Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-11-2014
Ran by Gandalf at 2014-11-04 21:36:32 Run:1
Running from C:\Users\Gandalf\Desktop
Loaded Profile: Gandalf (Available profiles: Gandalf)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKU\S-1-5-21-2098387635-82296276-96705846-1001\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
cmd: del /q C:\Windows\SysWOW64\*.tmp
C:\Users\Gandalf\AppData\Local\Temp\ICReinstall_DownloadManagerSetup.exe
AdAwareInstaller (Version: 11.4.6792.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.4.6792.0 - Lavasoft) Hidden
CustomCLSID: HKU\S-1-5-21-2098387635-82296276-96705846-1001_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
End
*****************
"HKU\S-1-5-21-2098387635-82296276-96705846-1001\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32" => Key not found.
"HKU\S-1-5-21-2098387635-82296276-96705846-1001\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key not found.
========= del /q C:\Windows\SysWOW64\*.tmp =========
========= End of CMD: =========
"C:\Users\Gandalf\AppData\Local\Temp\ICReinstall_DownloadManagerSetup.e xe" => File/Directory not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\SystemComponent => Value not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\SystemComponent => Value not found.
"HKU\S-1-5-21-2098387635-82296276-96705846-1001_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key not found.
==== End of Fixlog ====
[2014.11.04 21:39:46.224] - Begin
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.224] - ....................................
[2014.11.04 21:39:46.224] - ..::::::::::::::::::....................
[2014.11.04 21:39:46.224] - .::EEEEEE:::SSSSSS::..EEEEEE..TTTTTTTT.. Win32/Poweliks
[2014.11.04 21:39:46.224] - .::EE::::EE:SS:::::::.EE....EE....TT...... Version: 1.0.0.1
[2014.11.04 21:39:46.224] - .::EEEEEEEE::SSSSSS::.EEEEEEEE....TT...... Built: Oct 15 2014
[2014.11.04 21:39:46.224] - .::EE:::::::::::::SS:.EE..........TT......
[2014.11.04 21:39:46.224] - .::EEEEEE:::SSSSSS::..EEEEEE.....TT..... Copyright (c) ESET, spol. s r.o.
[2014.11.04 21:39:46.224] - ..::::::::::::::::::.................... 1992-2013. All rights reserved.
[2014.11.04 21:39:46.224] - ....................................
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.224] - --------------------------------------------------------------------------------
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.224] - INFO: OS: 6.1.7601 SP1
[2014.11.04 21:39:46.224] - INFO: Product Type: Workstation
[2014.11.04 21:39:46.224] - INFO: WoW64: True
[2014.11.04 21:39:46.224] - INFO: Machine guid: 4C5FFE3B-04E5-4F50-9CAA-495E5CA88797
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.240] - INFO: Scanning for system infection...
[2014.11.04 21:39:46.240] - --------------------------------------------------------------------------------
[2014.11.04 21:39:46.240] -
[2014.11.04 21:39:46.240] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.04 21:39:46.240] - INFO: Processing classes...
[2014.11.04 21:39:46.240] - INFO: Processing clsid [\Registry\User\S-1-5-21-2098387635-82296276-96705846-1001\SOFTWARE\Classes\CLSID\{bbbcc0f8-b5f9-4c9a-8ba0-eb6f5db3d731}]
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing invalid values in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [ServerExecutable] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing invalid subkeys in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]...
[2014.11.04 21:39:46.240] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.04 21:39:46.240] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.04 21:39:46.240] - INFO: Win32/Poweliks not found
[2014.11.04 21:39:50.857] - End
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.5 (10.31.2014:1)
OS: Windows 7 Ultimate x64
Ran by Gandalf on Tue 11/04/2014 at 21:41:23.26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 11/04/2014 at 21:42:44.05
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# AdwCleaner v3.311 - Report created 04/11/2014 at 21:45:27
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Gandalf - HOMEWK000000101
# Running from : C:\Users\Gandalf\Desktop\adwcleaner_3.311.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
*************************
AdwCleaner[R0].txt - [1461 octets] - [04/11/2014 20:06:48]
AdwCleaner[R1].txt - [806 octets] - [04/11/2014 21:44:50]
AdwCleaner[S0].txt - [1538 octets] - [04/11/2014 20:07:57]
AdwCleaner[S1].txt - [728 octets] - [04/11/2014 21:45:27]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [787 octets] ##########
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 11/4/2014 8:20:45 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 8:20:45 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 8:20:45 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:20:46 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Update, 11/4/2014 8:20:49 PM, SYSTEM, HOMEWK000000101, Manual, Rootkit Database, 2014.9.18.1, 2014.11.1.2,
Update, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Manual, Malware Database, 2014.9.19.5, 2014.11.5.2,
Protection, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Starting,
Protection, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopping,
Protection, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopped,
Protection, 11/4/2014 8:20:58 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Success,
Protection, 11/4/2014 8:20:58 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:20:58 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Scan, 11/4/2014 8:30:49 PM, SYSTEM, HOMEWK000000101, Manual, Start:11/4/2014 8:21:05 PM, Duration:9 min 43 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections,
Protection, 11/4/2014 8:34:26 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 8:34:26 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 8:34:26 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:34:40 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Protection, 11/4/2014 8:40:22 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 8:40:22 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 8:40:22 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:40:24 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopping,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopped,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Stopping,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Stopped,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Update, 11/4/2014 9:50:29 PM, SYSTEM, HOMEWK000000101, Manual, Rootkit Database, 2014.9.18.1, 2014.11.1.2,
Update, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Manual, Malware Database, 2014.9.19.5, 2014.11.5.2,
Protection, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Starting,
Protection, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopping,
Protection, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopped,
Protection, 11/4/2014 9:50:37 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Success,
Protection, 11/4/2014 9:50:37 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 9:50:37 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11/4/2014
Scan Time: 8:21:05 PM
Logfile:
Administrator: Yes
Version: 2.00.3.1025
Malware Database: v2014.11.05.02
Rootkit Database: v2014.11.01.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Gandalf
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 309848
Time Elapsed: 9 min, 43 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
Ran by Gandalf at 2014-11-04 21:36:32 Run:1
Running from C:\Users\Gandalf\Desktop
Loaded Profile: Gandalf (Available profiles: Gandalf)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKU\S-1-5-21-2098387635-82296276-96705846-1001\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
cmd: del /q C:\Windows\SysWOW64\*.tmp
C:\Users\Gandalf\AppData\Local\Temp\ICReinstall_DownloadManagerSetup.exe
AdAwareInstaller (Version: 11.4.6792.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.4.6792.0 - Lavasoft) Hidden
CustomCLSID: HKU\S-1-5-21-2098387635-82296276-96705846-1001_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
End
*****************
"HKU\S-1-5-21-2098387635-82296276-96705846-1001\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32" => Key not found.
"HKU\S-1-5-21-2098387635-82296276-96705846-1001\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key not found.
========= del /q C:\Windows\SysWOW64\*.tmp =========
========= End of CMD: =========
"C:\Users\Gandalf\AppData\Local\Temp\ICReinstall_DownloadManagerSetup.e xe" => File/Directory not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\SystemComponent => Value not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\SystemComponent => Value not found.
"HKU\S-1-5-21-2098387635-82296276-96705846-1001_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key not found.
==== End of Fixlog ====
[2014.11.04 21:39:46.224] - Begin
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.224] - ....................................
[2014.11.04 21:39:46.224] - ..::::::::::::::::::....................
[2014.11.04 21:39:46.224] - .::EEEEEE:::SSSSSS::..EEEEEE..TTTTTTTT.. Win32/Poweliks
[2014.11.04 21:39:46.224] - .::EE::::EE:SS:::::::.EE....EE....TT...... Version: 1.0.0.1
[2014.11.04 21:39:46.224] - .::EEEEEEEE::SSSSSS::.EEEEEEEE....TT...... Built: Oct 15 2014
[2014.11.04 21:39:46.224] - .::EE:::::::::::::SS:.EE..........TT......
[2014.11.04 21:39:46.224] - .::EEEEEE:::SSSSSS::..EEEEEE.....TT..... Copyright (c) ESET, spol. s r.o.
[2014.11.04 21:39:46.224] - ..::::::::::::::::::.................... 1992-2013. All rights reserved.
[2014.11.04 21:39:46.224] - ....................................
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.224] - --------------------------------------------------------------------------------
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.224] - INFO: OS: 6.1.7601 SP1
[2014.11.04 21:39:46.224] - INFO: Product Type: Workstation
[2014.11.04 21:39:46.224] - INFO: WoW64: True
[2014.11.04 21:39:46.224] - INFO: Machine guid: 4C5FFE3B-04E5-4F50-9CAA-495E5CA88797
[2014.11.04 21:39:46.224] -
[2014.11.04 21:39:46.240] - INFO: Scanning for system infection...
[2014.11.04 21:39:46.240] - --------------------------------------------------------------------------------
[2014.11.04 21:39:46.240] -
[2014.11.04 21:39:46.240] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]...
[2014.11.04 21:39:46.240] - INFO: Processing classes...
[2014.11.04 21:39:46.240] - INFO: Processing clsid [\Registry\User\S-1-5-21-2098387635-82296276-96705846-1001\SOFTWARE\Classes\CLSID\{bbbcc0f8-b5f9-4c9a-8ba0-eb6f5db3d731}]
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing invalid values in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [ServerExecutable] = [%systemroot%\sysWOW64\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing value [ServerExecutable] = [%systemroot%\system32\wbem\wmiprvse.exe]
[2014.11.04 21:39:46.240] - INFO: Processing invalid subkeys in [HKLM\SOFTWARE\Classes\CLSID\{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}\LocalServer32]...
[2014.11.04 21:39:46.240] - INFO: Processing [HKLM\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}]...
[2014.11.04 21:39:46.240] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.04 21:39:46.240] - INFO: Processing subkey [\Registry\Machine\SOFTWARE\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\InprocServer32]
[2014.11.04 21:39:46.240] - INFO: Win32/Poweliks not found
[2014.11.04 21:39:50.857] - End
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.5 (10.31.2014:1)
OS: Windows 7 Ultimate x64
Ran by Gandalf on Tue 11/04/2014 at 21:41:23.26
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 11/04/2014 at 21:42:44.05
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# AdwCleaner v3.311 - Report created 04/11/2014 at 21:45:27
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Gandalf - HOMEWK000000101
# Running from : C:\Users\Gandalf\Desktop\adwcleaner_3.311.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
*************************
AdwCleaner[R0].txt - [1461 octets] - [04/11/2014 20:06:48]
AdwCleaner[R1].txt - [806 octets] - [04/11/2014 21:44:50]
AdwCleaner[S0].txt - [1538 octets] - [04/11/2014 20:07:57]
AdwCleaner[S1].txt - [728 octets] - [04/11/2014 21:45:27]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [787 octets] ##########
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 11/4/2014 8:20:45 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 8:20:45 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 8:20:45 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:20:46 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Update, 11/4/2014 8:20:49 PM, SYSTEM, HOMEWK000000101, Manual, Rootkit Database, 2014.9.18.1, 2014.11.1.2,
Update, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Manual, Malware Database, 2014.9.19.5, 2014.11.5.2,
Protection, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Starting,
Protection, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopping,
Protection, 11/4/2014 8:20:55 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopped,
Protection, 11/4/2014 8:20:58 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Success,
Protection, 11/4/2014 8:20:58 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:20:58 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Scan, 11/4/2014 8:30:49 PM, SYSTEM, HOMEWK000000101, Manual, Start:11/4/2014 8:21:05 PM, Duration:9 min 43 sec, Threat Scan, Completed, 0 Malware Detections, 0 Non-Malware Detections,
Protection, 11/4/2014 8:34:26 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 8:34:26 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 8:34:26 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:34:40 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Protection, 11/4/2014 8:40:22 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 8:40:22 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 8:40:22 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 8:40:24 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopping,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopped,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Stopping,
Protection, 11/4/2014 9:19:59 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Stopped,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Starting,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malware Protection, Started,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 9:50:28 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
Update, 11/4/2014 9:50:29 PM, SYSTEM, HOMEWK000000101, Manual, Rootkit Database, 2014.9.18.1, 2014.11.1.2,
Update, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Manual, Malware Database, 2014.9.19.5, 2014.11.5.2,
Protection, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Starting,
Protection, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopping,
Protection, 11/4/2014 9:50:34 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Stopped,
Protection, 11/4/2014 9:50:37 PM, SYSTEM, HOMEWK000000101, Protection, Refresh, Success,
Protection, 11/4/2014 9:50:37 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Starting,
Protection, 11/4/2014 9:50:37 PM, SYSTEM, HOMEWK000000101, Protection, Malicious Website Protection, Started,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11/4/2014
Scan Time: 8:21:05 PM
Logfile:
Administrator: Yes
Version: 2.00.3.1025
Malware Database: v2014.11.05.02
Rootkit Database: v2014.11.01.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Gandalf
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 309848
Time Elapsed: 9 min, 43 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)