cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

# AdwCleaner v5.026 - Logfile created 24/12/2015 at 01:20:50
# Updated 21/12/2015 by Xplode
# Database : 2015-12-23.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : Akram - AKRAM-PC
# Running from : C:\Users\Akram\Downloads\adwcleaner_5.026.exe
# Option : Scan
# Support : hxxp://toolslib.net/forum

***** [ Services ] *****

Service Found : BCUService

***** [ Folders ] *****

Folder Found : C:\Program Files (x86)\DeviceVM
Folder Found : C:\ProgramData\DeviceVM
Folder Found : C:\ProgramData\Tmp0x0x
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found : C:\Users\Akram\AppData\Local\Hola
Folder Found : C:\Users\Akram\AppData\Local\28050
Folder Found : C:\Users\Akram\AppData\Roaming\DeviceVM
Folder Found : C:\Users\Akram\AppData\Roaming\yoursearching
Folder Found : C:\Users\Akram\AppData\Roaming\Mozilla\Firefox\Profiles\xapwkzzo.default\Extensions\yahooprotected@gmail.com

***** [ Files ] *****

File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ieakfmpjhljbpbfpldjkddkjmmgjmgon_0.localstorage
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ieakfmpjhljbpbfpldjkddkjmmgjmgon
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ar.hao123.com_0.localstorage
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ar.hao123.com_0.localstorage-journal
File Found : C:\Users\Akram\AppData\Roaming\Mozilla\Firefox\Profiles\xapwkzzo.default\searchplugins\webssearches.xml

***** [ DLL ] *****


***** [ Shortcuts ] *****

Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rummy.com\Rummy.lnk ( hxxp://www.yoursearching.com/?type=sc&ts=1449367805&z=1463013e4128f858a610f25g9z9zetec8q4mcb5e8z&from=cor&uid=ST31000524AS_6VPBXP65XXXX6VPBXP65 )
Shortcut Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rummy.com\Uninstall Rummy.lnk ( hxxp://www.yoursearching.com/?type=sc&ts=1449367805&z=1463013e4128f858a610f25g9z9zetec8q4mcb5e8z&from=cor&uid=ST31000524AS_6VPBXP65XXXX6VPBXP65 )

***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook
Key Found : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook.1
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : HKCU\Software\Classes\keepmysearch
Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKCU\Software\MozillaPlugins\@hola.org/FlashPlayer
Key Found : HKCU\Software\MozillaPlugins\@hola.org/vlc
Key Found : HKLM\System\CurrentControlSet\Services\Eventlog\Application\Update WebConnect
Key Found : HKLM\System\CurrentControlSet\Services\Eventlog\Application\Util WebConnect
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [deskCutv2@gmail.com]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [yahooprotected@gmail.com]
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2316C625-B487-4410-A1A5-FF040B65245F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{7C28CEF1-A4A6-4B6A-8B97-C44F1267753C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316C625-B487-4410-A1A5-FF040B65245F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2316C625-B487-4410-A1A5-FF040B65245F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2316C625-B487-4410-A1A5-FF040B65245F}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7C28CEF1-A4A6-4B6A-8B97-C44F1267753C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKCU\Software\Bitberry Software
Key Found : HKCU\Software\Bitberry
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Myfree Codec
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\WebConnect
Key Found : HKCU\Software\PRODUCTSETUP
Key Found : HKCU\Software\Hola
Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKLM\SOFTWARE\Myfree Codec
Key Found : HKLM\SOFTWARE\WebConnect
Key Found : HKLM\SOFTWARE\FFPluginHp
Key Found : HKLM\SOFTWARE\yoursearchingSoftware
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A47B7CA8-8A88-4648-B8ED-4F6CAEF1BEF8}
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.yoursearching.com/?type=sc&ts=1449367805&z=1463013e4128f858a610f25g9z9zetec8q4mcb5e8z&from=cor&uid=ST31000524AS_6VPBXP65XXXX6VPBXP65
Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command [] - "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" hxxp://www.yoursearching.com/?type=sc&ts=1449367805&z=1463013e4128f858a610f25g9z9zetec8q4mcb5e8z&from=cor&uid=ST31000524AS_6VPBXP65XXXX6VPBXP65

***** [ Web browsers ] *****


########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [7122 bytes] ##########
# AdwCleaner v5.200 - Logfile created 17/06/2016 at 09:56:32
# Updated 14/06/2016 by ToolsLib
# Database : 2016-06-16.2 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (X64)
# Username : Akram - AKRAM-PC
# Running from : C:\Users\Akram\Desktop\adwcleaner_5.200.exe
# Option : Scan
# Support : https://toolslib.net/forum

***** [ Services ] *****

Service Found : swdumon

***** [ Folders ] *****

Folder Found : C:\ProgramData\slimware utilities inc
Folder Found : C:\ProgramData\SlimWare Utilities, Inc
Folder Found : C:\ProgramData\Application Data\slimware utilities inc
Folder Found : C:\ProgramData\Application Data\SlimWare Utilities, Inc
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\driverupdate
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\slimcleaner plus
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
Folder Found : C:\Users\Public\Documents\Downloaded Installers
Folder Found : C:\Users\Public\Documents\Downloaded Installers\{416964B7-855B-46DE-B39D-08DA443F7CD0}
Folder Found : C:\Program Files (x86)\driverupdate
Folder Found : C:\Program Files (x86)\Popcorn Time
Folder Found : C:\Windows\Installer\{416964B7-855B-46DE-B39D-08DA443F7CD0}
Folder Found : C:\Users\Akram\AppData\Local\slimware utilities inc
Folder Found : C:\Users\Akram\AppData\Local\Downloaded Installers
Folder Found : C:\Users\Akram\AppData\Local\Popcorn Time
Folder Found : C:\Users\Akram\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
Folder Found : C:\Program Files\slimservice
Folder Found : C:\Users\Akram\AppData\Local\VirtualStore\Program Files (x86)\Popcorn Time

***** [ Files ] *****

File Found : C:\Users\Public\Desktop\driverupdate.lnk
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ieakfmpjhljbpbfpldjkddkjmmgjmgon
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.vshare.com_0.localstorage
File Found : C:\Users\Akram\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.vshare.com_0.localstorage-journal
File Found : C:\Windows\SysNative\drivers\swdumon.sys

***** [ DLL ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

Task Found : driverupdate startup

***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Key Found : HKCU\Software\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverUpdate
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{416964B7-855B-46DE-B39D-08DA443F7CD0}
Key Found : HKU\S-1-5-21-1281843458-3348855724-465833647-1000\Software\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\50D2BAFD096C90345A82B25A790BDF69
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\50D2BAFD096C90345A82B25A790BDF69

***** [ Web browsers ] *****

[C:\Users\Akram\AppData\Roaming\Mozilla\Firefox\Profiles\xapwkzzo.default\prefs.js] Found : user_pref("browser.search.searchengine.searchengine.uid", "[xpconnect wrapped nsIUUIDGenerator]");
[C:\Users\Akram\AppData\Roaming\Mozilla\Firefox\Profiles\xapwkzzo.default\prefs.js] Found : user_pref("network.hxxp.request.max-start-delay", 0);
[C:\Users\Akram\AppData\Roaming\Mozilla\Firefox\Profiles\xapwkzzo.default\user.js] Found : user_pref("network.hxxp.request.max-start-delay", 0);

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [7120 bytes] - [24/12/2015 01:27:27]
C:\AdwCleaner\AdwCleaner[S1].txt - [11004 bytes] - [24/12/2015 01:20:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [11078 bytes] ##########

Publicité


Signaler le contenu de ce document

Publicité