Malwarebytes Anti-Rootkit BETA 1.9.4.1001
www.malwarebytes.org

Database version:
  main:    v2017.06.22.08
  rootkit: v2017.05.27.01

Windows 8.1 x64 NTFS
Internet Explorer 11.0.9600.17416
Kacper :: LAPTOP-KACPER [administrator]

2017-06-22 17:09:39
mbar-log-2017-06-22 (17-09-39).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | MBR | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: Drivers | Physical Sectors
Objects scanned: 386494
Time elapsed: 12 minute(s), 12 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|svcvmx (Trojan.Clicker) -> Data: "C:\Users\Kacper\AppData\Local\ntuserlitelist\svcvmx\svcvmx.exe" -starup -> Delete on reboot. [b88841013475ff377ce38b1519e7c739]

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 2
C:\Users\Kacper\AppData\Local\ntuserlitelist (Trojan.Clicker) -> Delete on reboot. [bf812220bced64d2ed6df3c1f11058a8]
C:\Users\Kacper\AppData\Local\ntuserlitelist\dataup (Trojan.Clicker) -> Delete on reboot. [bf812220bced64d2ed6df3c1f11058a8]

Files Detected: 5
C:\Windows\Temp\dataup.zip (Trojan.Clicker) -> Delete on reboot. [57e9a79ba30658dee106011aad54da26]
C:\Windows\System32\tprdpw64.exe (Trojan.Clicker) -> Delete on reboot. [29171230a40560d6475dd721c43d9c64]
C:\Windows\System32\drivers\etc\hosts (Hijack.HostFile) -> Bad: (127.0.0.1 clients2.google.com ) Good: () -> Replace on reboot. [66da1c269415ce686024230c07f9956b]
C:\Windows\System32\drivers\etc\hosts (Hijack.Host) -> Bad: (127.0.0.1 v1.ff.avast.com ) Good: () -> Replace on reboot. [a799a89aaffab482380d46a05ca5e61a]
C:\Windows\System32\drivers\etc\hosts (Hijack.Host) -> Bad: (opyright (c) 1993-2009 Microsoft) Good: () -> Replace on reboot. [9ca4fc46c1e80d292b1a5c8afa078e72]

Physical Sectors Detected: 0
(No malicious items detected)

(end)