API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 4th, 2015
142
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.36 KB | None | 0 0
raw download clone embed print report
  1. # AdwCleaner v5.001 - Logfile created 04/09/2015 at 19:05:05
  2. # Updated 17/08/2015 by Xplode
  3. # Database : 2015-08-31.2 [Server]
  4. # Operating system : Microsoft Windows XP Service Pack 3 (x86)
  5. # Username : User - X-TEAM
  6. # Running from : C:\Documents and Settings\User\Мои документы\модели\adwcleaner-5-001-multi-win.exe
  7. # Option : Scan
  8.  
  9. ***** [ Services ] *****
  10.  
  11. Service Found : QQPCRTP
  12. Service Found : TS888
  13. Service Found : TAOAccelerator
  14. Service Found : TSDefenseBt
  15. Service Found : TSSysKit
  16. Service Found : QMUdisk
  17. Service Found : TSCPM
  18. Service Found : TFsFlt
  19. Service Found : TAOFrame
  20. Service Found : tsksp
  21. Service Found : QQSysMon
  22. Service Found : TsFltMgr
  23. Service Found : TAOKernelDriver
  24. Service Found : TSSK
  25. Service Found : QMIEProtect
  26.  
  27. ***** [ Folders ] *****
  28.  
  29. Folder Found : C:\Documents and Settings\All Users\Application Data\Mail.Ru
  30. Folder Found : C:\Documents and Settings\All Users\Application Data\tencent
  31. Folder Found : C:\Documents and Settings\User\Application Data\AnyProtectEx
  32. Folder Found : C:\Documents and Settings\User\Application Data\SmartWeb
  33. Folder Found : C:\Documents and Settings\User\Application Data\tencent
  34. Folder Found : C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\ibq1ct9d.default\Extensions\{a38384b3-2d1d-4f36-bc22-0f7ae402bcd7}
  35. Folder Found : C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\ibq1ct9d.default\Extensions\defsearchp@gmail.com
  36. Folder Found : C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\ibq1ct9d.default\Extensions\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
  37. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\globalUpdate
  38. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\Mail.Ru
  39. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\MailRu
  40. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\MediaGet2
  41. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\SmartWeb
  42. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\Kometa
  43. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\Crossbrowse
  44. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\Amigo
  45. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\promoskiki
  46. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\Host installer
  47. Folder Found : C:\Documents and Settings\User\Local Settings\Application Data\5E978D00-1438204158-81DF-29A9-485B395BBDB6
  48. Folder Found : C:\Documents and Settings\User\Главное меню\Программы\promoskiki
  49. Folder Found : C:\Program Files\Mail.Ru
  50. Folder Found : C:\Program Files\Crossbrowse
  51. Folder Found : C:\Program Files\tencent
  52. Folder Found : C:\Program Files\Torrent Search
  53. Folder Found : C:\Program Files\Application Assistance
  54. Folder Found : C:\Program Files\skinapp
  55. Folder Found : C:\Program Files\Common Files\tencent
  56.  
  57. ***** [ Files ] *****
  58.  
  59. File Found : C:\Documents and Settings\User\Application Data\Microsoft\Internet Explorer\Quick Launch\crossbrowse.lnk
  60. File Found : C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\ibq1ct9d.default\Extensions\vb@yandex.ru.xpi
  61. File Found : C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\ibq1ct9d.default\searchplugins\mystartsearch.xml
  62. File Found : C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\ibq1ct9d.default\user.js
  63. File Found : C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\ibq1ct9d.default\searchplugins\mailru.xml
  64. File Found : C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
  65. File Found : C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
  66. File Found : C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
  67. File Found : C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
  68. File Found : C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxp_searches.vi-view.com_0.localstorage
  69. File Found : C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxp_searches.vi-view.com_0.localstorage-journal
  70. File Found : C:\WINDOWS\QMNetworkMgr.ini
  71. File Found : C:\WINDOWS\system32\tssk.sys
  72. File Found : C:\WINDOWS\system32\drivers\TsFltMgr.sys
  73. File Found : C:\WINDOWS\system32\drivers\TSDefenseBt.sys
  74. File Found : C:\WINDOWS\system32\drivers\TFsFlt.sys
  75. File Found : C:\WINDOWS\system32\drivers\TAOKernelXP.sys
  76. File Found : C:\WINDOWS\system32\drivers\TS888.sys
  77. File Found : C:\WINDOWS\system32\drivers\TAOAccelerator.sys
  78.  
  79. ***** [ Shortcuts ] *****
  80.  
  81. Shortcut Infected : C:\Documents and Settings\User\Главное меню\Программы\WarThunder\WаrТhundеr.lnk ( hxxp://www.mystartsearch.com/?type=sc&ts=1438419521&z=9335ce5bdec3f5143f5938fg9z1c0b9z5o5c3bee1z&from=cmi&uid=395049983_1052514_847ECE53 )
  82.  
  83. ***** [ Scheduled tasks ] *****
  84.  
  85. Task Found : Update Service for Torrent Search
  86. Task Found : Update Service for Torrent Search2
  87. Task Found : WordSurfer Auto Updater 1.10.0.19 Pending Update
  88. Task Found : WordSurfer Auto Updater 1.10.0.19 Core
  89. Task Found : WordSurfer Auto Updater 1.10.0.19 Core
  90. Task Found : WordSurfer Auto Updater 1.10.0.19 Pending Update
  91.  
  92. ***** [ Registry ] *****
  93.  
  94. Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
  95. Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
  96. Key Found : HKCU\Software\Mozilla\Extends
  97. Key Found : HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
  98. Key Found : HKLM\SOFTWARE\Microsoft\Mediaplayer\Shiminclusionlist\crossbrowse.exe
  99. Key Found : HKLM\SOFTWARE\Clients\StartMenuInternet\crossbrowse.exe
  100. Key Found : HKLM\SOFTWARE\Classes\CRSBRWSHTML
  101. Key Found : HKLM\SOFTWARE\Clients\StartMenuInternet\Crossbrowse
  102. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\crossbrowse.exe
  103. Value Found : HKLM\SOFTWARE\Classes\.htm\OpenWithProgids [CRSBRWSHTML]
  104. Value Found : HKLM\SOFTWARE\Classes\.html\OpenWithProgids [CRSBRWSHTML]
  105. Value Found : HKLM\SOFTWARE\RegisteredApplications [Crossbrowse]
  106. Key Found : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
  107. Key Found : HKLM\SOFTWARE\CLASSES\METNSD
  108. Key Found : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP
  109. Key Found : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP
  110. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\.QMDeskTopGCIcon
  111. Value Found : HKLM\SOFTWARE\Classes\.xht\OpenWithProgIDs [CRSBRWSHTML]
  112. Value Found : HKLM\SOFTWARE\Classes\.webp\OpenWithProgIDs [CRSBRWSHTML]
  113. Value Found : HKLM\SOFTWARE\Classes\.shtml\OpenWithProgIDs [CRSBRWSHTML]
  114. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\browser.exe
  115. Key Found : HKLM\SOFTWARE\MozillaPlugins\@qq.com/QQPCMgr
  116. Key Found : HKLM\SOFTWARE\Clients\StartMenuInternet\amigo.exe
  117. Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [defsearchp@gmail.com]
  118. Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
  119. Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
  120. Key Found : HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
  121. Key Found : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
  122. Key Found : HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
  123. Key Found : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
  124. Key Found : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
  125. Key Found : HKLM\SOFTWARE\Classes\CLSID\{C379EAD1-CB34-4B09-AF6B-7E587F8BCD80}
  126. Key Found : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
  127. Key Found : HKLM\SOFTWARE\Classes\CLSID\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
  128. Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
  129. Key Found : HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
  130. Key Found : HKLM\SOFTWARE\Classes\Interface\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}
  131. Key Found : HKLM\SOFTWARE\Classes\Interface\{357D32FC-F0AE-4B37-B36F-D44AA31496F5}
  132. Key Found : HKLM\SOFTWARE\Classes\Interface\{80B3B43F-7508-4627-BE66-00FB9AE5EE72}
  133. Key Found : HKLM\SOFTWARE\Classes\TypeLib\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}
  134. Key Found : HKLM\SOFTWARE\Classes\TypeLib\{5A83D7C9-4A14-4000-BC05-389268238753}
  135. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
  136. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
  137. Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
  138. Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
  139. Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1F91A9A1-01BA-4C81-863D-3BA0751E1419}
  140. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
  141. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
  142. Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser [{10921475-03CE-4E04-90CE-E2E7EF20C814}]
  143. Key Found : HKU\.DEFAULT\Software\Torrent Search
  144. Key Found : HKCU\Software\AnyProtect
  145. Key Found : HKCU\Software\APN PIP
  146. Key Found : HKCU\Software\IM
  147. Key Found : HKCU\Software\InstalledBrowserExtensions
  148. Key Found : HKCU\Software\SmartWeb
  149. Key Found : HKCU\Software\Crossbrowse
  150. Key Found : HKCU\Software\YorkNewCin
  151. Key Found : HKCU\Software\Torrent Search
  152. Key Found : HKCU\Software\Kromtech
  153. Key Found : HKLM\SOFTWARE\InstalledBrowserExtensions
  154. Key Found : HKLM\SOFTWARE\Crossbrowse
  155. Key Found : HKLM\SOFTWARE\SpeedBit
  156. Key Found : HKLM\SOFTWARE\Torrent Search
  157. Key Found : HKLM\SOFTWARE\searchult
  158. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect
  159. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater
  160. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage
  161. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
  162. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
  163. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2AEF02C3-5159-4C81-A688-8D954F0DEE56}_NewSearch
  164. Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MailRuUpdater
  165. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdater
  166. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ASPackage
  167. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Torrent Search
  168. Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{2AEF02C3-5159-4C81-A688-8D954F0DEE56}_NewSearch
  169. Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.hao123.com/?tn=95751091_hao_pg
  170. Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxps://safesearch.avira.com/#web/result?source=art&q=
  171. Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxps://safesearch.avira.com/#web/result?source=art&q=
  172. Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxps://safesearch.avira.com/#web/result?source=art&q=
  173. Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.hao123.com/?tn=95751091_hao_pg
  174. Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.mystartsearch.com/?type=hppp&ts=1438435050&z=c560da6ca3ebd8ae1f18efagdz2c3b1z7c3t0cccbw&from=cmi&uid=395049983_1052514_847ECE53
  175. Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://www.mystartsearch.com/web/?type=dspp&ts=1438435050&z=c560da6ca3ebd8ae1f18efagdz2c3b1z7c3t0cccbw&from=cmi&uid=395049983_1052514_847ECE53&q={searchTerms}
  176. Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch] - hxxp://www.mystartsearch.com/web/?type=dspp&ts=1438435050&z=c560da6ca3ebd8ae1f18efagdz2c3b1z7c3t0cccbw&from=cmi&uid=395049983_1052514_847ECE53&q={searchTerms}
  177. Data Found : HKU\S-1-5-21-484763869-448539723-1801674531-1004\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.hao123.com/?tn=95751091_hao_pg
  178. Data Found : HKU\S-1-5-21-484763869-448539723-1801674531-1004\Software\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxps://safesearch.avira.com/#web/result?source=art&q=
  179. Data Found : HKU\S-1-5-21-484763869-448539723-1801674531-1004\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxps://safesearch.avira.com/#web/result?source=art&q=
  180. Data Found : HKU\S-1-5-21-484763869-448539723-1801674531-1004\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxps://safesearch.avira.com/#web/result?source=art&q=
  181. Data Found : HKLM\SOFTWARE\Clients\StartMenuInternet\chrome.exe\shell\open\command [] - "C:\Program Files\Google\Chrome\Application\chrome.exe" hxxp://www.mystartsearch.com/?type=sc&ts=1438616943&z=8a5e2a2a41a47f5037b671bgcz8c3bdq0odgeofo2c&from=cmi&uid=395049983_1052514_847ECE53
  182.  
  183. ***** [ Web browsers ] *****
  184.  
  185. [C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : gosearch
  186. [C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : istartsurf
  187. [C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : mystartsearch.com
  188. [C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : mystartsearch
  189.  
  190. *************************
  191.  
  192. C:\AdwCleaner[S8].txt - [14514 bytes] - [04/09/2015 19:05:05]
  193.  
  194. ########## EOF - C:\AdwCleaner[S8].txt - [14577 bytes] ##########
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!