JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes

Version: 7.6.4 (09.28.2015:1)
OS: Windows 10 Home x64
Ran by dszat on 2015. 11. 03. at 10:45:30,24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Successfully
Successfully
Successfully
Successfully
Successfully
deleted:
deleted:
deleted:
deleted:
deleted:
[Service]
[Service]
[Service]
[Service]
[Service]
burudici [Reboot required]

globalupdate [Reboot required]
globalupdatem [Reboot required]
tegehybu [Reboot required]
zisozuve [Reboot required]
~~~ Tasks
Successfully deleted:
77cb968d1a2-1-6
77cb968d1a2-1-7
77cb968d1a2-10_user
77cb968d1a2-13
77cb968d1a2-14
77cb968d1a2-3
77cb968d1a2-4
77cb968d1a2-5
77cb968d1a2-5_user
77cb968d1a2-6
77cb968d1a2-7
hineCore
hineUA
a2-1-6.job
a2-1-7.job
a2-10_user.job
a2-13.job
a2-14.job
a2-3.job
[Task] C:\Windows\system32\tasks\08d47c20-5df0-42b6-a3b0-f
[Task] C:\Windows\system32\tasks\globalUpdateUpdateTaskMac
[Task] C:\Windows\system32\tasks\globalUpdateUpdateTaskMac
[Task] C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1
a2-4.job
a2-5.job
a2-5_user.job
a2-6.job
a2-7.job
job
b
[Task] C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.
[Task] C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.jo
~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Wind
ows\CurrentVersion\Run\\GoogleChromeAutoLaunch_34F85DBB6FFA60344F4F7A5B819987E2
~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Clients\StartMe
nuInternet\MyBrowser
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windo
ws NT\CurrentVersion\Image File Execution Options\globalupdate.exe
Successfully repaired: [Registry Key] HKEY_LOCAL_MACHINE\Software\Clients\StartM
enuInternet\Google Chrome\shell\open\command
Successfully repaired: [Registry Key] HKEY_LOCAL_MACHINE\Software\Clients\StartM
enuInternet\IEXPLORE.EXE\shell\open\command
~~~ Files
Successfully deleted: [File] C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F
5}.dat
Successfully deleted: [File] C:\Users\dszat\Appdata\Local\google\chrome\user dat
a\default\local storage\hxxp_www.mystartsearch.com_0.localstorage
Successfully deleted: [File] C:\Users\dszat\Appdata\Local\google\chrome\user dat
a\default\local storage\hxxp_www.mystartsearch.com_0.localstorage-journal
Successfully disinfected: [Shortcut] C:\ProgramData\Microsoft\windows\Start Menu
\Programs\FIFA 15\FIFA 15.lnk
Successfully disinfected: [Shortcut] C:\ProgramData\Microsoft\windows\Start Menu
\Programs\Google Chrome\Google Chrome.lnk
~~~ Folders
Successfully deleted: [Folder]
Start Menu\Programs\vopackage
C:\Program Files (x86)\globalupdate

C:\Users\dszat\Appdata\Local\globalupdate
C:\Users\dszat\AppData\Roaming\Microsoft\Windows\
C:\Users\dszat\AppData\Roaming\mystartsearch
C:\Users\dszat\AppData\Roaming\new version availa
ble
Successfully deleted: [Folder] C:\Users\dszat\Appdata\Local\7FE31560-144606096781E3-3C59-60029202F288
~~~ FireFox
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\
@staging.google.com/globalupdate update;version=10
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\
@staging.google.com/globalupdate update;version=4
Successfully deleted the following from C:\Users\dszat\AppData\Roaming\mozilla\f
irefox\profiles\0vka151k.default\prefs.js
user_pref(browser.newtab.url, chrome://quick_start/content/index.html);
user_pref(browser.search.searchengine.alias, mystartsearch);
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngin
e);
user_pref(browser.search.searchengine.iconURL, hxxp://www.mystartsearch.com/favi
con.ico);
user_pref(browser.search.searchengine.name, mystartsearch);
user_pref(browser.search.searchengine.ptid, cmi);
user_pref(browser.search.searchengine.uid, TOSHIBAXMQ01ABD075_24NHSOYRSXX24NHSOY
RS);
user_pref(browser.search.searchengine.url, hxxp://www.mystartsearch.com/web/?typ
e=ds&ts=1446057982&z=ce4cc7a81a925610bdc675ag4z0z6q6e9wdmcmfo1z&from=cmi&uid=TOS
HIBAXMQ01ABD
user_pref(browser.search.selectedEngine, mystartsearch);
user_pref(extensions.quick_start.enable_search1, false);
user_pref(extensions.quick_start.sd.closeWindowWithLastTab_prev_state, false);
~~~ Chrome
[C:\Users\dszat\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - def
ault search provider reset
[C:\Users\dszat\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Ext
ensions Deleted:
[C:\Users\dszat\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences
] - default search provider reset
[C:\Users\dszat\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences
] - Extensions Deleted:
[]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2015. 11. 03. at 10:48:44,81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

JRT

Transféré par

Informations du document

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

JRT

Transféré par

Droits d'auteur :

Formats disponibles

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Malwarebytes

burudici [Reboot required]

~~~ Registry Values

~~~ Registry Keys

C:\Program Files (x86)\globalupdate

Vous aimerez peut-être aussi