1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

[Closed] Trojan.Agent.ATS

Discussion in 'Malware and Virus Removal Archive' started by danny785, 2013/05/01.

Thread Status:
Not open for further replies.
  1. 2013/05/01
    danny785

    danny785 Inactive Thread Starter

    Joined:
    2013/04/29
    Messages:
    10
    Likes Received:
    0
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 4.9.3 (04.29.2013:2)
    OS: Windows 7 Home Premium x64
    Ran by Danny on Wed 05/01/2013 at 19:41:29.09
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services



    ~~~ Registry Values

    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page



    ~~~ Registry Keys

    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{5a1d0d31-749c-4186-a295-4106e6e7b26a}



    ~~~ Files

    Successfully deleted: [File] C:\Windows\syswow64\sho15C1.tmp



    ~~~ Folders

    Successfully deleted: [Folder] "C:\ProgramData\big fish games "
    Successfully deleted: [Folder] "C:\ProgramData\strongvault online backup "
    Successfully deleted: [Folder] "C:\Users\Danny\AppData\Roaming\strongvault "
    Successfully deleted: [Folder] "C:\Users\Danny\appdata\locallow\televisionfanatic "
    Successfully deleted: [Folder] "C:\ai_recyclebin "
    Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin "
    Successfully deleted: [Empty Folder] C:\Users\Danny\appdata\local\{1ED382BD-5F7B-4668-A070-51753563076A}
    Successfully deleted: [Empty Folder] C:\Users\Danny\appdata\local\{3F05E83D-02D9-4C42-9D68-DFEF1994957A}
    Successfully deleted: [Empty Folder] C:\Users\Danny\appdata\local\{61289BD2-40DD-4914-BAEB-B87B85B4A350}
    Successfully deleted: [Empty Folder] C:\Users\Danny\appdata\local\{D591A0E2-12F6-4E8F-BC5E-FCF49B54FB2A}



    ~~~ FireFox

    Successfully deleted: [File] C:\Users\Danny\AppData\Roaming\mozilla\firefox\profiles\3g55lhb3.default\extensions\glvwukotao@glvwukotao.org.xpi [Tracur]
    Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}



    ~~~ Event Viewer Logs were cleared





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on Wed 05/01/2013 at 19:45:35.70
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     
    danny785,
    #1
  2. 2013/05/01
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    broni,
    #2


  3. to hide this advert.

Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...