Malwarebytes Anti-Malware www.malwarebytes.org Data skanowania: 2015-11-09 Czas skanowania: 19:16:10 Raport: t.txt Administrator: Tak Wersja: 2.2.0.1024 Baza szkodliwego oprogramowania: v2015.11.09.05 Baza danych rootkitów: v2015.11.04.02 Licencja: Wersja próbna Ochrona przed złośliwym oprogramowaniem: Włączony Ochrona przed szkodliwymi stronami: Włączony Samoobrona: Wyłączony System operacyjny: Windows XP Service Pack 3 Procesor: x86 System plików: NTFS Użytkownik: Dominik_2 Typ skanowania: Dokładne skanowanie Wynik: Zakończono Obiekty przeskanowane: 562286 Czas, który upłynął: 21 min, 13 s Pamięć: Włączony Autostart: Włączony System plików: Włączony Archiwa: Włączony Rootkity: Wyłączony Heurystyka: Włączony PUP: Włączony PUM: Włączony Procesy: 2 RiskWare.Tool.CK, C:\WINDOWS\KMService.exe, 1252, , [57a27209652637ffc9c8d8de8f72d32d] Trojan.MalPack.HP, C:\Documents and Settings\Dominik_2\Ustawienia lokalne\Dane aplikacji\NVIDIA Corporation\Updates\NvdUpd.exe, 2404, , [1bde8cefabe0280e25ca12fc28d97888] Moduły: 0 (Nie wykryto zagrożeń) Klucze rejestru: 9 PUP.Optional.BrowseFox, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{df3e0b68-bf66-4a38-9dc7-1016227262b0}Gt, , [4dacb9c2a5e661d5732e2c4080841ee2], PUP.Optional.SearchProtect, HKU\S-1-5-21-1935655697-1275210071-682003330-1011\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, , [8871dba03a51b18500bcbf721ee404fc], PUP.Optional.MultiSP, HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}, , [e9104437ee9d2d096c5118119a6806fa], PUP.Optional.SuperOptimizer, HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}, , [38c1b5c6b2d971c535a2b1dfe41f8c74], PUP.Optional.SuperOptimizer, HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}, , [5b9e99e25239ff37b52395fbf70caf51], Adware.EoRezo, HKLM\SOFTWARE\FREE_SOFT_TO_DAY\fst_pl_89, , [07f262198902b97d51df3266bb47db25], PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [79807506305bbf77af434889dc27c43c], PUP.Optional.SuperOptimizer, HKU\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, , [84753f3ca3e8a88e844fdeb24eb5857b], PUP.Optional.SuperOptimizer, HKU\S-1-5-21-1935655697-1275210071-682003330-1011\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, , [27d283f8513a2d092ca7a1ef8a79619f], Wartości rejestru: 5 Trojan.MalPack.HP, HKU\S-1-5-21-1935655697-1275210071-682003330-1011\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|NvUpdSrv, C:\Documents and Settings\Dominik_2\Ustawienia lokalne\Dane aplikacji\NVIDIA Corporation\Updates\NvdUpd.exe, , [1bde8cefabe0280e25ca12fc28d97888] PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [79807506305bbf77af434889dc27c43c] PUP.Optional.Trovi, HKU\S-1-5-21-1935655697-1275210071-682003330-1011\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|URL, http://www.trovi.com/Results.aspx?gd=&ctid=CT3319709&octid=EB_ORIGINAL_CTID&ISID=M701AA4F3-90B6-4D66-9395-025C7BBB1844&SearchSource=58&CUI=&UM=6&UP=SP062C4735-75B0-4ECD-8654-DF6B1F76E44F&q={searchTerms}&SSPV=, , [5e9b8eed1279ae883c454f4593707987] PUP.Optional.Conduit, HKU\S-1-5-21-1935655697-1275210071-682003330-1011\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|SuggestionsURL_JSON, http://suggest.seccint.com/CSuggestJson.ashx?prefix={searchTerms}, , [26d37902513ab3838fe7045ef50e619f] PUP.Optional.Trovi, HKU\S-1-5-21-1935655697-1275210071-682003330-1011\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|DisplayName, Trovi search, , [23d6a7d4a9e247efa6db5c38c43f956b] Dane rejestru: 0 (Nie wykryto zagrożeń) Foldery: 13 FraudTool.YAC, C:\Documents and Settings\All Users\Menu Start\Programy\YAC, , [c2370378aedd1a1cdf237adaeb18d927], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\icons, , [ed0ccead781342f4a013055230d222de], PUP.Optional.VShare, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj, , [f009205b3457a88e5a6d96e241c123dd], PUP.Optional.VShare, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0, , [f009205b3457a88e5a6d96e241c123dd], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\content, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\defaults, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\defaults\preferences, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\locale, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\locale\en-US, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\skin, , [05f4f289622955e1e164561e42c2728e], Pliki: 35 RiskWare.Tool.CK, C:\WINDOWS\KMService.exe, , [57a27209652637ffc9c8d8de8f72d32d], Trojan.MalPack.HP, C:\Documents and Settings\Dominik_2\Ustawienia lokalne\Dane aplikacji\NVIDIA Corporation\Updates\NvdUpd.exe, , [1bde8cefabe0280e25ca12fc28d97888], PUP.Optional.BrowseFox, C:\WINDOWS\system32\drivers\{df3e0b68-bf66-4a38-9dc7-1016227262b0}Gt.sys, , [4dacb9c2a5e661d5732e2c4080841ee2], RiskWare.Tool.CK, C:\Program Files\ABBYY PDF Transformer 2.0\PDFT2.0.0.1147patch.exe, , [41b8fd7e18731b1ba2b5f7524bb53dc3], PUP.Optional.ConduitTB.Gen, C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\FreeSoundRecorder\ldrtbFree.dll, , [6099afccdbb08ea849d5f673b94b24dc], PUP.Optional.ConduitTB.Gen, C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\FreeSoundRecorder\tbFree.dll, , [6a8fd4a792f91e1874aa4b1eca3afc04], PUP.Optional.Spigot, C:\WINDOWS\Installer\59d51.msi, , [f0095922b1da75c1695f80ab6c9529d7], FraudTool.YAC, C:\Documents and Settings\All Users\Menu Start\Programy\YAC\YAC.lnk, , [c2370378aedd1a1cdf237adaeb18d927], FraudTool.YAC, C:\Documents and Settings\All Users\Menu Start\Programy\YAC\uninstall.lnk, , [c2370378aedd1a1cdf237adaeb18d927], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\bg.html, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\contentscript.js, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\manifest.json, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\icons\128.png, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\icons\16.png, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\icons\256.png, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\icons\32.png, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\icons\48.png, , [ed0ccead781342f4a013055230d222de], PUP.Optional.Complitly, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0\icons\64.png, , [ed0ccead781342f4a013055230d222de], PUP.Optional.VShare, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll, , [f009205b3457a88e5a6d96e241c123dd], PUP.Optional.VShare, C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\manifest.json, , [f009205b3457a88e5a6d96e241c123dd], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\install.rdf, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\chrome.manifest, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\content\.DS_Store, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\content\firefoxOverlay.xul, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\content\installid.js, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\content\overlay.js, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\content\vfdownload.js, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\defaults\.DS_Store, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\defaults\preferences\.DS_Store, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\defaults\preferences\vfdownload.js, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\locale\.DS_Store, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\locale\en-US\.DS_Store, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\locale\en-US\._vfdownload.properties, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\locale\en-US\vfdownload.properties, , [05f4f289622955e1e164561e42c2728e], PUP.Optional.SelectionLinks, C:\Documents and Settings\Dominik_2\Dane aplikacji\Mozilla\Firefox\Profiles\7wu4pgwm.default\extensions\{6C7C4A80-1E01-4AA1-82AE-F3726BF78F59}\skin\overlay.css, , [05f4f289622955e1e164561e42c2728e], Sektory fizyczne: 0 (Nie wykryto zagrożeń) (end)