# AdwCleaner v2.305 - Log utworzony 14/07/2013 o 21:51:04 # Aktualizacja 11/07/2013 przez Xplode # System operacyjny : Windows 7 Home Premium Service Pack 1 (64 bits) # Użytkownik : hp - HP-HP # Tryb uruchomienia : Normalny # Ścieżka : C:\Users\hp\Downloads\adwcleaner.exe # Opcja [Szukaj] ***** [Usługi] ***** Znaleziono : Application Updater ***** [Pliki / Foldery] ***** Folder Znaleziono : C:\Program Files (x86)\Application Updater Folder Znaleziono : C:\Program Files (x86)\AVG Secure Search Folder Znaleziono : C:\Program Files (x86)\Common Files\337 Folder Znaleziono : C:\Program Files (x86)\Common Files\AVG Secure Search Folder Znaleziono : C:\Program Files (x86)\Common Files\spigot Folder Znaleziono : C:\Program Files (x86)\Desk 365 Folder Znaleziono : C:\Program Files (x86)\Gophoto.it Folder Znaleziono : C:\Program Files (x86)\IObit Apps Toolbar Folder Znaleziono : C:\Program Files (x86)\Lyrmix Folder Znaleziono : C:\Program Files (x86)\Omiga Plus Folder Znaleziono : C:\Program Files (x86)\RegClean Pro Folder Znaleziono : C:\Program Files (x86)\sweetpacks bundle uninstaller Folder Znaleziono : C:\Program Files (x86)\TornTV.com Folder Znaleziono : C:\Program Files (x86)\WebCake Folder Znaleziono : C:\ProgramData\Babylon Folder Znaleziono : C:\ProgramData\boost_interprocess Folder Znaleziono : C:\ProgramData\BrowserDefender Folder Znaleziono : C:\ProgramData\eSafe Folder Znaleziono : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro Folder Znaleziono : C:\ProgramData\Trymedia Folder Znaleziono : C:\Users\hp\AppData\LocalLow\AVG Secure Search Folder Znaleziono : C:\Users\hp\AppData\LocalLow\delta Folder Znaleziono : C:\Users\hp\AppData\LocalLow\Search Settings Folder Znaleziono : C:\Users\hp\AppData\Roaming\337 Folder Znaleziono : C:\Users\hp\AppData\Roaming\BabSolution Folder Znaleziono : C:\Users\hp\AppData\Roaming\Babylon Folder Znaleziono : C:\Users\hp\AppData\Roaming\Desk 365 Folder Znaleziono : C:\Users\hp\AppData\Roaming\DSite Folder Znaleziono : C:\Users\hp\AppData\Roaming\Funmoods Folder Znaleziono : C:\Users\hp\AppData\Roaming\Omiga Plus Folder Znaleziono : C:\Users\hp\AppData\Roaming\OpenCandy Folder Znaleziono : C:\Users\hp\AppData\Roaming\WebCake Folder Znaleziono : C:\Windows\SysWOW64\ARFC Folder Znaleziono : C:\Windows\SysWOW64\jmdp Folder Znaleziono : C:\Windows\SysWOW64\WNLT Plik Infected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Infected : C:\Users\hp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Infected : C:\Users\hp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Infected : C:\Users\hp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Infected : C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Infected : C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Infected : C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Infected : C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( arg. : hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671) Plik Znaleziono : \END Plik Znaleziono : C:\END Plik Znaleziono : C:\Program Files (x86)\Mozilla Firefox\searchplugins\adawaretb.xml Plik Znaleziono : C:\Program Files (x86)\Mozilla FireFox\searchplugins\qvo6.xml Plik Znaleziono : C:\Windows\Tasks\DSite.job Plik Znaleziono : C:\Windows\Tasks\RegClean Pro_DEFAULT.job Plik Znaleziono : C:\Windows\Tasks\RegClean Pro_UPDATES.job ***** [Rejestr] ***** Dane Znaleziono : HKLM\...\StartMenuInternet\FIREFOX.EXE [(Default)] = C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&from=newgdp&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1373023287 Dane Znaleziono : HKLM\...\StartMenuInternet\Google Chrome [(Default)] = "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&from=newgdp&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1373023287 Dane Znaleziono : HKLM\...\StartMenuInternet\IEXPLORE.EXE [(Default)] = C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671 Klucz Znaleziono : HKCU\Software\1ClickDownload Klucz Znaleziono : HKCU\Software\AppDataLow\Software\Lyrmix Klucz Znaleziono : HKCU\Software\AppDataLow\Software\PriceGong Klucz Znaleziono : HKCU\Software\AppDataLow\Software\Search Settings Klucz Znaleziono : HKCU\Software\BabSolution Klucz Znaleziono : HKCU\Software\DataMngr Klucz Znaleziono : HKCU\Software\DealPly Klucz Znaleziono : HKCU\Software\delta LTD Klucz Znaleziono : HKCU\Software\Funmoods Klucz Znaleziono : HKCU\Software\IGearSettings Klucz Znaleziono : HKCU\Software\IM Klucz Znaleziono : HKCU\Software\ImInstaller Klucz Znaleziono : HKCU\Software\InstallCore Klucz Znaleziono : HKCU\Software\lollipop Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly Klucz Znaleziono : HKCU\Software\Search Settings Klucz Znaleziono : HKCU\Software\Softonic Klucz Znaleziono : HKCU\Software\systweak Klucz Znaleziono : HKCU\Software\WNLT Klucz Znaleziono : HKCU\Software\d08cd9e23eeb49 Klucz Znaleziono : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Klucz Znaleziono : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Klucz Znaleziono : HKLM\Software\Application Updater Klucz Znaleziono : HKLM\Software\AVG Security Toolbar Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Klucz Znaleziono : HKLM\Software\Classes\Installer\Features\FB6D58DD787439A4995AF3C00FEA8843 Klucz Znaleziono : HKLM\Software\Classes\Installer\Products\FB6D58DD787439A4995AF3C00FEA8843 Klucz Znaleziono : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol Klucz Znaleziono : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Klucz Znaleziono : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Klucz Znaleziono : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Klucz Znaleziono : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Klucz Znaleziono : HKLM\Software\DataMngr Klucz Znaleziono : HKLM\Software\DealPly Klucz Znaleziono : HKLM\Software\delta-homesSoftware Klucz Znaleziono : HKLM\Software\Desksvc Klucz Znaleziono : HKLM\Software\eSafeSecControl Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32 Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32 Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32 Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32 Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Klucz Znaleziono : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Klucz Znaleziono : HKLM\Software\qvo6Software Klucz Znaleziono : HKLM\Software\Search Settings Klucz Znaleziono : HKLM\Software\systweak Klucz Znaleziono : HKLM\Software\V9 Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\d08cd9e23eeb49 Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{DD85D6BF-4787-4A93-99A5-3F0CF0AE8834} Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freemake Video Converter_is1 Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WNLT Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Klucz Znaleziono : HKLM\SOFTWARE\Tarma Installer Klucz Znaleziono : HKU\S-1-5-21-2628046834-4149267464-2024695024-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Klucz Znaleziono : HKU\S-1-5-21-2628046834-4149267464-2024695024-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope] Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}] Wartość Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}] Wartość Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}] ***** [Przeglądarki Internetowe] ***** -\\ Internet Explorer v10.0.9200.16635 [HKCU\Software\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671 [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671 [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://safe.v9.com/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=SAMSUNGXHM641JI_S25YJDNZA08004 [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://www.qvo6.com/?utm_source=b&utm_medium=adk&from=adk&uid=SAMSUNGXHM641JI_S25YJDNZA08004&ts=1372784671 [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://safe.v9.com/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=SAMSUNGXHM641JI_S25YJDNZA08004 ************************* AdwCleaner[R1].txt - [14855 octets] - [14/07/2013 21:49:57] AdwCleaner[R2].txt - [14811 octets] - [14/07/2013 21:51:04] ########## EOF - C:\AdwCleaner[R2].txt - [14872 octets] ##########