Malwarebytes
www.malwarebytes.com

-Szczegóły raportu-
Data skanowania: 21.08.2017
Czas skanowania: 18:52
Raport: Mb2.txt
Administrator: Tak

-Informacje o oprogramowaniu-
Wersja: 3.0.6.1469
Wersja komponentów: 1.0.103
Aktualna wersja pakietu: 1.0.2630
Licencja: Free

-Informacje o systemie-
System operacyjny: Windows 10
Procesor: x64
System plików: NTFS
Użytkownik: DESKTOP-RT4JEL6\sprzy

-Wyniki skanowania-
Typ skanowania: Pełne skanowanie
Wynik: Ukończono
Obiekty przeskanowane: 111146
Czas, który upłynął: 5 min, 52 s

-Opcje skanowania-
Pamięć: Włączony
Autostart: Włączony
System plików: Włączony
Archiwa: Włączony
Rootkity: Włączony
Heurystyka: Włączony
PUP: Włączony
PUM: Włączony

-Szczegóły skanowania-
Proces: 0
(Nie wykryto zagrożeń)

Moduł: 0
(Nie wykryto zagrożeń)

Klucz rejestru: 16
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0F3EFD18-CCDB-4EC4-9009-186B5E6F35C0}, Dodano do kwarantanny, [965], [258706],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{13057CF7-4D78-41E6-BC8B-96D57BEF501A}, Dodano do kwarantanny, [965], [258707],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{239C3D29-2E90-4BB5-A95F-347F3E864FD4}, Dodano do kwarantanny, [965], [258707],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{814149EB-0EC2-48E9-BF2D-00C20BAED691}, Dodano do kwarantanny, [965], [258706],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AAC276A8-591B-461B-ADD0-70AE8B268204}, Dodano do kwarantanny, [965], [258707],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B39A6D62-78EB-4304-B35D-343BD61C6D6A}, Dodano do kwarantanny, [539], [317311],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CC676BF4-889E-45D4-9A5A-5D8E41360B6C}, Dodano do kwarantanny, [539], [317311],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D120F6FE-6351-4EE2-A0D4-3C91078B9797}, Dodano do kwarantanny, [539], [391427],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E36C1BCF-02FA-4C7A-8654-1D3D79F8F815}, Dodano do kwarantanny, [539], [317311],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online Application, Dodano do kwarantanny, [539], [360190],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\Online.io Application, Dodano do kwarantanny, [539], [317312],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\WOW6432NODE\MICROLEAVES\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, Dodano do kwarantanny, [539], [339688],1.0.2630
PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-4031471117-3546631773-1839798472-1001\CONSOLE\TASKENG.EXE, Dodano do kwarantanny, [5314], [425125],1.0.2630
PUP.Optional.DriverAgentPlus, HKU\S-1-5-21-4031471117-3546631773-1839798472-1001\SOFTWARE\ESUPPORT.COM\DriverAgent, Dodano do kwarantanny, [2188], [262210],1.0.2630
PUP.Optional.ChinAd, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wfcre, Dodano do kwarantanny, [96], [417525],1.0.2630
PUP.Optional.SystemHealer, HKU\S-1-5-21-4031471117-3546631773-1839798472-1001\SOFTWARE\SYSTEM HEALER, Dodano do kwarantanny, [965], [261796],1.0.2630

Wartość rejestru: 11
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0F3EFD18-CCDB-4EC4-9009-186B5E6F35C0}|PATH, Dodano do kwarantanny, [965], [258706],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{13057CF7-4D78-41E6-BC8B-96D57BEF501A}|PATH, Dodano do kwarantanny, [965], [258707],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{239C3D29-2E90-4BB5-A95F-347F3E864FD4}|PATH, Dodano do kwarantanny, [965], [258707],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{814149EB-0EC2-48E9-BF2D-00C20BAED691}|PATH, Dodano do kwarantanny, [965], [258706],1.0.2630
PUP.Optional.SystemHealer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AAC276A8-591B-461B-ADD0-70AE8B268204}|PATH, Dodano do kwarantanny, [965], [258707],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B39A6D62-78EB-4304-B35D-343BD61C6D6A}|PATH, Dodano do kwarantanny, [539], [317311],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CC676BF4-889E-45D4-9A5A-5D8E41360B6C}|PATH, Dodano do kwarantanny, [539], [317311],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D120F6FE-6351-4EE2-A0D4-3C91078B9797}|PATH, Dodano do kwarantanny, [539], [391427],1.0.2630
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E36C1BCF-02FA-4C7A-8654-1D3D79F8F815}|PATH, Dodano do kwarantanny, [539], [317311],1.0.2630
PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-4031471117-3546631773-1839798472-1001\CONSOLE\TASKENG.EXE|WINDOWPOSITION, Dodano do kwarantanny, [5314], [425125],1.0.2630
PUP.Optional.SystemHealer, HKU\S-1-5-21-4031471117-3546631773-1839798472-1001\SOFTWARE\SYSTEM HEALER|CARTURL, Dodano do kwarantanny, [965], [261796],1.0.2630

Dane rejestru: 0
(Nie wykryto zagrożeń)

Strumień danych: 0
(Nie wykryto zagrożeń)

Folder: 2
PUP.Optional.EnjoyWiFi, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\ENJOYWIFI, Dodano do kwarantanny, [8586], [417508],1.0.2630
PUP.Optional.DriverAgent, C:\PROGRAM FILES (X86)\ESUPPORT.COM\DRIVERAGENT, Dodano do kwarantanny, [2226], [345590],1.0.2630

Plik: 9
PUP.Optional.BitCoinMiner, C:\USERS\SPRZY\APPDATA\LOCAL\TEMP\978551000\IC-0.C0B843DCC091C8.EXE, Dodano do kwarantanny, [177], [363441],1.0.2630
PUP.Optional.BitCoinMiner, C:\USERS\SPRZY\APPDATA\LOCAL\TEMP\978551000\IC-0.898D3B05E966E8.EXE, Dodano do kwarantanny, [177], [363441],1.0.2630
PUP.Optional.SystemHealer, C:\WINDOWS\TASKS\System HealerStartUp.job, Dodano do kwarantanny, [965], [252785],1.0.2630
PUP.Optional.EnjoyWiFi, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\ENJOYWIFI\ENJOYWIFI.LNK, Dodano do kwarantanny, [8586], [417508],1.0.2630
PUP.Optional.EnjoyWiFi, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnjoyWiFi\uninstall EnjoyWiFi.lnk, Dodano do kwarantanny, [8586], [417508],1.0.2630
PUP.Optional.ChinAd, C:\WINDOWS\SYSTEM32\DRIVERS\WFCRE.SYS, Dodano do kwarantanny, [96], [417524],0.0.0
PUP.Optional.DriverAgent, C:\PROGRAM FILES (X86)\ESUPPORT.COM\DRIVERAGENT\launcher64.dll, Dodano do kwarantanny, [2226], [345590],1.0.2630
PUP.Optional.ChinAd, C:\WINDOWS\SYSTEM32\DRIVERS\WFCRE.SYS, Dodano do kwarantanny, [96], [417525],1.0.2630
PUP.Optional.DriverAgent, C:\WINDOWS\TEMP\DRIVERAGENT\DRVAGENT64.SYS, Dodano do kwarantanny, [2226], [345587],1.0.2630

Sektor fizyczny: 0
(Nie wykryto zagrożeń)


(end)