt&uid=FUJITSUXMHW2080BH_
user_pref(browser.search.selectedEngine, oursurfing);
user_pref(extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.Resources_meta.value, %7B%22handlebars.js%22%3A%7B%22id%22%3A980195%2C%22ver%22
user_pref(extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.Resources_resource_980204.value, %22function%20startAskCom%28e%2Ct%2Cr%29%7Bfun
user_pref(extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledUrls.value, %7B%22dealply_s%22%3A%7B%22urls%22%3A%5B
user_pref(extensions.crossrider.bic, 14e8cdd703fc70c3e4703130218c4840);
user_pref(extensions.quick_start.enable_search1, false);
user_pref(extensions.quick_start.sd.closeWindowWithLastTab_prev_state, false);
user_pref(plugin.state.npwebplayer, 0);





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 07/15/2015 at 22:02:30.31
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Publicité


Signaler le contenu de ce document

Publicité