Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenovn: 29. 4. 2017
as skenovn: 12:05
Protokol: log.txt
Sprvce: Ano

Verze: 2.2.1.1043
Databze malwaru: v2017.04.29.03
Databze rootkit: v2017.04.02.01
Licence: Bezplatn verze
Ochrana proti malwaru: Vypnuto
Ochrana proti kodlivm webovm strnkm: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8.1
CPU: x64
Souborov systm: NTFS
Uivatel: Pa

Typ skenu: Sken hrozeb
Vsledek: Dokoneno
Prohledanch objekt: 421205
Uplynul as: 27 min, 7 sek

Pam: Zapnuto
Po sputn: Zapnuto
Souborov systm: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 1
PUP.Optional.MailRu, C:\Program Files (x86)\Mail.Ru\MailRuUpdater\MailRuUpdater.exe, 7984, Smazat pi restartu, [8a4d12e48a1e41f5c32e3b709968d12f]

Moduly: 0
(Nenalezeny dn kodliv poloky)

Kle registru: 24
PUP.Optional.DriverAgent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\DrvAgent64, Do karantny, [617649ad8f19d75f95781e6880809d63], 
PUP.Optional.RussAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{8E8F97CD-60B5-456F-A201-73065652D099}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{8E8F97CD-60B5-456F-A201-73065652D099}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\TYPELIB\{C69276F0-9BC1-404F-8566-FCB14D0ED4B8}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\INTERFACE\{2170BCBA-E35C-42A5-9CDB-691334845FA4}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\INTERFACE\{23B8D468-7358-408C-B1AC-8BAE2A610C41}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{2170BCBA-E35C-42A5-9CDB-691334845FA4}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{23B8D468-7358-408C-B1AC-8BAE2A610C41}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{2170BCBA-E35C-42A5-9CDB-691334845FA4}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{23B8D468-7358-408C-B1AC-8BAE2A610C41}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{C69276F0-9BC1-404F-8566-FCB14D0ED4B8}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{C69276F0-9BC1-404F-8566-FCB14D0ED4B8}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\IESearchPlugin.MailRuBHO.1, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{8E8F97CD-60B5-456F-A201-73065652D099}, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\IESearchPlugin.MailRuBHO, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\IESearchPlugin.MailRuBHO, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\WOW6432NODE\CLASSES\IESearchPlugin.MailRuBHO.1, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\WOW6432NODE\IESearchPlugin.MailRuBHO, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.RussAd, HKLM\SOFTWARE\CLASSES\WOW6432NODE\IESearchPlugin.MailRuBHO.1, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.MailRu, HKLM\SOFTWARE\WOW6432NODE\Mail.Ru, Do karantny, [6374c72f8b1d41f53942907e679a03fd], 
PUP.Optional.MailRu, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Updater.Mail.Ru, Do karantny, [8a4d12e48a1e41f5c32e3b709968d12f], 
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\Mail.Ru, Do karantny, [c215f600beeae4529b1ac6eed52c13ed], 
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\APPDATALOW\SOFTWARE\Mail.Ru, Do karantny, [9740be38eeba01357b0c3a88827f6b95], 
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}, Do karantny, [fbdcc135e8c0c175baee8316c43d2cd4], 

Hodnoty registru: 4
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}|URL, http://go.mail.ru/distib/ep/?q={SearchTerms}&product_id=%7BA897563D-72E1-4F37-98D5-3356E747C658%7D&gp=811041, Do karantny, [fbdcc135e8c0c175baee8316c43d2cd4]
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}|FaviconURLFallback, http://go.mail.ru/favicon.ico, Do karantny, [28af6c8a792fa1953c6cd9c0d72a9868]
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}|SuggestionsURL, http://suggests.go.mail.ru/ie8?q={SearchTerms}, Do karantny, [f6e17a7cbbed52e4198fdabf8081a65a]
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|mailruhomesearch, "C:\Users\Pa\AppData\Local\Mail.Ru\Sputnik\ptls\mailruhomesearch.exe" --pr_deferred, Do karantny, [dff85e98a305e84ee2af168354add030]

Data registru: 1
PUP.Optional.MailRu, HKU\S-1-5-21-621929646-1206955908-3885600500-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://mail.ru/cnt/10445?gp=811040, Dobr: (www.google.com), patn: (http://mail.ru/cnt/10445?gp=811040),Nahrazeno,[29aeda1cc0e8ea4c56f5afea0ef3c53b]

Sloky: 0
(Nenalezeny dn kodliv poloky)

Soubory: 7
PUP.Optional.Sputnik, C:\Users\Pa\AppData\Local\Temp\KB6F4DEEAB30F6595C.exe, Smazat pi restartu, [d1069a5c1197c76f69f8e4e6ed1312ee], 
PUP.Optional.DriverAgent, C:\Windows\SysWOW64\drivers\DrvAgent64.SYS, Do karantny, [617649ad8f19d75f95781e6880809d63], 
PUP.Optional.RussAd, C:\Users\Pa\AppData\Local\Mail.Ru\Sputnik\IESearchPlugin.dll, Do karantny, [2cab37bfdace83b36adea9fdea1622de], 
PUP.Optional.DriverAgent, C:\Windows\Temp\DriverAgent\DrvAgent64.sys, Do karantny, [498e01f5c8e053e3bb52e5a18977926e], 
PUP.Optional.DriverAgent, C:\Users\Pa\Downloads\biosagentplus_1218.exe, Do karantny, [0acd995d3a6ee4524230642241bf15eb], 
PUP.Optional.MailRu, C:\Program Files (x86)\Mail.Ru\MailRuUpdater\MailRuUpdater.exe, Smazat pi restartu, [8a4d12e48a1e41f5c32e3b709968d12f], 
PUP.Optional.MailRu, C:\Users\Pa\AppData\Local\Mail.Ru\Sputnik\ptls\mailruhomesearch.exe, Do karantny, [dff85e98a305e84ee2af168354add030], 

Fyzick sektory: 0
(Nenalezeny dn kodliv poloky)


(end)