# AdwCleaner v5.003 - Logfile created 31/10/2015 at 11:01:06 # Updated 20/08/2015 by Xplode # Database : 2015-10-29.1 [Server] # Operating system : Microsoft Windows XP Service Pack 3 (x86) # Username : Krzysztof - NETSTELL-POLAND # Running from : C:\Documents and Settings\Krzysztof\My Documents\Pobrane\adwcleaner_5.003.exe # Option : Scan ***** [ Services ] ***** ***** [ Folders ] ***** Folder Found : C:\Documents and Settings\All Users\Documents\ShopperPro ***** [ Files ] ***** File Found : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\mwtmqs4g.default\searchplugins\findit.xml File Found : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\mwtmqs4g.default\searchplugins\findit.xml File Found : C:\Documents and Settings\Gość\Application Data\Mozilla\Firefox\Profiles\dh9eky33.default\searchplugins\findit.xml File Found : C:\Documents and Settings\Gość\Application Data\Mozilla\Firefox\Profiles\dh9eky33.default\searchplugins\findit.xml File Found : C:\Documents and Settings\Krzysztof\Application Data\Mozilla\Firefox\Profiles\12h1ceb6.default-1404211074967\user.js File Found : C:\WINDOWS\system32\roboot.exe ***** [ Shortcuts ] ***** Shortcut Infected : C:\Documents and Settings\Krzysztof\Desktop\Mozilla Firefox.lnk ( hxxp://feed.helperbar.com/?publisher=PRRed&dpid=general&searchtype=pr&barcodeid=163867 ) ***** [ Scheduled tasks ] ***** ***** [ Registry ] ***** Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro Key Found : HKU\.DEFAULT\Software\Yahoo\Companion Key Found : HKLM\SOFTWARE\Crossrider Key Found : HKLM\SOFTWARE\GlobalUpdate Key Found : HKLM\SOFTWARE\InstalledBrowserExtensions Key Found : HKLM\SOFTWARE\SavePass 1.1 Key Found : HKLM\SOFTWARE\sweet-pageSoftware Key Found : HKLM\SOFTWARE\Tutorials Key Found : HKLM\SOFTWARE\GoHD Key Found : HKLM\SOFTWARE\FFPluginHp Key Found : HKLM\SOFTWARE\_CrossriderRegNamePlaceHolder_ Key Found : HKLM\SOFTWARE\downchecker Key Found : HKLM\SOFTWARE\Yahoo\Companion Key Found : HKLM\SOFTWARE\WdsManPro Key Found : HKLM\SOFTWARE\RayDld Key Found : HKLM\SOFTWARE\ihpmserver Key Found : HKLM\SOFTWARE\Reg\Clean Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SavePass 1.1 Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\GoHD Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE Data Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tab] - hxxp://guanjia.qq.com/comm-htdocs/quickaccess/ ***** [ Web browsers ] ***** ########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2687 bytes] ##########