wklejto.pl

Dodane przez: ~Anonim (2018-10-26 13:05) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build:    09-25-2018
# Database: 2018-10-23.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    10-26-2018
# Duration: 00:00:22
# OS:       Windows 10 Pro
# Cleaned:  137
# Failed:   1
 
 
***** [ Services ] *****
 
Deleted       CRMSvc
 
***** [ Folders ] *****
 
Deleted       C:\Windows\System32\config\systemprofile\AppData\Roaming\CRMSvc
Deleted       C:\Users\Klaudiusz\AppData\Roaming\CRMSvc
Deleted       C:\ProgramData\Quoteexs
Deleted       C:\ProgramData\Logic Cramble
Deleted       C:\Users\Klaudiusz\AppData\Roaming\Microleaves
Deleted       C:\Users\Klaudiusz\AppData\Local\RenewSoftware.com
Deleted       C:\Users\Klaudiusz\AppData\Roaming\RenewSoftware.com
Deleted       C:\Users\Klaudiusz\AppData\Roaming\WMPNetworkAcSvc
Deleted       C:\Users\Public\Documents\Downloaded Installers
Deleted       C:\Users\Klaudiusz\AppData\Roaming\winservices
Deleted       C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
Deleted       C:\Program Files (x86)\SlimDrivers
Deleted       C:\ProgramData\SlimWare Utilities, Inc
Deleted       C:\Users\Klaudiusz\AppData\Local\slimware utilities inc
Deleted       C:\ProgramData\TweakBit
Not Deleted   C:\Program Files (x86)\UCBrowser
Deleted       C:\Windows\SysWOW64\config\systemprofile\AppData\Local\UCBrowser
Deleted       C:\Users\Klaudiusz\AppData\Local\UCBrowser
 
***** [ Files ] *****
 
Deleted       C:\Windows\System32\drivers\swdumon.sys
Deleted       C:\Windows\Installer\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted       C:\Users\Public\Desktop\SlimDrivers.lnk
Deleted       C:\Windows\SysWOW64\findit.xml
 
***** [ DLL ] *****
 
No malicious DLLs cleaned.
 
***** [ WMI ] *****
 
No malicious WMI cleaned.
 
***** [ Shortcuts ] *****
 
No malicious shortcuts cleaned.
 
***** [ Tasks ] *****
 
Deleted       C:\Windows\Tasks\Online Application V2G5.job
Deleted       C:\Windows\Tasks\Online Application V2G4.job
Deleted       C:\Windows\Tasks\Online Application V2G6.job
Deleted       C:\Windows\Tasks\Online Application V2G2.job
Deleted       C:\Windows\Tasks\Online Application V2G3.job
Deleted       C:\Windows\Tasks\Online Application V2G1.job
Deleted       C:\Windows\Tasks\UCBrowserUpdaterCore.job
Deleted       C:\Windows\Tasks\Updater_Online_Application.job
Deleted       C:\Windows\Tasks\SlimDrivers Startup.job
Deleted       C:\Windows\System32\Tasks\SlimDrivers Startup
 
***** [ Registry ] *****
 
Deleted       HKLM\Software\CRMSvc
Deleted       HKLM\System\CurrentControlSet\Services\EventLog\Application\CRMSvc
Deleted       HKLM\Software\MICROSOFT\TechnologyDesktopnew
Deleted       HKLM\SOFTWARE\MICROSOFT\Speedycar
Deleted       HKLM\Software\Classes\tsckmna
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1655C0CA-7AE7-4012-8502-970C8675E5F8
Deleted       HKLM\Software\Wow6432Node\Microleaves
Deleted       HKLM\Software\RunBooster
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHTML
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHT
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.WEBP
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTML
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTM
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.MHT
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTML
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTM
Deleted       HKLM\SOFTWARE\Classes\UCHTML.AssocFile.CRX
Deleted       HKLM\SOFTWARE\Classes\UCHTML
Deleted       HKU\S-1-5-18\SOFTWARE\A1E1FBE56230930AA93235E7BF0B3527
Deleted       HKU\S-1-5-18\SOFTWARE\38A47AB30F53B12EDCA177D78BB06584
Deleted       HKCU\SOFTWARE\38A47AB30F53B12EDCA177D78BB06584
Deleted       HKU\.DEFAULT\SOFTWARE\A1E1FBE56230930AA93235E7BF0B3527
Deleted       HKU\.DEFAULT\SOFTWARE\38A47AB30F53B12EDCA177D78BB06584
Deleted       HKLM\Software\Wow6432Node\38A47AB30F53B12EDCA177D78BB06584
Deleted       HKCU\Software\Classes\acestream
Deleted       HKCU\Software\RegisteredApplications|AceStream
Deleted       HKCU\Software\Microsoft\BigTime
Deleted       HKLM\Software\Wow6432Node\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
Deleted       HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
Deleted       HKCU\Software\csastats
Deleted       HKLM\Software\Wow6432Node\xvb`lj
Deleted       HKLM\Software\Wow6432Node\WMPNetworkAcSvc
Deleted       HKLM\Software\Wow6432Node\ompndb
Deleted       HKLM\Software\Wow6432Node\TWEAKBIT
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\952BA647474611149866C1269F6A0E36
Deleted       HKLM\Software\Classes\Installer\Products\952BA647474611149866C1269F6A0E36
Deleted       HKLM\Software\Classes\Installer\Features\952BA647474611149866C1269F6A0E36
Deleted       HKLM\SOFTWARE\Classes\.xhtml\OpenWithProgids|UCHTML.AssocFile.XHTML
Deleted       HKLM\SOFTWARE\Classes\.xht\OpenWithProgids|UCHTML.AssocFile.XHT
Deleted       HKLM\SOFTWARE\Classes\.webp\OpenWithProgids|UCHTML.AssocFile.WEBP
Deleted       HKLM\SOFTWARE\Classes\.shtml\OpenWithProgids|UCHTML.AssocFile.SHTML
Deleted       HKLM\SOFTWARE\Classes\.shtm\OpenWithProgids|UCHTML.AssocFile.SHTM
Deleted       HKLM\SOFTWARE\Classes\.mht\OpenWithProgids|UCHTML.AssocFile.MHT
Deleted       HKLM\SOFTWARE\Classes\.html\OpenWithProgids|UCHTML.AssocFile.HTML
Deleted       HKLM\SOFTWARE\Classes\.htm\OpenWithProgids|UCHTML.AssocFile.HTM
Deleted       HKCU\SOFTWARE\Classes\.xhtml\OpenWithProgids|UCHTML.AssocFile.XHTML
Deleted       HKCU\SOFTWARE\Classes\.xht\OpenWithProgids|UCHTML.AssocFile.XHT
Deleted       HKCU\SOFTWARE\Classes\.webp\OpenWithProgids|UCHTML.AssocFile.WEBP
Deleted       HKCU\SOFTWARE\Classes\.shtml\OpenWithProgids|UCHTML.AssocFile.SHTML
Deleted       HKCU\SOFTWARE\Classes\.shtm\OpenWithProgids|UCHTML.AssocFile.SHTM
Deleted       HKCU\SOFTWARE\Classes\.mht\OpenWithProgids|UCHTML.AssocFile.MHT
Deleted       HKCU\SOFTWARE\Classes\.html\OpenWithProgids|UCHTML.AssocFile.HTML
Deleted       HKCU\SOFTWARE\Classes\.htm\OpenWithProgids|UCHTML.AssocFile.HTM
Deleted       HKCU\SOFTWARE\Classes\.crx\OpenWithProgids|UCHTML.AssocFile.CRX
Deleted       HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\UCBrowser.exe
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\UCBrowser.exe
Deleted       HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\UCBrowser.exe
Deleted       HKCU\Software\Classes\.acestream
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Quoteex.exe
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Quoteex.exe
Deleted       HKCU\Environment|SNP
Deleted       HKU\S-1-5-18\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
Deleted       HKU\.DEFAULT\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted       HKLM\Software\Classes\Installer\Products\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted       HKLM\Software\Classes\Installer\Features\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted       HKLM\Software\Classes\tschmna
Deleted       HKCU\Software\PRODUCTSETUP
Deleted       HKCU\Environment|SNF
Deleted       HKLM\Software\Wow6432Node\SearchModule
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{746AB259-6474-4111-8966-1C62F9A6E063}
Deleted       HKLM\Software\Wow6432Node\SLIMWARE UTILITIES, INC.
Deleted       HKCU\Software\SlimWare Utilities Inc
Deleted       HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9A331AE-B3D2-46D8-94CA-4BA86F3DEA30} 
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimDrivers Startup
 
***** [ Chromium (and derivatives) ] *****
 
Deleted       dfohdbmjdkfijghgklbickfnaepghgba
Deleted       Search Module Plus v2
 
***** [ Chromium URLs ] *****
 
Deleted       http://www.yoursites123.com/?type=hp&ts=1450960379&z=bd75432b68c5e0a5a1d6ec3g2zcwbedt9q1eac4mct&from=wpm07173&uid=ST9320325AS_6VD7HVJCXXXX6VD7HVJC
Deleted       search.mpc.am
Deleted       http://www.mystartsearch.com/?type=hppp&ts=1423157469&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1423157458&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1415884858&from=smt&uid=SAMSUNGXHD403LJ_S0NFJQSQ900058
Deleted       http://www-searching.com/?pid=s&s=h7jzamobl8175xn/abu,80e36d13-e026-4312-a414-733110332f10,&vp=ch&prd=set_ch
Deleted       Search Module
Deleted       http://www-searching.com/?pid=s&s=h7jzamobl8175xn/abu,80e36d13-e026-4312-a414-733110332f10,&vp=ch&prd=set_ch
Deleted       Search Module
Deleted       http://www.mystartsearch.com/?type=hppp&ts=1423157469&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1423157458&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1415884858&from=smt&uid=SAMSUNGXHD403LJ_S0NFJQSQ900058
Deleted       http://www-searching.com/?pid=s&s=h7jzamobl8175xn/abu,80e36d13-e026-4312-a414-733110332f10,&vp=ch&prd=set_ch
Deleted       Search Module
Deleted       search.mpc.am
Deleted       http://www.mystartsearch.com/?type=hppp&ts=1423157469&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1423157458&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1415884858&from=smt&uid=SAMSUNGXHD403LJ_S0NFJQSQ900058
Deleted       http://www.mystartsearch.com/?type=hppp&ts=1423157469&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1423157458&from=smt&uid=WDCXWD5000BEVT-75A0RT0_WD-WXD1A905626856268
Deleted       http://www.mystartsearch.com/?type=hp&ts=1415884858&from=smt&uid=SAMSUNGXHD403LJ_S0NFJQSQ900058
Deleted       Softonic PL
Deleted       http://www.sweet-page.com/?type=hp&ts=1410430191&from=cor&uid=ST9320325AS_6VD7HVJCXXXX6VD7HVJC
Deleted       http://www.sweet-page.com/?type=hp&ts=1398282758&from=cor&uid=SAMSUNGXHD403LJ_S0NFJQSQ900058
Deleted       http://www.sweet-page.com/?type=hp&ts=1398282758&from=cor&uid=SAMSUNGXHD403LJ_S0NFJQSQ900058
 
***** [ Firefox (and derivatives) ] *****
 
No malicious Firefox entries cleaned.
 
***** [ Firefox URLs ] *****
 
No malicious Firefox URLs cleaned.
 
 
*************************
 
[+] Delete Tracing Keys
[+] Reset Winsock
 
*************************
 
AdwCleaner[S00].txt - [19700 octets] - [26/10/2018 11:23:40]
AdwCleaner[S01].txt - [13888 octets] - [26/10/2018 13:00:32]
 
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
 
Wygenerowano w 0.016s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!