cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

# AdwCleaner v5.014 - Logfile created 24/10/2015 at 01:52:04
# Updated 18/10/2015 by Xplode
# Database : 2015-10-18.5 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Mahmoud - MAHMOUD-HP
# Running from : G:\Programs\adwcleaner_5.014.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

Folder Found : C:\Program Files (x86)\1ClickDownload
Folder Found : C:\Program Files (x86)\continuetosave
Folder Found : C:\Program Files (x86)\goforfiles
Folder Found : C:\Program Files (x86)\MyPC Backup
Folder Found : C:\Program Files (x86)\onewebsearch
Folder Found : C:\Program Files (x86)\PC Speed Maximizer
Folder Found : C:\Program Files (x86)\Ss-Helper
Folder Found : C:\Program Files (x86)\SupTab
Folder Found : C:\Program Files (x86)\SqueakyChocolate
Folder Found : C:\Program Files (x86)\ContinueToSave
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\DSearchLink
Folder Found : C:\ProgramData\eSafe
Folder Found : C:\ProgramData\IePluginService
Folder Found : C:\ProgramData\Premium
Folder Found : C:\ProgramData\StarApp
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\ProgramData\Trymedia
Folder Found : C:\Users\Afa2eef\AppData\Local\pay-by-ads
Folder Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhgjpfdjhlimkkdgnecbgnefdafbcncc
Folder Found : C:\Users\Afa2eef\AppData\LocalLow\buenosearch LTD
Folder Found : C:\Users\Afa2eef\AppData\LocalLow\Delta
Folder Found : C:\Users\Afa2eef\AppData\Roaming\EZDownloader
Folder Found : C:\Users\Afa2eef\AppData\Roaming\goforfiles
Folder Found : C:\Users\Afa2eef\AppData\Roaming\Systweak
Folder Found : C:\Users\Afa2eef\AppData\Roaming\smileyswelove
Folder Found : C:\Users\Mahmoud\AppData\Local\iexplorer\Browsers Monitor
Folder Found : C:\Users\Mahmoud\AppData\Local\pay-by-ads
Folder Found : C:\Users\Mahmoud\AppData\Local\SwvUpdater
Folder Found : C:\Users\Mahmoud\AppData\Roaming\337Games
Folder Found : C:\Users\Mahmoud\AppData\Roaming\Babylon
Folder Found : C:\Users\Mahmoud\AppData\Roaming\eDownload
Folder Found : C:\Users\Mahmoud\AppData\Roaming\eIntaller
Folder Found : C:\Users\Mahmoud\AppData\Roaming\goforfiles
Folder Found : C:\Users\Mahmoud\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Mahmoud\AppData\Roaming\SupTab
Folder Found : C:\Users\Mahmoud\AppData\Roaming\Systweak
Folder Found : C:\Users\Mahmoud\AppData\Roaming\YourFileDownloader
Folder Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\Extensions\quick_start@gmail.com
Folder Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\Extensions\sl0goqujo@ljw-kao.net
Folder Found : C:\Users\Mahmoud\Documents\PC Speed Maximizer
Folder Found : C:\Windows\SysWOW64\BrowserProtect
Folder Found : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\defaulttab

***** [ Files ] *****

File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nhgjpfdjhlimkkdgnecbgnefdafbcncc_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nhgjpfdjhlimkkdgnecbgnefdafbcncc_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\bprotector web data
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_isearch.omiga-plus.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_isearch.omiga-plus.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxps_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_adobe-photoshop-lightroom.ar.softonic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_adobe-photoshop-lightroom.ar.softonic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_au.ask.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_au.ask.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_bluestacks-app-player.en.softonic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_bluestacks-app-player.en.softonic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_embed.movshare.net_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_embed.movshare.net_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_gimp-extensions.en.softonic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_gimp-extensions.en.softonic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_greasemonkey.en.softonic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_greasemonkey.en.softonic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_in.yhs4.search.yahoo.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_in.yhs4.search.yahoo.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_int.ask.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_int.ask.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_isearch.omiga-plus.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_isearch.omiga-plus.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_mobogenie.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_mobogenie.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_myimageconverter.dl.tb.ask.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_myimageconverter.dl.tb.ask.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nokia-ovi-suite.en.softonic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nokia-ovi-suite.en.softonic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nokia-pc-suite.en.softonic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nokia-pc-suite.en.softonic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_omigaplus.inspsearch.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_omigaplus.inspsearch.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_p2-gejrqxgm7tju4-jzjtcveohvlgvq4j-if-v6exp3-v4.metric.gstatic.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_p2-gejrqxgm7tju4-jzjtcveohvlgvq4j-if-v6exp3-v4.metric.gstatic.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_safepcrepair.dl.tb.ask.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_safepcrepair.dl.tb.ask.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_start.qone8.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_start.qone8.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.babylon.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.babylon.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mobogenie.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mobogenie.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mysearchresults.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mysearchresults.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
File Found : C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
File Found : C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\bprotector_extensions.rdf
File Found : C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\bprotector_extensions.rdf
File Found : C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\bprotector_prefs.js
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Extensions\searchswitch.crx
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxps_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ar.hao123.com_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ar.hao123.com_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.qone8.com_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.qone8.com_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.searchiseasy.info_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.searchiseasy.info_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.searchouse.info_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.searchouse.info_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.searchrocket.info_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.searchrocket.info_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.ask.com_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_websearch.a-searchpage.info_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
File Found : C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
File Found : C:\Users\Mahmoud\AppData\Roaming\LiveSupport.exe_log.txt
File Found : C:\Users\Mahmoud\AppData\Roaming\regsvr32.exe_log.txt
File Found : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\eBay.lnk
File Found : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk
File Found : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bm.lnk
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\bprotector_extensions.rdf
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\bprotector_extensions.rdf
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\invalidprefs.js
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\searchplugins\Babylon.xml
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\searchplugins\BrowserProtect.xml
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\searchplugins\buenosearch.xml
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\searchplugins\delta.xml
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\searchplugins\dsrlte.xml
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\searchplugins\WebSearch.xml
File Found : C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\user.js
File Found : C:\Users\Mahmoud\Desktop\eBay.lnk
File Found : C:\Windows\SysNative\roboot64.exe

***** [ DLLs ] *****


***** [ Shortcuts ] *****

Shortcut Infected : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://ar.hao123.com/?tn=opencd_hp_hao123_ar )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox\Mozilla Firefox (Safe Mode).lnk ( hxxp://start.qone8.com/?type=sc&ts=1382357413&from=wpc&uid=HitachiXHTS547564A9E384_J2130053H1MH8AH1MH8AX )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk ( hxxp://start.qone8.com/?type=sc&ts=1382357413&from=wpc&uid=HitachiXHTS547564A9E384_J2130053H1MH8AH1MH8AX )
Shortcut Infected : C:\Users\Mahmoud\Desktop\Search.lnk ( -url hxxp://www.buenosearch.com/?babsrc=DT_ss&mntrId=0C2E9439E55DB228&affID=128235&tsp=5276 -wbr 4 )
Shortcut Infected : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://start.qone8.com/?type=sc&ts=1382357413&from=wpc&uid=HitachiXHTS547564A9E384_J2130053H1MH8AH1MH8AX )
Shortcut Infected : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://ar.hao123.com/?tn=opencd_hp_hao123_ar )
Shortcut Infected : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://ar.hao123.com/?tn=opencd_hp_hao123_ar )
Shortcut Infected : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk ( hxxp://ar.hao123.com/?tn=opencd_hp_hao123_ar )
Shortcut Infected : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk ( hxxp://ar.hao123.com/?tn=opencd_hp_hao123_ar )
Shortcut Infected : C:\Users\Mahmoud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( hxxp://ar.hao123.com/?tn=opencd_hp_hao123_ar )
Shortcut Infected : C:\Users\Afa2eef\Desktop\Google Chrome.lnk ( hxxp://start.qone8.com/?type=sc&ts=1382357413&from=wpc&uid=HitachiXHTS547564A9E384_J2130053H1MH8AH1MH8AX )
Shortcut Infected : C:\Users\Afa2eef\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk ( hxxp://start.qone8.com/?type=sc&ts=1382357413&from=wpc&uid=HitachiXHTS547564A9E384_J2130053H1MH8AH1MH8AX )

***** [ Scheduled tasks ] *****

Task Found : GoforFilesUpdate
Task Found : RunAsStdUser Task
Task Found : Yahoo! Search
Task Found : Yahoo! Search Updater
Task Found : YourFile DownloaderUpdate
Task Found : YourFile DownloaderUpdate

***** [ Registry ] *****

Key Found : HKCU\Software\Classes\pokki
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginService
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Wpm
Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKCU\Software\5b55dc8cb669ba48
Key Found : HKLM\SOFTWARE\5b55dc8cb669ba48
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [quick_start@gmail.com]
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
Key Found : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7825CFB6-490A-436B-9F26-4A7B5CFC01A9}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Found : HKU\.DEFAULT\Software\Default Tab
Key Found : HKU\.DEFAULT\Software\DefaultTab
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\DefaultTab
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\delta LTD
Key Found : HKCU\Software\GoforFiles
Key Found : HKCU\Software\Popajar
Key Found : HKCU\Software\SmileysWeLove
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\WEDLMNGR
Key Found : HKCU\Software\YourFileDownloader
Key Found : HKLM\SOFTWARE\Babylon
Key Found : HKLM\SOFTWARE\BabylonToolbar
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\DataMngr
Key Found : HKLM\SOFTWARE\dt soft\daemon tools toolbar
Key Found : HKLM\SOFTWARE\GoforFiles
Key Found : HKLM\SOFTWARE\hdcode
Key Found : HKLM\SOFTWARE\IePlugin
Key Found : HKLM\SOFTWARE\qone8Software
Key Found : HKLM\SOFTWARE\SP Global
Key Found : HKLM\SOFTWARE\SProtector
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWPM
Key Found : HKLM\SOFTWARE\systweak
Key Found : HKLM\SOFTWARE\Trymedia Systems
Key Found : HKLM\SOFTWARE\Wpm
Key Found : HKLM\SOFTWARE\YourFileDownloader
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\DataMngr_Toolbar
Key Found : [x64] HKCU\Software\delta LTD
Key Found : [x64] HKCU\Software\GoforFiles
Key Found : [x64] HKCU\Software\Popajar
Key Found : [x64] HKCU\Software\SmileysWeLove
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\WEDLMNGR
Key Found : [x64] HKCU\Software\YourFileDownloader
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\DefaultTab
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\DefaultTab
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://start.qone8.com/?type=hp&ts=1382357413&from=wpc&uid=HitachiXHTS547564A9E384_J2130053H1MH8AH1MH8AX
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
Key Found : HKU\S-1-5-21-1928098380-3744966502-37342962-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
Key Found : HKU\S-1-5-21-1928098380-3744966502-37342962-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKU\S-1-5-21-1928098380-3744966502-37342962-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}

***** [ Web browsers ] *****

[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("aol_toolbar.default.homepage.check", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("aol_toolbar.default.search.check", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("browser.search.defaulturl", "hxxp://websearch.searchiseasy.info/?pid=298&r=2013/08/28&hid=1373912961250097813&lg=EN&cc=EG&unqvl=33&l=1&q=");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.2X8YOBB2GW.scode", "(function(){try{if(window.location.href.indexOf(\"rHn9qjaEpdC7rn\")>-1){return;}}catch(e){}try{var d=[[\"www.ebay.com\",\"www.ewoss.com\",\"livewebcams.xyz\",[...]
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.516413257dd33.scode", "(function(){try{if(window.location.href.indexOf(\"rTk8rHn4qjgEra\")>-1){return;}}catch(e){}try{var d=[[\"www.ebay.com\",\"www.ewoss.com\",\"livewebcams.xyz[...]
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.PZTjQxxy.scode", "(function(){try{if(window.location.href.indexOf(\"rjr6rHUFrTU7rjs8rda4qHYFrE\")>-1){return;}}catch(e){}try{var d=[[\"www.ebay.com\",\"www.ewoss.com\",\"livewebc[...]
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.admin", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.aflt", "babsst");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.appId", "{37EB75F2-7392-4DBE-B5AD-147EC6D7BF5F}");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.autoRvrt", "false");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.bbDpng", "11");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.cntry", "EG");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.dfltLng", "ar");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.excTlbr", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.ffxUnstlRst", true);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.hdrMd5", "CB517DF70DE2B5C0E414083B9ED5123C");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.id", "0c2e2ef90000000000009439e55db228");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.instlDay", "16233");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.instlRef", "sst");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.lastB", "hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=0C2E9439E55DB228&affID=128235&tsp=5276");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.lastVrsnTs", "1.8.28.70:06:47");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.newTab", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.prdct", "buenosearch");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.prtnrId", "buenosearch");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.rvrt", "false");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.sg", "azb");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.smplGrp", "none");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.storage\\storage\\mpvinpagemutex", "ab7c98fbd14d885f33f5563cb22293f1@Wed Oct 08 2014 02:34:57 GMT+0200 (Egypt Standard Time)");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.tb_url", "hxxp://www.buenosearch.com/?q={searchTerms}&babsrc=TB_ss&mntrId=0C2E9439E55DB228&affID=128235&tsp=5276");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.tlbrId", "base");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.tlbrSrchUrl", "hxxp://www.buenosearch.com/?q={searchTerms}&babsrc=TB_ss&mntrId=0C2E9439E55DB228&affID=128235&tsp=5276");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.vrsn", "1.8.28.7");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.vrsnTs", "1.8.28.70:06:47");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.buenosearch.vrsni", "1.8.28.7");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.crossrider.bic", "1420a2e3964b76587fcab9db64a366a1");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.admin", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.aflt", "babsst");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.autoRvrt", "false");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.dfltLng", "en");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.excTlbr", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.ffxUnstlRst", true);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.id", "0c2e2ef90000000000009439e55db228");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.instlDay", "15861");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.instlRef", "sst");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.newTab", false);
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.prdct", "delta");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.prtnrId", "delta");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.rvrt", "false");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.smplGrp", "none");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.tlbrId", "base");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.tlbrSrchUrl", "");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.vrsn", "1.8.21.5");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.vrsnTs", "1.8.21.510:17:31");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta.vrsni", "1.8.21.5");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta_i.babExt", "");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta_i.babTrack", "affID=119291&tt=gc_");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.delta_i.srcExt", "ss");
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("extensions.yT9CbVA.scode", "(function(){try{if(window.location.href.indexOf(\"rjr6rHUFrTU7rjs8rda4qHYFrE\")>-1){return;}}catch(e){}try{var d=[[\"www.ebay.com\",\"www.ewoss.com\",\"livewebca[...]
[C:\Users\Mahmoud\AppData\Roaming\Mozilla\Firefox\Profiles\m9y1z992.default\prefs.js] [Preference] Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://websearch.searchouse.info/?unqvl=25");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("aol_toolbar.default.homepage.check", false);
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("aol_toolbar.default.search.check", false);
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("browser.newtab.url", "hxxp://rts.dsrlte.com/?m=tab");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("browser.search.order.1", "Delta Search");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxp://rts.dsrlte.com");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("extensions.crossrider.bic", "141dfe6fe65ad6c93f1dc44b1b9f53eb");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("keyword.URL", "hxxp://rts.dsrlte.com/?q=");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "WebSearch");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "WebSearch");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://websearch.a-searchpage.info/?pid=924&r=2013/06/08&hid=2553495600&lg=EN&cc=EG&unqvl=18");
[C:\Users\Afa2eef\AppData\Roaming\Mozilla\Firefox\Profiles\a4axra1p.default\prefs.js] [Preference] Found : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://websearch.a-searchpage.info/?pid=924&r=2013/06/08&hid=2553495600&lg=EN&cc=EG&unqvl=18&l=1&q=");
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : mdb-viewer-plus.en.softonic.com
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search here
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=0C2E9439E55DB228&affID=128235&tsp=5276
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://ar.hao123.com/?tn=opencd_hp_hao123_ar
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://start.qone8.com/?type=hp&ts=1382357413&from=wpc&uid=HitachiXHTS547564A9E384_J2130053H1MH8AH1MH8AX
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : acfoobbgoakpihljnfedbcfaipcdlfhk
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : ogfjmhfnldnajmfaofeiaepghjenbgjo
[C:\Users\Mahmoud\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pelmeidfhdlhlbjimpabfcbnnojbboma
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : pay-by-ads.com
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : delta-search.com
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search here
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : youwave.en.softonic.com
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://rts.dsrlte.com
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : acfoobbgoakpihljnfedbcfaipcdlfhk
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : nhgjpfdjhlimkkdgnecbgnefdafbcncc
[C:\Users\Afa2eef\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Found : hxxp://rts.dsrlte.com

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [45034 bytes] ##########

Publicité


Signaler le contenu de ce document

Publicité