Malwarebytes Anti-Malware www.malwarebytes.org Data skanu: 2015-01-27 Czas skanu: 19:58:39 Raport: mbam.txt Administrator: Tak Wersja: 2.00.4.1028 Baza danych malware: v2015.01.27.08 Baza danych rootkitów: v2015.01.14.01 Licencja: Darmowy Ochrona przeciw malware: Wyłączony Ochrona przeciw szkodliwymi stronami: Wyłączony Samoobrony: Wyłączony System operacyjny: Windows 7 Service Pack 1 Procesor: x64 System plików: NTFS Użytkownik: Krystian Typ skanu: Skanowanie w poszukiwaniu zagrożeń Wynik: Zakończono Objekty zeskanowane: 377738 Minęło: 24 min, 31 s Pamięć: Włączony Autostart: Włączony System plików: Włączony Archiwa: Włączony Rootkity: Wyłączony Heurystyka: Włączony PNP: Włączony PNM: Włączony Procesy: 1 PUP.Optional.SafeWeb.A, C:\ProgramData\YbbayXorNC\GEDaPsL.exe, 2492, , [9bc9e319f792300693514a6238c9728e] Moduły: 0 (Nie wykryto groźnych) Klucze rejestru: 8 PUP.Optional.SafeWeb.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GEDaPsL, , [9bc9e319f792300693514a6238c9728e], PUP.Optional.IEBho.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0025320D-4D37-4C73-9A5C-0C28F04068A3}, , [71f316e64d3ca393b45600f031d1e719], PUP.Optional.IEBho.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{0025320D-4D37-4C73-9A5C-0C28F04068A3}, , [71f316e64d3ca393b45600f031d1e719], PUP.Optional.IEBho.A, HKU\S-1-5-21-622784062-384319640-2803719364-1009-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{0025320D-4D37-4C73-9A5C-0C28F04068A3}, , [71f316e64d3ca393b45600f031d1e719], PUP.Optional.IEBho.A, HKU\S-1-5-21-622784062-384319640-2803719364-1010-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{0025320D-4D37-4C73-9A5C-0C28F04068A3}, , [71f316e64d3ca393b45600f031d1e719], PUP.Optional.IEBho.A, HKU\S-1-5-21-622784062-384319640-2803719364-1009-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{0025320D-4D37-4C73-9A5C-0C28F04068A3}, , [71f316e64d3ca393b45600f031d1e719], PUP.Optional.IEBho.A, HKU\S-1-5-21-622784062-384319640-2803719364-1010-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{0025320D-4D37-4C73-9A5C-0C28F04068A3}, , [71f316e64d3ca393b45600f031d1e719], PUP.Optional.Softonic.A, HKU\S-1-5-21-622784062-384319640-2803719364-1010-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Softonic, , [bea67d7fd0b92c0a6603e998669d827e], Wartości rejestru: 1 PUP.Optional.SoftonicAssistant.A, HKU\S-1-5-21-622784062-384319640-2803719364-1009-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SoftonicAssistant, "C:\Users\Krystian\AppData\Local\SoftonicAssistant\SoftonicAssistant.exe", , [580cd923dbae6dc91922b8c4b64d4ab6] Dane rejestru: 0 (Nie wykryto groźnych) Foldery: 5 PUP.Optional.SafeWeb.A, C:\Users\KR\AppData\Local\SafeWeb, , [7fe5b745b0d9e2544dbf287aaf54916f], PUP.Optional.SafeWeb.A, C:\Users\Krystian\AppData\Local\SafeWeb, , [adb708f4ed9c0c2aa468841e9c67817f], PUP.Optional.WebSecFox.A, C:\Users\Krystian\AppData\Roaming\Mozilla\Firefox\Profiles\gozkroy9.default\extensions\anti@fish-fox.com, , [a1c327d503869f97c2fa3e3829da619f], PUP.Optional.WebSecFox.A, C:\Users\Krystian\AppData\Roaming\Mozilla\Firefox\Profiles\gozkroy9.default\extensions\anti@fish-fox.com\chrome, , [a1c327d503869f97c2fa3e3829da619f], PUP.Optional.WebSecFox.A, C:\Users\Krystian\AppData\Roaming\Mozilla\Firefox\Profiles\gozkroy9.default\extensions\anti@fish-fox.com\chrome\content, , [a1c327d503869f97c2fa3e3829da619f], Pliki: 15 PUP.Optional.SafeWeb.A, C:\ProgramData\YbbayXorNC\GEDaPsL.exe, , [9bc9e319f792300693514a6238c9728e], PUP.Optional.SafeWeb.A, C:\ProgramData\YbbayXorNC\dat\mnUOqaKPuS.exe, , [2c3834c80e7bbd79648044688180f907], PUP.Optional.SafeWeb.A, C:\ProgramData\YbbayXorNC\dat\zbBTDLEBj.exe, , [560e1be16e1b082e6b79c0ec39c8f808], PUP.Hacktool.Patcher, C:\Program Files (x86)\Internet Download Manager\Patch.rar, , [461eea12bacf92a452b21beb9b65ed13], PUP.Optional.SafeWeb.A, C:\Users\Krystian\AppData\Local\Temp\Setup-2-.exe, , [c1a38f6d850435016624c3a1b749a55b], PUP.Optional.AstroNet, C:\Users\Krystian\Downloads\Adobe-Flash-Player(13091)-dp.exe, , [5311619bfa8f46f069bc1181db2ad62a], PUP.Optional.LiveSoftAction, C:\Users\Krystian\Downloads\HAMA PC-VIBRA-HEADSET-HS-400 driver provided through paweldrivers.com.exe, , [a3c1e715c4c55fd73023bc1eed1805fb], PUP.Optional.Softonic, C:\Users\Krystian\Downloads\SoftonicDownloader_dla_skype-portable.exe, , [d88c2ad2315889adaa09d18925dbce32], PUP.Optional.OpenCandy, C:\Users\Krystian\Downloads\veetle-0.9.19.exe, , [372de913246588ae626f616cac599c64], PUP.Optional.SafeWeb.A, C:\Users\KR\AppData\Local\SafeWeb\data2.dat, , [7fe5b745b0d9e2544dbf287aaf54916f], PUP.Optional.SafeWeb.A, C:\Users\Krystian\AppData\Local\SafeWeb\data2.dat, , [adb708f4ed9c0c2aa468841e9c67817f], PUP.Optional.WebSecFox.A, C:\Users\Krystian\AppData\Roaming\Mozilla\Firefox\Profiles\gozkroy9.default\extensions\anti@fish-fox.com\chrome.manifest, , [a1c327d503869f97c2fa3e3829da619f], PUP.Optional.WebSecFox.A, C:\Users\Krystian\AppData\Roaming\Mozilla\Firefox\Profiles\gozkroy9.default\extensions\anti@fish-fox.com\install.rdf, , [a1c327d503869f97c2fa3e3829da619f], PUP.Optional.WebSecFox.A, C:\Users\Krystian\AppData\Roaming\Mozilla\Firefox\Profiles\gozkroy9.default\extensions\anti@fish-fox.com\chrome\content\background.js, , [a1c327d503869f97c2fa3e3829da619f], PUP.Optional.WebSecFox.A, C:\Users\Krystian\AppData\Roaming\Mozilla\Firefox\Profiles\gozkroy9.default\extensions\anti@fish-fox.com\chrome\content\background.xul, , [a1c327d503869f97c2fa3e3829da619f], Sektory fizyczne: 0 (Nie wykryto groźnych) (end)