cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.1 (07.16.2015:1)
OS: Windows 7 Professional x64
Ran by khaled on 20/07/2015 at 15:07:40,16
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully deleted: [Service] {b9ef2fca-9fe6-4589-b97a-90379e9f2f5e}Gw64 [Reboot required]
Successfully deleted: [Service] 9dd628ce-0e77-4c51-8705-27330d3090a3 [Reboot required]
Successfully deleted: [Service] c31ed948 [Reboot required]
Successfully deleted: [Service] cherimoya [Reboot required]
Successfully deleted: [Service] csrcc [Reboot required]
Successfully deleted: [Service] globalupdate [Reboot required]
Successfully deleted: [Service] globalupdatem [Reboot required]
Successfully deleted: [Service] ihprotect service [Reboot required]
Successfully deleted: [Service] momiwytu [Reboot required]
Successfully deleted: [Service] software_update [Reboot required]
Successfully deleted: [Service] software_update_m [Reboot required]
Successfully deleted: [Service] Update Product Deals [Reboot required]
Successfully deleted: [Service] Util Product Deals [Reboot required]
Successfully deleted: [Service] vicoqudu [Reboot required]
Successfully deleted: [Service] windowsmangerprotect [Reboot required]
Successfully deleted: [Service] wsfd_1_10_0_19 [Reboot required]
Successfully deleted: [Service] wsfd_vt_1_10_0_20 [Reboot required]
Successfully deleted: [Service] wssvc_1.10.0.19 [Reboot required]
Successfully deleted: [Service] zejytose [Reboot required]



~~~ Tasks

Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-1-6
Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-1-7
Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-10_user
Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-3
Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-5
Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-5_user
Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-6
Successfully deleted: [Task] C:\Windows\system32\tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-7
Successfully deleted: [Task] C:\Windows\system32\tasks\Bidaily Synchronize Task[8da6]
Successfully deleted: [Task] C:\Windows\system32\tasks\Crossbrowse
Successfully deleted: [Task] C:\Windows\system32\tasks\DHRYHOEWM1
Successfully deleted: [Task] C:\Windows\system32\tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-1-6
Successfully deleted: [Task] C:\Windows\system32\tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-1-7
Successfully deleted: [Task] C:\Windows\system32\tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-3
Successfully deleted: [Task] C:\Windows\system32\tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-5
Successfully deleted: [Task] C:\Windows\system32\tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-5_user
Successfully deleted: [Task] C:\Windows\system32\tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-6
Successfully deleted: [Task] C:\Windows\system32\tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-7
Successfully deleted: [Task] C:\Windows\system32\tasks\globalUpdateUpdateTaskMachineCore
Successfully deleted: [Task] C:\Windows\system32\tasks\globalUpdateUpdateTaskMachineUA
Successfully deleted: [Task] C:\Windows\system32\tasks\IKULRFTIHBUEDESW
Successfully deleted: [Task] C:\Windows\system32\tasks\Optimizer Pro Schedule
Successfully deleted: [Task] C:\Windows\system32\tasks\SmartWeb Upgrade Trigger Task
Successfully deleted: [Task] C:\Windows\system32\tasks\WordShark Auto Updater 1.10.0.19 Core
Successfully deleted: [Task] C:\Windows\system32\tasks\WordShark Auto Updater 1.10.0.19 Pending Update
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-1-6.job
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-1-7.job
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-10_user.job
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-3.job
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-5.job
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-5_user.job
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-6.job
Successfully deleted: [Task] C:\Windows\Tasks\5ba92495-95e6-4fef-b35e-1be27f207dd5-7.job
Successfully deleted: [Task] C:\Windows\Tasks\Bidaily Synchronize Task[8da6].job
Successfully deleted: [Task] C:\Windows\Tasks\Crossbrowse.job
Successfully deleted: [Task] C:\Windows\Tasks\DHRYHOEWM1.job
Successfully deleted: [Task] C:\Windows\Tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-1-6.job
Successfully deleted: [Task] C:\Windows\Tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-1-7.job
Successfully deleted: [Task] C:\Windows\Tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-3.job
Successfully deleted: [Task] C:\Windows\Tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-5.job
Successfully deleted: [Task] C:\Windows\Tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-5_user.job
Successfully deleted: [Task] C:\Windows\Tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-6.job
Successfully deleted: [Task] C:\Windows\Tasks\f0012ec0-bd47-47ff-85fe-b7d577464d8e-7.job
Successfully deleted: [Task] C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
Successfully deleted: [Task] C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
Successfully deleted: [Task] C:\Windows\Tasks\hwUGX97qeM3.job
Successfully deleted: [Task] C:\Windows\Tasks\KPwzNC9Qm1Omb0vjaCA64A.job



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_8899B560FF8C5D5B43905AFE723308A1
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_F71104B6083AB8677FD945ADBF1F4C0D
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\optimizer pro
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\boxore client
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_005010035
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1349916349-1095920822-1389420878-1001\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\APN PIP
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AskPartnerNetwork
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\AskPartnerNetwork
Successfully deleted: [Registry Key] (par d‚faut) REG_SZ Crossbrowse
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1F91A9A1-01BA-4c81-863D-3BA0751E1419}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{dd01946e-5501-4e11-b279-efdffd4c1487}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{de953a75-7d9c-4649-84d0-056fbe2dd8e9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{EFA7A511-B491-4312-BB35-4586B99E45ED}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Clients\StartMenuInternet\Crossbrowse
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\globalupdate.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F91A9A1-01BA-4c81-863D-3BA0751E1419}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dd01946e-5501-4e11-b279-efdffd4c1487}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{de953a75-7d9c-4649-84d0-056fbe2dd8e9}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EFA7A511-B491-4312-BB35-4586B99E45ED}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{1F91A9A1-01BA-4c81-863D-3BA0751E1419}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{dd01946e-5501-4e11-b279-efdffd4c1487}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{de953a75-7d9c-4649-84d0-056fbe2dd8e9}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{EFA7A511-B491-4312-BB35-4586B99E45ED}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Product Deals
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Product Deals
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\windowsmangerprotect
Successfully repaired: [Registry Key] HKEY_LOCAL_MACHINE\Software\Clients\StartMenuInternet\Google Chrome\shell\open\command
Successfully repaired: [Registry Key] HKEY_LOCAL_MACHINE\Software\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command



~~~ Files

Failed to delete: [File] C:\Windows\system32\drivers\cherimoya.sys
Failed to delete: [File] C:\Windows\SysWOW64\number of results
Successfully deleted: [File] C:\Users\khaled\AppData\Roaming\hwUGX97qeM3
Successfully deleted: [File] C:\Users\khaled\AppData\Roaming\hwUGX97qeM3.exe
Successfully deleted: [File] C:\Users\khaled\AppData\Roaming\KPwzNC9Qm1Omb0vjaCA64A
Successfully deleted: [File] C:\Users\khaled\AppData\Roaming\KPwzNC9Qm1Omb0vjaCA64A.exe
Successfully deleted: [File] C:\Users\khaled\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\crossbrowse.lnk
Successfully deleted: [File] C:\Users\khaled\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\crossbrowse.lnk
Successfully deleted: [File] C:\Users\khaled\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk
Successfully deleted: [File] C:\Users\khaled\desktop\continue live installation.lnk
Successfully deleted: [File] C:\Users\khaled\desktop\optimizer pro.lnk
Successfully deleted: [File] C:\Users\Public\Desktop\crossbrowse.lnk
Successfully deleted: [File] C:\Users\Public\Desktop\facebook.lnk
Successfully deleted: [File] C:\Windows\system32\drivers\{b9ef2fca-9fe6-4589-b97a-90379e9f2f5e}Gw64.sys
Successfully deleted: [File] C:\Windows\system32\drivers\wsfd_1_10_0_19.sys
Successfully disinfected: [Shortcut] C:\Users\khaled\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Successfully disinfected: [Shortcut] C:\Users\khaled\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\khaled\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Successfully disinfected: [Shortcut] C:\Users\khaled\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk



~~~ Folders

Failed to delete: [Folder] C:\Program Files (x86)\boxore
Failed to delete: [Folder] C:\Program Files (x86)\miuitab
Failed to delete: [Folder] C:\Program Files (x86)\StormWarnings
Successfully deleted: [Folder] C:\Program Files (x86)\BrowserV20.07
Successfully deleted: [Folder] C:\Program Files (x86)\crossbrowse
Successfully deleted: [Folder] C:\Program Files (x86)\globalupdate
Successfully deleted: [Folder] C:\Program Files (x86)\gmsd_fr_005010035 [Adware.EoRezo]
Successfully deleted: [Folder] C:\Program Files (x86)\mbot_fr_014010035 [Adware.EoRezo]
Successfully deleted: [Folder] C:\Program Files (x86)\Optimizer Pro 3.99
Successfully deleted: [Folder] C:\Program Files (x86)\systemcontinue
Successfully deleted: [Folder] C:\Program Files (x86)\WordShark_1.10.0.19
Successfully deleted: [Folder] C:\ProgramData\abc
Successfully deleted: [Folder] C:\ProgramData\ihprotectupdate
Successfully deleted: [Folder] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\crossbrowse
Successfully deleted: [Folder] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2
Successfully deleted: [Folder] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StormWarnings
Successfully deleted: [Folder] C:\ProgramData\windowsmangerprotect
Successfully deleted: [Folder] C:\ProgramData\zombienews
Successfully deleted: [Folder] C:\Users\khaled\Appdata\Local\crossbrowse
Successfully deleted: [Folder] C:\Users\khaled\Appdata\LocalLow\company
Successfully deleted: [Folder] C:\Users\khaled\AppData\Roaming\istartsurf
Successfully deleted: [Folder] C:\Users\khaled\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWarnings
Successfully deleted: [Folder] C:\Users\khaled\AppData\Roaming\optimizer pro
Successfully deleted: [Folder] C:\Users\khaled\Documents\optimizer pro
Successfully deleted: [Folder] C:\ProgramData\{84c0650c-e1a3-53be-84c0-0650ce1a9433}
Successfully deleted: [Folder] C:\ProgramData\13820387957532291340
Successfully deleted: [Folder] C:\ProgramData\7c0535b143fc4671b6ebd202fbffe066
Successfully deleted: [Folder] C:\ProgramData\Service7609
Successfully deleted: [Folder] C:\Users\khaled\Appdata\Local\gmsd_fr_005010035 [Adware.EoRezo]
Successfully deleted: [Folder] C:\Users\khaled\Appdata\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}



~~~ Chrome


[C:\Users\khaled\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\khaled\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\khaled\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\khaled\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20/07/2015 at 15:24:20,14
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Publicité


Signaler le contenu de ce document

Publicité