AdwCleaner[S1]
![download AdwCleaner[S1]](https://fdocument.pub/public/t1/desktop/images/details/download-thumbnail.png)
If you can't read please download the document
-
Upload
zgripcealaurentiu1957 -
Category
Documents
-
view
212 -
download
0
description
sss
Transcript of AdwCleaner[S1]
# AdwCleaner v4.207 - Logfile created 23/06/2015 at 20:40:54# Updated 21/06/2015 by Xplode# Database : 2015-06-21.2 [Server]# Operating system : Windows 8.1 Pro (x64)# Username : laur - TOSHIBA-I7# Running from : C:\Users\laur\Downloads\adwcleaner_4.207.exe# Option : Cleaning***** [ Services ] *****[#] Service Deleted : globalUpdate[#] Service Deleted : globalUpdatem[#] Service Deleted : IHProtect Service[#] Service Deleted : WindowsMangerProtect***** [ Files / Folders ] *****Folder Deleted : C:\ProgramData\WindowsMangerProtectFolder Deleted : C:\ProgramData\IHProtectUpDateFolder Deleted : C:\Program Files (x86)\globalUpdateFolder Deleted : C:\Program Files (x86)\miuitabFolder Deleted : C:\Users\laur\AppData\Local\globalUpdateFolder Deleted : C:\Users\laur\AppData\Roaming\Mozilla\Firefox\Profiles\iwh7zkjr.default\Extensions\[email protected] Deleted : C:\Users\laur\AppData\Roaming\Mozilla\Firefox\Profiles\iwh7zkjr.default\Extensions\[email protected] Deleted : C:\Users\laur\AppData\Roaming\Mozilla\Firefox\Profiles\iwh7zkjr.default\Extensions\[email protected] Deleted : C:\Users\laur\AppData\Roaming\Mozilla\Firefox\Profiles\iwh7zkjr.default\Extensions\[email protected] Deleted : C:\Users\laur\AppData\Roaming\Mozilla\Firefox\Profiles\iwh7zkjr.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpiFile Deleted : C:\Users\laur\AppData\Roaming\1jemr3E1wUIrFVSFile Deleted : C:\Users\laur\AppData\Roaming\1jemr3E1wUIrFVS.exeFile Deleted : C:\Users\laur\AppData\Roaming\bsfwyt8DFile Deleted : C:\Users\laur\AppData\Roaming\bsfwyt8D.exeFile Deleted : C:\Users\laur\AppData\Roaming\Mozilla\Firefox\Profiles\iwh7zkjr.default\user.jsFile Deleted : C:\Users\laur\AppData\Roaming\Mozilla\Firefox\Profiles\iwh7zkjr.default\searchplugins\omniboxes.xml***** [ Scheduled tasks ] *****Task Deleted : globalUpdateUpdateTaskMachineCoreTask Deleted : globalUpdateUpdateTaskMachineUATask Deleted : amiupdaterExdTask Deleted : amiupdaterExiTask Deleted : 1jemr3E1wUIrFVSTask Deleted : bsfwyt8D***** [ Shortcuts ] *****Shortcut Disinfected : C:\Users\Public\Desktop\Mozilla Firefox.lnkShortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnkShortcut Disinfected : C:\Users\laur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox (2).lnkShortcut Disinfected : C:\Users\laur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk***** [ Registry ] *****Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachineKey Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsyncKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClassKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClassKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachineKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallbackKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvcKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncherKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassServiceKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallbackKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvcKey Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtectKey Deleted : HKCU\Software\Mozilla\ExtendsKey Deleted : HKLM\SOFTWARE\Classes\AppID\globalupdate.exeKey Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\commandKey Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67C334C0-408D-4E6D-B5A7-0ADD6AFFA252}Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}Key Deleted : HKCU\Software\APN PIPKey Deleted : HKCU\Software\AskPartnerNetworkKey Deleted : HKCU\Software\GlobalUpdateKey Deleted : HKCU\Software\HomeTabKey Deleted : HKCU\Software\simplytechKey Deleted : HKCU\Software\WajIEnhanceKey Deleted : HKCU\Software\TNT2Key Deleted : HKCU\Software\WajIntEnhanceKey Deleted : HKCU\Software\SearchProtectWSKey Deleted : HKCU\Software\CrossbrowseKey Deleted : HKCU\Software\LinkeyKey Deleted : HKCU\Software\YorkNewCinKey Deleted : HKCU\Software\HighDefActionKey Deleted : HKCU\Software\ArenaHDKey Deleted : HKCU\Software\AppDataLow\Software\CrossriderKey Deleted : HKLM\SOFTWARE\AskPartnerNetworkKey Deleted : HKLM\SOFTWARE\ConduitKey Deleted : HKLM\SOFTWARE\GlobalUpdateKey Deleted : HKLM\SOFTWARE\IminentKey Deleted : HKLM\SOFTWARE\SearchProtectKey Deleted : HKLM\SOFTWARE\SupDpKey Deleted : HKLM\SOFTWARE\SupTabKey Deleted : HKLM\SOFTWARE\supWindowsMangerProtectKey Deleted : HKLM\SOFTWARE\IHProtectKey Deleted : HKLM\SOFTWARE\WajIntEnhanceKey Deleted : HKLM\SOFTWARE\omniboxesSoftwareKey Deleted : HKLM\SOFTWARE\CrossbrowseKey Deleted : HKLM\SOFTWARE\SpeedBitKey Deleted : HKLM\SOFTWARE\AIM ToolbarKey Deleted : HKLM\SOFTWARE\YorkNewCinKey Deleted : HKLM\SOFTWARE\HighDefActionKey Deleted : HKLM\SOFTWARE\ArenaHDKey Deleted : HKLM\SOFTWARE\FFPluginHpKey Deleted : HKLM\SOFTWARE\ZoomWebListsKey Deleted : HKLM\SOFTWARE\searchultKey Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARPKey Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbarKey Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtectKey Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhanceKey Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.comKey Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\LinkeyKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARPKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbarKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtectKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhanceKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.comKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LinkeyKey Deleted : [x64] HKLM\SOFTWARE\YorkNewCinKey Deleted : [x64] HKLM\SOFTWARE\HighDefActionKey Deleted : [x64] HKLM\SOFTWARE\ArenaHDKey Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\globalupdate.exe***** [ Web browsers ] *****-\\ Internet Explorer v11.0.9600.17840Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]-\\ Mozilla Firefox v38.0.5 (x86 en-US)[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename", "omniboxes");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.search.searchengine.alias", "omniboxes");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.search.searchengine.iconURL", "hxxp://www.omniboxes.com/favicon.ico");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.search.searchengine.name", "omniboxes");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.search.searchengine.url", "hxxp://www.omniboxes.com/web/?type=ds&ts=1435078255&z=a43e830311e47932bb8d1a6g6zac6wee4m5b0o1wbc&from=amt&uid=HGSTXHTS541010A9E680_130817JA1002101MULXMX&q[...][iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine", "omniboxes");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.omniboxes.com/?type=hp&ts=1435078255&z=a43e830311e47932bb8d1a6g6zac6wee4m5b0o1wbc&from=amt&uid=HGSTXHTS541010A9E680_130817JA1002101MULXMX");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("[email protected]_url", "hxxp://malwaretips.com/blogs/remove-omniboxes-virus/");[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("[email protected]", "[{\"name\":\"Freecorder Menu Header\",\"img\":\"hxxp://freecorder.com/fc8/ui/buttons/menu_header.png\",\"width\":225,\"height\":65},{\"name[...][iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("extensions.quick_start.enable_search1", false);[iwh7zkjr.default\prefs.js] - Line Deleted : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);-\\ Google Chrome v43.0.2357.130[C:\Users\laur\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Homepage] : hxxp://www.omniboxes.com/?type=hp&ts=1435078255&z=a43e830311e47932bb8d1a6g6zac6wee4m5b0o1wbc&from=amt&uid=HGSTXHTS541010A9E680_130817JA1002101MULXMX-\\ Opera v30.0.1835.59*************************AdwCleaner[R0].txt - [12776 bytes] - [19/06/2015 23:17:49]AdwCleaner[R1].txt - [17407 bytes] - [23/06/2015 20:39:49]AdwCleaner[S0].txt - [12513 bytes] - [19/06/2015 23:19:50]AdwCleaner[S1].txt - [14654 bytes] - [23/06/2015 20:40:54]########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [14714 bytes] ##########
