~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 7.5.7 (08.18.2015:1) OS: Windows 10 Home x64 Ran by sctroumpf on 24/08/2015 at 21:25:01,98 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Tasks ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3273EA7E-675D-8B8F-62B7-A42F92F5D2B5} Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{36D82197-AA81-EB42-C40A-DCEF40B0C18B} Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CCD883EC-9AC9-6957-C096-DE5F3A8EBDF6} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3273EA7E-675D-8B8F-62B7-A42F92F5D2B5} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{36D82197-AA81-EB42-C40A-DCEF40B0C18B} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCD883EC-9AC9-6957-C096-DE5F3A8EBDF6} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{3273EA7E-675D-8B8F-62B7-A42F92F5D2B5} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{36D82197-AA81-EB42-C40A-DCEF40B0C18B} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{CCD883EC-9AC9-6957-C096-DE5F3A8EBDF6} Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\wbsvc ~~~ Files Successfully deleted: [File] C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat Successfully deleted: [File] C:\WINDOWS\system32\drivers\wsafd_1_10_0_19.sys ~~~ Folders Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{03AAF5E5-0DF8-4A71-9F66-B0BD39EDFC4F} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{053606CB-235F-4DE2-AEC5-C3176ED678DB} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{06E05FA7-4B10-4EA3-BF11-BCEB51309FF3} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{1739852A-145E-4699-9F86-24264A9FB945} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{1A16929D-6EA1-4533-A7D0-197F508D4E4A} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{1B6D2384-EE1D-42BD-B0F4-6DBE49998EB2} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{23AB84B2-DDF6-4832-AF11-37A098FD75D9} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{24526C30-F3D1-4528-923F-245E4E6DED38} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{26E18D9A-B042-4A18-BCEC-C62BEFD2CCA2} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{2E36D9DD-B080-44B3-A6D5-9CC026F1A083} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{3594088B-10BA-4E50-84AD-7EB689E46677} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{37A32130-610E-4AB1-A8A7-9623731EDABA} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{3ACAF22F-EA4E-428C-B32E-D3A8276FD070} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{40A246B3-B1E5-4113-93F6-289734F4D545} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{43F60193-C064-41E6-A290-D41601067A58} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{47571852-482F-4B06-B04B-580DBDB88817} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{48FF5615-9FBA-4E55-A769-A1031766CF06} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{4C5CC535-4AE4-4660-B8EC-4A88BA162EF1} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{4D94AF07-40EB-4EBB-92B3-299BF08ED5A6} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{53FCACAA-B7C7-49C3-B2A5-496EC61EFDB4} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{5D3C50EE-DE04-4B54-A207-9CEDE104711D} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{5F09AF99-8650-4542-B5E7-475BF3246ADA} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{609F9423-61D0-44A9-A51E-3B16EF40FD7F} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{63BE2258-E7B8-47B6-A391-0D08034980B8} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{649F5819-91B4-4115-9FD8-C2B1D8F7E3BB} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{73802B60-1501-40CA-8A79-E472AB5C1B47} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{7A5C0DF1-9F91-46E0-A045-BAA353EAFC65} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{7AEEEFFA-A60D-422C-BCE5-E28A88CCD30C} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{894BE80B-0349-45B6-9D85-CAB28DC0559F} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{8A2B76F9-9BDE-47C5-940B-8CDD06A6CD7A} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{91623EA0-5726-46B1-A67B-DB59B3677D26} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{97867AE9-BD27-4FA0-A116-45BF960189B7} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{99E94362-9647-4C57-981F-033F5B6FEA2C} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{A50DDC6E-736C-43A3-BD0E-33AB4A4C90D8} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{A5C76378-F17A-4C6C-A02A-51176AD4375A} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{ABA0D3DD-3D95-43D4-9768-2D106B97B9D2} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{ACA0AB75-7C31-4F41-BDC2-79B408287289} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{B0B67D0C-03B7-4557-AD08-0D1CAC79D805} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{BB602207-80F7-483E-99CC-6A22C52DD3E9} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{BEC31D2A-7181-4DFC-A56B-5189BBAAE40C} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{BFCCC473-B1AA-4AE3-BBAC-49954D5765F9} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{C25A39CE-4B57-4265-9E7D-373C5635D60D} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{C27EA204-083A-4D2E-BBAA-E179F06365CF} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{CDD421B4-CB08-4341-8890-ECB06AC031CF} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{D1E098EB-5146-4D0B-B39A-6EBA681222F6} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{D4B7160F-6B85-4642-875E-30F4D70AF32B} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{D5C1EBFA-F3FC-4E04-A9A7-FB00385AC1EE} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{D5EDCFC1-0D74-4B27-B07C-C41063AC0E22} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{D7DF7AE0-BE7E-4E8F-AA31-16DA4F9F280B} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{D9ECAD03-76DB-4673-82CF-55730B73D9B0} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{DDF7575B-E427-4228-B09B-F9AA902476BC} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{E6F5FC8A-A6D3-4F71-B657-3B9D3CDC574B} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{EEEA3A42-9FB1-4C6F-90CA-F2680F7BD0DA} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{F4D7224E-688E-4473-A75F-D0F47A10C04E} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{F66CE4AB-D09E-4EE3-9E4C-BF95E098FCF2} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{F6D00829-FCDA-48C2-9BA9-CDCB0E2F7B15} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{F787B404-6C6C-4A08-A2BC-22965BC7511C} Successfully deleted: [Empty Folder] C:\Users\sctroumpf\Appdata\Local\{F8A707DF-96FB-43F0-BEA6-F2B711A00E48} Successfully deleted: [Folder] C:\Program Files (x86)\gmsd_fr_005010070 [Adware.EoRezo] Successfully deleted: [Folder] C:\Program Files (x86)\mpck_fr_017010070 [Adware.EoRezo] Successfully deleted: [Folder] C:\ProgramData\zombienews Successfully deleted: [Folder] C:\Users\sctroumpf\Appdata\Local\gmsd_fr_005010070 [Adware.EoRezo] Successfully deleted: [Folder] C:\Users\sctroumpf\Appdata\Local\mpck_fr_017010070 [Adware.EoRezo] ~~~ FireFox Successfully deleted the following from C:\Users\sctroumpf\AppData\Roaming\mozilla\firefox\profiles\dhd5hnu4.default\prefs.js user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine); user_pref(browser.search.searchengine.ptid, 2sq); user_pref(browser.search.searchengine.uid, WDCXWD10EARS-00Y5B1_WD-WCAV5J38866688666); Emptied folder: C:\Users\sctroumpf\AppData\Roaming\mozilla\firefox\profiles\dhd5hnu4.default\minidumps [1 files] ~~~ Chrome [C:\Users\sctroumpf\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset [C:\Users\sctroumpf\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted: [C:\Users\sctroumpf\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset [C:\Users\sctroumpf\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 24/08/2015 at 21:29:28,52 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~