cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

# -------------------------------
# Malwarebytes AdwCleaner 7.2.5.0
# -------------------------------
# Build: 11-26-2018
# Database: 2018-12-07.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-11-2018
# Duration: 00:00:27
# OS: Windows 10 Home
# Cleaned: 92
# Failed: 1


***** [ Services ] *****

Deleted rtop
Deleted ByteFenceService
Deleted ASO3DiskOptimizer
Deleted RestoroActiveProtection
Deleted ReviverSoft Smart Monitor Service

***** [ Folders ] *****

Deleted C:\Users\jean-\AppData\Local\ONTARGETYOGATOOLTAB
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
Deleted C:\Program Files (x86)\Advanced System Protector
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
Deleted C:\ProgramData\ByteFence
Deleted C:\Program Files\ByteFence
Deleted C:\Users\jean-\AppData\Local\Temp\appmanager
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advanced system optimizer 3
Not Deleted C:\Program Files (x86)\advanced system optimizer 3
Deleted C:\ProgramData\Restoro
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Restoro
Deleted C:\Program Files\Restoro
Deleted C:\Users\jean-\AppData\Roaming\{28e56cfb-e30e-4f66-85d8-339885b726b8}
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Disk Recovery
Deleted C:\Program Files (x86)\Advanced Disk Recovery
Deleted C:\ProgramData\Systweak
Deleted C:\Users\jean-\AppData\Local\Systweak
Deleted C:\Users\jean-\AppData\Roaming\Systweak

***** [ Files ] *****

Deleted C:\Users\Public\Desktop\InstallSafe.lnk
Deleted C:\Windows\System32\sasnative64.exe
Deleted C:\Users\jean-\AppData\Local\Temp\restoro-downloader.xml
Deleted C:\Users\jean-\AppData\Local\Temp\restoro-downloader.log
Deleted C:\Users\jean-\AppData\Local\Temp\restoro-version.xml
Deleted C:\Users\jean-\AppData\Local\Temp\restoro-setup.log
Deleted C:\Users\jean-\AppData\Local\Temp\RestoroSetup.exe
Deleted C:\Users\jean-\AppData\Local\Temp\restoro_service_version.xml
Deleted C:\Windows\restoro.ini
Deleted C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ADVANCED DISK RECOVERY.LNK
Deleted C:\Users\Public\Desktop\ADVANCED DISK RECOVERY.LNK

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\Advanced System Protector_startup
Deleted C:\Windows\System32\Tasks\Advanced System Protector
Deleted C:\Windows\System32\Tasks\ByteFence
Deleted C:\Windows\System32\Tasks\Start InstallSafe at logon

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{63254A13-4430-46AA-B0CF-88FEEC6708B6}
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\hemailaccessonline.com
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DA71BA65-680A-4212-9150-6239217B53DC_Systweak_Di~BECC4794_is1
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~CF2982E1_is1
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\DOMStorage\myway.com
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{C99650F6-688D-4BAB-86E4-BC045EF0FFBF}
Deleted HKLM\Software\Classes\Interface\{C99650F6-688D-4BAB-86E4-BC045EF0FFBF}
Deleted HKLM\SOFTWARE\CLASSES\UNKNOWN\SHELL\OPENDLG\COMMAND|ADVANCED SYSTEM PROTECTOR.BAK
Deleted HKLM\SOFTWARE\CLASSES\UNKNOWN\SHELL\OPENAS\COMMAND|ADVANCED SYSTEM PROTECTOR.BAK
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{B0F3F4F9-CB76-9A52-9442-B481A5FF49D3}
Deleted HKLM\Software\Classes\ASO3_JUMP_LIST
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BAF9871-067A-4E95-88A5-6857F8D94133}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Advanced System Protector_startup
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1DA62679-C465-42C3-9B6E-1E83BFD539D4}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1DA62679-C465-42C3-9B6E-1E83BFD539D4}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Advanced System Protector
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence
Deleted HKCU\Software\ByteFence
Deleted HKLM\Software\Wow6432Node\ByteFence
Deleted HKLM\Software\ByteFence
Deleted HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9A4A3235-79B0-48E0-BD43-EF07EFB93626}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2AA44AF4-C116-4219-B800-4573E7E6D421}_is1
Deleted HKLM\SOFTWARE\Classes\Directory\shell\ByteFence Folder Scan
Deleted HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{D23C3BA7-6DC3-4DDF-9BDF-12599E852A40}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{2A03A149-3CD3-429D-B4A4-28D9D2974874}
Deleted HKLM\Software\Classes\TypeLib\{2A03A149-3CD3-429D-B4A4-28D9D2974874}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8DBEA836-802B-4ABC-8E87-EB1095615473}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Start InstallSafe at logon
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\staticimgfarm.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\ak.staticimgfarm.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\hp.myway.com
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Restoro
Deleted HKLM\Software\Restoro
Deleted HKLM\Software\Classes\CLSID\{BA827421-E282-479E-AE60-34796877B8AE}
Deleted HKLM\Software\Classes\CLSID\{AE198C69-7358-4856-9029-F4C0FAD524C1}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\ReviverSoft Smart Monitor Service.exe
Deleted HKLM\SOFTWARE\Classes\AppID\ReviverSoft Smart Monitor Service.exe
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{2A2423AE-1AD9-4B60-A021-BBD75766C2FD}
Deleted HKLM\SOFTWARE\Classes\AppID\{2A2423AE-1AD9-4B60-A021-BBD75766C2FD}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{28e56cfb-e30e-4f66-85d8-339885b726b8}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\SecureShell.dll
Deleted HKLM\SOFTWARE\Classes\AppID\SecureShell.dll
Deleted HKCU\Software\systweak
Deleted HKLM\Software\Wow6432Node\systweak
Deleted HKLM\Software\systweak
Deleted HKLM\Software\Classes\CLSID\{00212D92-C5D8-4FF4-AE50-B20F0F85C40A}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete IFEO
[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset BITS
[+] Reset Windows Firewall
[+] Reset Hosts File
[+] Reset IPSec
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset TCP/IP
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [42549 octets] - [11/12/2018 16:37:25]
AdwCleaner[S00].txt - [10249 octets] - [11/12/2018 17:45:02]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Publicité


Signaler le contenu de ce document

Publicité