cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

# AdwCleaner v5.117 - Logfile created 19/05/2016 at 21:33:29
# Updated 15/05/2016 by Xplode
# Database : 2016-05-15.2 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (X86)
# Username : ahmed - AHMED-PC
# Running from : C:\Users\ahmed\Desktop\adwcleaner_5.117.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : TheDesktopWeatherService

***** [ Folders ] *****

Folder Found : C:\Users\Public\Documents\Guid
Folder Found : C:\Program Files\WeatherTool
Folder Found : C:\Program Files\Yahoo!\Companion
Folder Found : C:\Windows\system32\config\systemprofile\AppData\Roaming\WeatherTool
Folder Found : C:\Windows\system32\config\systemprofile\AppData\Roaming\Yahoo!\Companion
Folder Found : C:\Users\ahmed\AppData\Local\FileViewPro
Folder Found : C:\Users\ahmed\AppData\LocalLow\Yahoo!\Companion
Folder Found : C:\Users\ahmed\AppData\Roaming\OpenCandy
Folder Found : C:\Users\ahmed\AppData\Roaming\WeatherTool
Folder Found : C:\Users\ahmed\AppData\Roaming\Yahoo!\Companion

***** [ Files ] *****

File Found : C:\Program Files\Yahoo!\Common\unyt.exe

***** [ DLL ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****

Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )
Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )
Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\‏مشغل تطبيقات Chrome.lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )
Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )
Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )
Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )
Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )
Shortcut Infected : C:\Users\ahmed\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( "hxxp://trustedsurf.com/?ssid=1463600896&a=1024132&src=sh&uuid=100feb18-5b5e-4a7d-a591-929a1f791a85" )

***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\AppID\yt.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\ytbbroker.EXE
Key Found : HKLM\SOFTWARE\Classes\GameTreatWidget.GameTreatWidget.1
Key Found : HKLM\SOFTWARE\Classes\yt.CacheLoader
Key Found : HKLM\SOFTWARE\Classes\yt.CacheLoader.1
Key Found : HKLM\SOFTWARE\Classes\yt.Clickstream
Key Found : HKLM\SOFTWARE\Classes\yt.Clickstream.1
Key Found : HKLM\SOFTWARE\Classes\yt.YTHelper
Key Found : HKLM\SOFTWARE\Classes\yt.YTHelper.2
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBAutoSearchAssistant
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBAutoSearchAssistant.1
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBAutoUpdaterAssistant
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBAutoUpdaterAssistant.1
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBCustomizerAssistant
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBCustomizerAssistant.1
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBGeneralAssistant
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBGeneralAssistant.1
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBMessengerAssistant
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBMessengerAssistant.1
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBSingleInstanceAssistant
Key Found : HKLM\SOFTWARE\Classes\ytbbroker.YTBSingleInstanceAssistant.1
Key Found : HKLM\SOFTWARE\Classes\YTNavAssist.NameSpaceCF
Key Found : HKLM\SOFTWARE\Classes\YTNavAssist.NameSpaceCF.1
Key Found : HKLM\SOFTWARE\Classes\YTNavAssist.NameSpacePP
Key Found : HKLM\SOFTWARE\Classes\YTNavAssist.NameSpacePP.1
Key Found : HKLM\SOFTWARE\Classes\AppID\{1CAE874F-F5C7-4BCC-BA46-9AD26DF35B93}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EFC0651C-B6D7-49CD-A6E0-B1CE9AB5FE46}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F56ACA29-1C99-40F1-AC64-2E44C4F6BC71}
Key Found : HKLM\SOFTWARE\Classes\Interface\{12D3E096-0FDF-42CC-8F44-04944F9C1648}
Key Found : HKLM\SOFTWARE\Classes\Interface\{22389F39-2CF4-47C4-B8B2-273BB16BF70C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{23E3CEB3-D63A-433E-A5D0-4DB1C501B915}
Key Found : HKLM\SOFTWARE\Classes\Interface\{29E3319C-4B3C-479F-8692-BDD2CA30BEDD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{367BD1CD-74A3-451F-B1A4-6A2DE4129A2D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{63B73044-FC1A-4FE1-991B-FDBD4CDAA868}
Key Found : HKLM\SOFTWARE\Classes\Interface\{7207E52B-821E-4C05-A8D6-2965B2BE77CF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B1E712C4-03AA-495F-B0F5-0F057E126E2A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D13DC65C-C77B-4986-9078-DEA3D34C71BB}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\PRODUCTSETUP
Key Found : HKCU\Software\WeatherTool
Key Found : HKCU\Software\Yahoo\Companion
Key Found : HKCU\Software\Yahoo\YFriendsBar
Key Found : HKCU\Software\csastats
Key Found : HKCU\Software\AppDataLow\Software\Yahoo\Companion
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKLM\SOFTWARE\WeatherTool
Key Found : HKLM\SOFTWARE\Yahoo\Companion
Key Found : HKLM\SOFTWARE\SrpnFiles
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeatherTool
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Toolbar
Key Found : HKU\.DEFAULT\Software\Yahoo\Companion
Key Found : HKU\.DEFAULT\Software\Yahoo\YFriendsBar
Key Found : HKU\.DEFAULT\Software\AppDataLow\Software\Yahoo\Companion
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\APN PIP
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\IM
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\PRODUCTSETUP
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\WeatherTool
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\Yahoo\Companion
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\Yahoo\YFriendsBar
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\csastats
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\AppDataLow\Software\Yahoo\Companion
Key Found : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\Yahoo\YFriendsBar
Key Found : HKU\S-1-5-18\Software\Yahoo\Companion
Key Found : HKU\S-1-5-18\Software\Yahoo\YFriendsBar
Key Found : HKU\S-1-5-18\Software\AppDataLow\Software\Yahoo\Companion
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://hao123/
Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.globasearch.com/?serie=211&b=3&installkey=CLxZKqK7SdEZ81JZwoLI
Data Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://hao123/
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Data Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Data Found : HKU\S-1-5-21-1492026092-2507368824-3614128289-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

***** [ Web browsers ] *****

[C:\Users\ahmed\AppData\Roaming\Mozilla\Firefox\Profiles\ebhsye1e.default\prefs.js] Found : user_pref("browser.startup.homepage", "hxxp://www.globasearch.com/?serie=211&b=2&installkey=CLxZKqK7SdEZ81JZwoLI");
[C:\Users\ahmed\AppData\Roaming\Mozilla\Firefox\Profiles\ebhsye1e.default\prefs.js] Found : user_pref("browser.newtab.url", "hxxp://www.globasearch.com/?serie=211&b=2&installkey=CLxZKqK7SdEZ81JZwoLI&newtab");
[C:\Users\ahmed\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://ar.hao123.com/

*************************

C:\AdwCleaner\AdwCleaner[S1].txt - [10902 bytes] - [19/05/2016 21:33:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [10976 bytes] ##########

Publicité


Signaler le contenu de ce document

Publicité