~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.2 (01.06.2016)
Operating System: Windows 10 Home x64 
Ran by Laptop (Administrator) on 13.02.2016 at 22:09:08,94
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 6 

Failed to delete: C:\WINDOWS\system32\drivers\bsdriver.sys (File) 
Failed to delete: C:\WINDOWS\system32\drivers\cherimoya.sys (File) 
Failed to delete: C:\WINDOWS\system32\Drivers\{5b90b8c9-ca2d-48cf-a825-47d98b8a17e5}Gw64.sys (File) 
Successfully deleted: C:\Users\Laptop\Appdata\LocalLow\company (Folder) 
Successfully deleted: C:\Users\Laptop\AppData\Roaming\productdata (Folder) 
Successfully deleted: C:\WINDOWS\SysWOW64\REN9FA2.tmp (File) 

Deleted the following from C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\tjosifeg.default-1441103854263\prefs.js
user_pref(browser.search.searchengine.alias, );
user_pref(browser.search.searchengine.iconURL, hxxp://download.mpc.am/mpc/www/mpc.ico);
user_pref(browser.search.searchengine.name, MPC Safe Search );
user_pref(browser.search.searchengine.ref, );
user_pref(browser.search.searchengine.ts, );
user_pref(browser.search.searchengine.type, );
user_pref(browser.search.searchengine.uid, );
user_pref(browser.search.searchengine.url, hxxp://search.mpc.am?q={searchTerms}&cx=partner-pub-3796753109442372:3837783968);
user_pref(extensions.quick_start.enable_search1, false);
user_pref(extensions.quick_start.sd.closeWindowWithLastTab_prev_state, false);



Registry: 15 

Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_pl_005010237 (Registry Value) 
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\rec_en_77 (Registry Value) 
Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\{5b90b8c9-ca2d-48cf-a825-47d98b8a17e5}Gw64 (Registry Key) 
Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\cherimoya (Registry Key) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\SearchAssistant (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Search\\Default_Search_URL (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchUrl\\Default (Registry Value) 
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2396DF35-6434-477F-812C-5482E4A376F7} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bfa55139-82af-4663-a19b-e135dac8d043} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Search Page (Registry Value) 
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Start Page (Registry Value) 
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchUrl\\Default (Registry Value) 




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 13.02.2016 at 22:11:55,26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~