Malwarebytes' Anti-Malware 1.50 www.malwarebytes.org Wersja bazy: 5366 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 6.0.2900.5512 2010-12-21 18:34:10 mbam-log-2010-12-21 (18-34-10).txt Typ skanowania: Szybkie skanowanie Przeskanowano obiektów: 169619 Upłynęło: 2 minut(y), 43 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 29 Zainfekowanych wartości rejestru: 10 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 25 Zainfekowanych plików: 23 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: HKEY_CLASSES_ROOT\CLSID\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} (Adware.WidgiToolbar) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} (Adware.WidgiToolbar) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} (Adware.WidgiToolbar) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6} (Adware.ShoppingReport2) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{D44FD6F0-9746-484E-B5C4-C66688393872} (Adware.ShoppingReport2) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C} (Adware.ShoppingReport2) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{F244A744-534D-4A46-855F-C0C7E9F27DAA} (Adware.ShoppingReport2) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{030C9927-10FC-4169-97A2-55BECD5D88D8} (Adware.ShoppingReport2) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{2AA2FBF8-9C76-4E97-A226-25C5F4AB6358} (Adware.Hotbar) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.ShoppingReport2) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{37B85A21-692B-4205-9CAD-2626E4993404} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} (Adware.Zango) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.HbAx (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.HbAx.1 (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.HbInfoBand (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.HbInfoBand.1 (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.IEButton (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.IEButton.1 (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.IEButtonA (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.IEButtonA.1 (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.RprtCtrl (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\ShoppingReport2.RprtCtrl.1 (Adware.ShopperReports) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\ROUA3O12PW (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\TOY5KNQ8OC (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\Software\hotbarsa (Adware.Hotbar) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\ClickPotatoLite (Adware.ClickPotato) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\MyGlobalSearch (Adware.BookedSpace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\ShoppingReport2 (Adware.ShoppingReport2) -> Quarantined and deleted successfully. Zainfekowanych wartości rejestru: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} (Adware.WidgiToolbar) -> Value: {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} (Adware.WidgiToolbar) -> Value: {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{C5428486-50A0-4a02-9D20-520B59A9F9B3} (Adware.ShopperReports) -> Value: {C5428486-50A0-4a02-9D20-520B59A9F9B3} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{C5428486-50A0-4a02-9D20-520B59A9F9B3} (Adware.ShopperReports) -> Value: {C5428486-50A0-4a02-9D20-520B59A9F9B3} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{C5428486-50A0-4a02-9D20-520B59A9F9B2} (Adware.ShopperReports) -> Value: {C5428486-50A0-4a02-9D20-520B59A9F9B2} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{C5428486-50A0-4a02-9D20-520B59A9F9B2} (Adware.ShopperReports) -> Value: {C5428486-50A0-4a02-9D20-520B59A9F9B2} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{DB38E21A-0133-419d-92AD-ECDFD5244D6D} (Adware.ShoppingReport2) -> Value: {DB38E21A-0133-419d-92AD-ECDFD5244D6D} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{DB38E21A-0133-419d-92AD-ECDFD5244D6D} (Adware.ShoppingReport2) -> Value: {DB38E21A-0133-419d-92AD-ECDFD5244D6D} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{EB620C54-E229-4942-87CE-E717109FC8C6} (Adware.ShoppingReport2) -> Value: {EB620C54-E229-4942-87CE-E717109FC8C6} -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{EB620C54-E229-4942-87CE-E717109FC8C6} (Adware.ShoppingReport2) -> Value: {EB620C54-E229-4942-87CE-E717109FC8C6} -> Quarantined and deleted successfully. Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: c:\documents and settings\Rodzice\dane aplikacji\shoppingreport (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\db (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\dwld (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\report (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\res1 (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\db (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\dwld (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\report (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\res2 (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2 (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\db (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\dwld (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\report (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\res1 (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\program files\myglobalsearch (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\myglobalsearch\bar (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\myglobalsearch\bar\History (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\myglobalsearch\bar\Settings (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\shoppingreport2 (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\program files\shoppingreport2\Bin (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\program files\shoppingreport2\Bin\2.7.27 (Adware.ShoppingReport2) -> Quarantined and deleted successfully. Zainfekowanych plików: c:\program files\dealio toolbar\IE\4.1\dealiotoolbarie.dll (Adware.WidgiToolbar) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\Config.xml (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\db\Aliases.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\db\Sites.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\dwld\whitelist.xip (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\report\aggr_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\report\send_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Rodzice\dane aplikacji\shoppingreport\cs\res1\whitelist.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\Config.xml (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\db\Aliases.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\db\Sites.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\dwld\whitelist.xip (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\report\aggr_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\report\send_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport\cs\res2\whitelist.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\Config.xml (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\db\Aliases.dbs (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\db\Sites.dbs (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\dwld\whitelist.xip (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\report\aggr_storage.xml (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\report\send_storage.xml (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\documents and settings\Szymeno\dane aplikacji\shoppingreport2\cs\res1\whitelist.dbs (Adware.ShoppingReport2) -> Quarantined and deleted successfully. c:\program files\myglobalsearch\bar\History\search (Adware.MyWebSearch) -> Quarantined and deleted successfully.