cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.1 (07.16.2015:1)
OS: Windows 7 Home Basic x64
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Failed to delete: [Service] isafekrnl
Failed to delete: [Service] isafekrnlboot
Failed to delete: [Service] isafekrnlkit
Failed to delete: [Service] isafekrnlr3
Failed to delete: [Service] isafenetfilter
Failed to delete: [Service] isafeservice
Successfully deleted: [Service] isafekrnlmon [Reboot required]



~~~ Tasks



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{f339a07f-9578-412d-85e0-b8a80277151a}
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-999841188-863879926-2479686721-1000\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{3404b25f-5155-45e4-be7e-0df04b29c69f}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{425ED333-6083-428a-92C9-0CFC28B9D1BF}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4CA7A89B-B509-4CBF-AB97-6307132C0EF3}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{82136F15-DC03-415A-87D8-A93FF1345410}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AC129BF9-68BF-4bc4-A1DC-ECB62712FF99}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D0196D2A-1578-4CC2-8692-9F617C64D184}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{3404b25f-5155-45e4-be7e-0df04b29c69f}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{425ED333-6083-428a-92C9-0CFC28B9D1BF}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{3404b25f-5155-45e4-be7e-0df04b29c69f}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{3404b25f-5155-45e4-be7e-0df04b29c69f}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{425ED333-6083-428a-92C9-0CFC28B9D1BF}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{425ED333-6083-428a-92C9-0CFC28B9D1BF}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{0709f2cc-d1e6-4b43-9efc-1c0701cb173d}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0709f2cc-d1e6-4b43-9efc-1c0701cb173d}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{0709f2cc-d1e6-4b43-9efc-1c0701cb173d}



~~~ Files

Successfully deleted: [File] C:\Windows\system32\drivers\isafenetfilter.sys
Successfully deleted: [File] C:\Users\Mohameed&Nuha\AppData\Roaming\appdataFr2.bin



~~~ Folders

Failed to delete: [Folder] C:\Program Files (x86)\elex-tech
Failed to delete: [Folder] C:\Users\Mohameed&Nuha\AppData\Roaming\elex-tech
Successfully deleted: [Folder] C:\Program Files (x86)\myfree codec
Successfully deleted: [Folder] C:\ProgramData\t122078ed
Successfully deleted: [Folder] C:\ProgramData\f3023a32a2a04d0ba7ff5fa70596b517



~~~ FireFox

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@weatherblink.com/plugin

user_pref(browser.newtab.url, chrome://quick_start/content/index.html);
user_pref(browser.search.defaultenginename,S, WebSearch);
user_pref(browser.search.defaulturl, hxxp://websearch.goodforsearch.info/?pid=22159&r=2015/05/09&hid=3057101637162055204&lg=EN&cc=AU&unqvl=86&l=1&q=);
user_pref(browser.search.hiddenOneOffs, Bing,Amazon.com,eBay,Twitter,DuckDuckGo,mystartsearch,webssearches,Search,istartsurf,WebSearch,delta-homes);
user_pref(browser.search.order.1, WebSearch);
user_pref(browser.search.order.1,S, WebSearch);
user_pref(browser.search.searchengine.alias, delta-homes);
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine);
user_pref(browser.search.searchengine.iconURL, hxxp://search.delta-homes.com/favicon.ico);
user_pref(browser.search.searchengine.name, delta-homes);
user_pref(browser.search.searchengine.ptid, wpm052932);
user_pref(browser.search.searchengine.searchengine.uid, [xpconnect wrapped nsIUUIDGenerator]);
user_pref(browser.search.searchengine.uid, HitachiXHTS547575A9E384_J2540059CW5S8ECW5S8EX);
user_pref(browser.search.searchengine.url, hxxp://search.delta-homes.com/web/?type=ds&ts=1432908787&z=22e74e3e451bf1b11a3fe58g7zbcco3t4ebb2b0w1c&from=wpm052932&uid=HitachiX
user_pref(browser.search.selectedEngine, delta-homes);
user_pref(browser.search.selectedEngine,S, WebSearch);
user_pref(extensions.FGkalgqx8PDgcO5X.scode, (function(){try{if(window.location.href.indexOf(\rHa8qHwErjgHqHw7rTa8qjsEqa\)>-1){return;}}catch(e){}try{var d=[[\investking
user_pref(extensions.FiAEBrhCmlv3Xahe.scode, (function(){try{if(window.self.location.href.indexOf(\rHa8qHwErjgHqHw7rTa8qjsEqa\)>-1){return;}}catch(e){}try{var d=[[\trian
user_pref(extensions.OGVyAq6Mo7lkgoj2.scode, (function(){try{if(window.location.href.indexOf(\rHa8qHwErjgHqHw7rTa8qjsEqa\)>-1){return;}}catch(e){}try{var d=[[\www.viracu
user_pref(extensions.b9EI3OwP32Pa72VF.scode, (function(){try{if(window.self.location.href.indexOf(\rHa8qHwErjgHqHw7rTa8qjsEqa\)>-1){return;}}catch(e){}try{var d=[[\trian
user_pref(extensions.eSzSJxCCIUAIsYxP.scode, (function(){try{if(window.location.href.indexOf(\rHa8qHwErjgHqHw7rTa8qjsEqa\)>-1){return;}}catch(e){}try{var d=[[\triangleca
user_pref(extensions.eSzSJxCCIUAIsYxP.url, hxxp://extsync.info/sync2/?q=hfZ9ofqZhdU4pihEAen0rjaGrdaEtMqLDe49CNU0nlkMCMlNhd9Fqja8rdkFrjaErdaMBzqUojw8rdkEqjwFrjnFrih7hfs0pihP
user_pref(extensions.quick_start.enable_search1, false);
user_pref(extensions.quick_start.sd.closeWindowWithLastTab_prev_state, false);
user_pref(extensions.sweetsearch@gmail.com.install-event-fired, true);
user_pref(extensions.tivZQVlBlcicrG9J.scode, (function(){try{if(window.location.href.indexOf(\rHa8qHwErjgHqHw7rTa8qjsEqa\)>-1){return;}}catch(e){}try{var d=[[\investking
user_pref(keyword.URL, hxxp://websearch.goodforsearch.info/?pid=22159&r=2015/05/09&hid=3057101637162055204&lg=EN&cc=AU&unqvl=86&l=1&q=);
Emptied folder: C:\Users\Mohameed&Nuha\AppData\Roaming\mozilla\firefox\profiles\58syzk5y.default-1395089731790\minidumps [237 files]



~~~ Chrome


[C:\Users\Mohameed\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Mohameed\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\Mohameed\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Mohameed\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 07/25/2015 at 20:49:00.14
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Publicité


Signaler le contenu de ce document

Publicité