Format du document : text/plain
Prévisualisation
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.2 (09.22.2013:1)
OS: Windows 7 Home Premium x64
Ran by Bens on 23/09/2013 at 19:50:26,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortapp.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escorteng.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortlbr.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\esrv.exe
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\giant savings
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3513351317-1710483086-3462974254-1001\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\applications\ilividsetupv1.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\b
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\giant savings_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\giant savings_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ilividsetupv1_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ilividsetupv1_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\offerbox_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\offerbox_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\toolbar_vit_sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\toolbar_vit_sweetim_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5b58ef61-85f2-4977-97a5-84c19f926579}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220022442279}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{33333333-3333-3333-3333-330033443379}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660066446679}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{77777777-7777-7777-7777-770077447779}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220022442279}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{33333333-3333-3333-3333-330033443379}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660066446679}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{77777777-7777-7777-7777-770077447779}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660066446679}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{77777777-7777-7777-7777-770077447779}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660066446679}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{77777777-7777-7777-7777-770077447779}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{1AF22047-3E82-4661-8A32-AD37C17565CE}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\Bens\AppData\Roaming\offerbox"
Successfully deleted: [Folder] "C:\Users\Bens\appdata\local\giant savings"
Successfully deleted: [Folder] "C:\Program Files (x86)\ilivid"
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{0C90FB04-D805-44B7-A642-FFD1E499C26A}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{0E14E0F7-2D96-43D0-9BAF-E6B9BD52A61B}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{1103A325-AEE8-480C-B3CF-71FA2DFA7362}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{169B481B-AAB0-4B16-A64E-406722EF29BD}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{176430C3-8570-47BA-A3DB-207178FF2B3C}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{3E276A9E-A242-440B-AFF7-88A826A254A3}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{42B46FDC-2221-478E-8E36-8E836E151B57}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{48E3F2C8-E436-423A-9450-F059D4FC1B97}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{4F87DFF9-CA5C-4023-9B16-46A8C617F461}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{52AD5091-4EA2-4743-B9EE-E61F246E7B9A}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{5EB29C7C-E280-4880-8E31-5D63FAF577A9}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{7374D827-59A3-4813-9F13-D4077477E55F}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{85A826BA-CE8B-46C2-97BC-DE09291791D0}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{86A84159-6553-490A-AA9F-EC53D6800C88}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{8B65B9F4-EA05-45BF-8A7A-E8F141F5E5C0}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{9382FFDC-1C9E-47ED-BF63-47F1CDA995E9}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{A15059DF-415F-4218-8F29-77E1705B4F05}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{CB701FBB-7D6B-4C44-9F35-A200A9A69C78}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{CDC97323-19E8-4635-BEA0-458528054A4C}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{FD192527-9909-4550-8BC0-00DAF31D8293}
Successfully deleted: [Empty Folder] C:\Users\Bens\appdata\local\{FF276E7D-9779-40D9-89C9-E9DF90D1FCD0}
Successfully deleted: [Folder] "C:\ProgramData\ask"
~~~ FireFox
Successfully deleted: [File] C:\user.js
Successfully deleted: [File] C:\Users\Bens\AppData\Roaming\mozilla\firefox\profiles\bo39l8jc.default\searchplugins\askcom.xml
Successfully deleted the following from C:\Users\Bens\AppData\Roaming\mozilla\firefox\profiles\bo39l8jc.default\prefs.js
user_pref("extensions.antigameorigin@antigame.de.AGO_FR_UNI119_100433_Current", "{\"version\":1,\"I31\":1,\"I32\":1,\"I33\":1,\"I34\":1,\"I35\":1,\"F14\":0,\"F15\":0,\"F63\":\
user_pref("extensions.antigameorigin@antigame.de.AGO_FR_UNI119_103378_Current", "{\"version\":1,\"I31\":1,\"I33\":1,\"I34\":1,\"I35\":1,\"F14\":0,\"F15\":0,\"F63\":\"\",\"E23\
user_pref("extensions.antigameorigin@antigame.de.AGO_FR_UNI66_101857_Current", "{\"version\":1,\"I31\":1,\"I32\":1,\"I33\":1,\"I34\":1,\"I35\":1,\"F14\":0,\"F15\":0,\"F63\":\"
user_pref("extensions.antigameorigin@antigame.de.AGO_FR_UNI66_101917_Current", "{\"version\":1,\"I31\":1,\"I33\":1,\"I34\":1,\"I35\":1,\"E23\":1,\"Updated\":0,\"delta\":1400,\
user_pref("extensions.antigameorigin@antigame.de.AGO_FR_UNI66_101931_Current", "{\"version\":1,\"I31\":1,\"I33\":1,\"I34\":1,\"I35\":1,\"E23\":1,\"delta\":2191,\"Notify\":6,\"
user_pref("extensions.greasemonkey.scriptvals.antikiller/AntiGame.UNI66_FRTimeZoneDelta", 0);
Emptied folder: C:\Users\Bens\AppData\Roaming\mozilla\firefox\profiles\bo39l8jc.default\minidumps [141 files]
~~~ Chrome
Successfully deleted: [Folder] C:\Users\Bens\appdata\local\Google\Chrome\User Data\Default\Extensions\ndkhncnongaclekkbelchmeafffimifj
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\ndkhncnongaclekkbelchmeafffimifj
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23/09/2013 at 19:58:04,99
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~