
logi z combofix:
- Kod: Zaznacz wszystko
ComboFix 15-04-09.01 - Milka 2015-04-08 20:24:18.2.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1045.18.2038.1292 [GMT 2:00]
Uruchomiony z: c:\users\Milka\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Pliki utworzone od 2015-03-08 do 2015-04-08 )))))))))))))))))))))))))))))))
.
.
2015-04-08 18:33 . 2015-04-08 18:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-04-08 18:08 . 2015-04-08 18:08 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A29F4E79-2050-47F6-AD70-5ECC61E2E219}\offreg.dll
2015-04-08 18:03 . 2015-04-08 18:03 -------- d-----w- c:\users\Milka\AppData\Local\ESET
2015-04-07 17:09 . 2015-03-14 10:06 9119072 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A29F4E79-2050-47F6-AD70-5ECC61E2E219}\mpengine.dll
2015-04-05 04:08 . 2015-04-05 04:08 -------- d-s---w- c:\windows\system32\GWX
2015-03-24 18:17 . 2015-03-11 03:30 534528 ----a-w- c:\windows\system32\generaltel.dll
2015-03-24 18:17 . 2015-03-11 03:30 623616 ----a-w- c:\windows\system32\invagent.dll
2015-03-24 18:17 . 2015-03-11 03:29 818176 ----a-w- c:\windows\system32\appraiser.dll
2015-03-24 18:17 . 2015-03-11 03:29 26112 ----a-w- c:\windows\system32\acmigration.dll
2015-03-24 18:17 . 2015-03-11 03:26 892928 ----a-w- c:\windows\system32\aeinv.dll
2015-03-24 18:17 . 2015-03-11 03:29 327168 ----a-w- c:\windows\system32\devinv.dll
2015-03-24 18:17 . 2015-03-11 03:29 202752 ----a-w- c:\windows\system32\aepdu.dll
2015-03-24 18:17 . 2015-03-11 03:29 159744 ----a-w- c:\windows\system32\aepic.dll
2015-03-11 17:58 . 2015-03-06 05:15 137656 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2015-03-11 17:56 . 2015-01-17 02:30 828928 ----a-w- c:\windows\system32\msctf.dll
2015-03-11 17:56 . 2015-01-31 03:32 919552 ----a-w- c:\windows\system32\rdpcorets.dll
2015-03-11 17:56 . 2015-01-31 02:52 134656 ----a-w- c:\windows\system32\rdpudd.dll
2015-03-11 17:56 . 2015-01-31 02:51 15872 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2015-03-11 17:56 . 2015-02-26 03:11 2381312 ----a-w- c:\windows\system32\win32k.sys
2015-03-11 17:55 . 2015-02-03 03:12 171520 ----a-w- c:\windows\system32\ubpm.dll
2015-03-11 17:54 . 2015-02-20 04:13 26624 ----a-w- c:\windows\system32\lpk.dll
2015-03-11 17:54 . 2015-02-20 04:13 70656 ----a-w- c:\windows\system32\fontsub.dll
2015-03-11 17:54 . 2015-02-20 04:13 10240 ----a-w- c:\windows\system32\dciman32.dll
2015-03-11 17:54 . 2015-02-20 04:13 34304 ----a-w- c:\windows\system32\atmlib.dll
2015-03-11 17:54 . 2015-02-20 03:09 299008 ----a-w- c:\windows\system32\atmfd.dll
2015-03-11 17:53 . 2015-02-04 02:54 417792 ----a-w- c:\windows\system32\WMPhoto.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-02-24 03:23 . 2014-10-05 13:44 246920 ------w- c:\windows\system32\MpSigStub.exe
2015-02-17 14:26 . 2015-02-17 14:26 1217184 ----a-w- c:\windows\system32\FM20.DLL
2015-02-05 13:16 . 2014-10-05 14:26 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-02-05 13:16 . 2014-10-05 14:26 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-01-31 15:20 . 2015-01-31 15:21 8192 ----a-w- c:\windows\system32\srvany.exe
2015-01-31 15:20 . 2015-01-31 15:21 151552 ----a-w- c:\windows\KMService.exe
2015-01-27 23:36 . 2015-02-11 15:06 1167520 ----a-w- c:\windows\system32\aitstatic.exe
2015-01-09 02:48 . 2015-02-17 18:14 76800 ----a-w- c:\windows\system32\wdi.dll
2015-01-09 02:48 . 2015-02-17 18:14 635904 ----a-w- c:\windows\system32\perftrack.dll
2015-01-09 02:48 . 2015-02-17 18:14 27136 ----a-w- c:\windows\system32\powertracker.dll
.
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-11-20 131072]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-11-20 163840]
"Persistence"="c:\windows\system32\igfxpers.exe" [2014-11-20 135168]
"CheckNDISPortF0acD2"="c:\program files\4G Hostless Modem\PLAY ONLINE\CheckNDISPort_df.exe" [2013-07-26 459008]
"CancelAutoPlay_df"="c:\program files\4G Hostless Modem\PLAY ONLINE\CancelAutoPlay_df.exe" [2013-07-26 446208]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 89184]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-01-12 2219184]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2014-10-09 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-02-20 102912]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2015-01-31 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R4 IePluginServices;IePlugin Services;c:\programdata\IePluginServices\PluginService.exe [2014-10-31 714208]
R4 MaintainerSvc6.37.565328;MaintainerSvc6.37.565328;c:\programdata\7bb6df21-8ca8-4eec-965d-8cd2261544c7\maintainer.exe [x]
R4 Update EnterDigital;Update EnterDigital;c:\program files\EnterDigital\updateEnterDigital.exe [2014-11-02 523504]
R4 Util EnterDigital;Util EnterDigital;c:\program files\EnterDigital\bin\utilEnterDigital.exe [2014-10-31 523504]
S1 {f1d7e225-e39d-4bcb-8a90-eaa4181b222b}Gw;{f1d7e225-e39d-4bcb-8a90-eaa4181b222b}Gw;c:\windows\system32\drivers\{f1d7e225-e39d-4bcb-8a90-eaa4181b222b}Gw.sys [2014-10-31 43152]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-12-25 243128]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 95384]
S2 KMService;KMService;c:\windows\system32\srvany.exe [2015-01-31 8192]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
.
Zawartość folderu 'Zaplanowane zadania'
.
2015-04-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-05 13:16]
.
.
------- Skan uzupełniający -------
.
uStart Page = about:blank
mStart Page = about:blank
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Wyślij &do programu OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Milka\AppData\Roaming\Mozilla\Firefox\Profiles\5xmzf7tr.default\
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Info]
@Denied: (2) (LocalSystem)
"AppDataDir"="c:\\ProgramData\\ESET\\ESET NOD32 Antivirus\\"
"DataDir"="ESET\\ESET NOD32 Antivirus\\"
"EditionName"=" "
"InstallDir"="c:\\Program Files\\ESET\\ESET NOD32 Antivirus\\"
"LanguageId"=dword:00000415
"PackageTag"=dword:6090e758
"ProductBase"=dword:00000000
"ProductCode"="{B3B5F219-79E6-4307-8AC1-9B32BE37CD48}"
"ProductName"="ESET NOD32 Antivirus"
"ProductType"="eav"
"ProductVersion"="4.2.71.2"
"UniqueId"="0041876854CD00B1"
"ScannerBuild"=dword:0000215d
"ScannerVersionId"=dword:00001695
"ScannerVersion"="Open window for status."
"ei2"=hex(b):b2,ab,86,26,d9,e0,82,c3
"ei1"=hex(b):00,c0,9f,fe,49,0c,00,00
"ei3"=hex(b):4b,01,cd,54,00,00,00,00
"ei4"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2015-04-08 20:36:05
ComboFix-quarantined-files.txt 2015-04-08 18:36
ComboFix2.txt 2015-04-08 18:19
.
Przed: 14 500 352 000 bajtów wolnych
Po: 16 499 859 456 bajtów wolnych
.
- - End Of File - - FB558BD531BF42ACA1DF18C3C73C0771
A36C5E4F47E84449FF07ED3517B43A31
oraz antimalwere
- Kod: Zaznacz wszystko
<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2015/04/10 15:36:48 +0200</date>
<logfile>mbam-log-2015-04-10 (15-36-44).xml</logfile>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.01.4.1018</version>
<malware-database>v2015.04.10.04</malware-database>
<rootkit-database>v2015.03.31.01</rootkit-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<osversion>Windows 7 Service Pack 1</osversion>
<arch>x86</arch>
<username>Milka</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>312699</objects>
<time>1302</time>
<processes>1</processes>
<modules>0</modules>
<keys>20</keys>
<values>2</values>
<datas>0</datas>
<folders>11</folders>
<files>37</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
<process><path>C:\Windows\KMService.exe</path><vendor>RiskWare.Tool.CK</vendor><action>delete-on-reboot</action><pid>1700</pid><hash>519b5e0c6a20cd697f792c6d60a20df3</hash></process>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>fdef0268711972c455ea3d4959a846ba</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}</path><vendor>PUP.Optional.BrowseFox.A</vendor><action>success</action><hash>77755f0b236769cd029ddf938b78bb45</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{f1d7e225-e39d-4bcb-8a90-eaa4181b222b}Gw</path><vendor>PUP.Optional.Sanbreel.A</vendor><action>success</action><hash>2dbf4f1b23670432ca3e5f88679c748c</hash></key>
<key><path>HKLM\SOFTWARE\supWindowsMangerProtect</path><vendor>PUP.Optional.WPM.A</vendor><action>success</action><hash>38b4c0aab6d40d29f0d5a39f8184619f</hash></key>
<key><path>HKLM\SOFTWARE\supWPM</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>eefe7af0b5d5e55156271ec3b54e827e</hash></key>
<key><path>HKLM\SOFTWARE\sweet-pageSoftware</path><vendor>PUP.Optional.SweetPage.A</vendor><action>success</action><hash>c527402aa0ea4cea08adac8be52006fa</hash></key>
<key><path>HKLM\SOFTWARE\SUPTAB</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>d6162149acde3bfbf28ab32e21e258a8</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MaintainerSvc6.37.565328</path><vendor>PUP.Optional.MaintainerSvc.A</vendor><action>success</action><hash>bc3073f7e7a36ec8da6a79d19372b749</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update EnterDigital</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>edff3733d1b98caa6420f05be223fe02</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util EnterDigital</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>48a4b6b452383cfa5d26aaa1b15454ac</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices</path><vendor>PUP.Optional.IEPluginServices.A</vendor><action>success</action><hash>7c703b2ffc8e51e515fc51866e95b848</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect</path><vendor>PUP.Optional.WindowsMangerProtect.A</vendor><action>success</action><hash>7f6d34368604c76f809275626b98fd03</hash></key>
<key><path>HKU\S-1-5-21-724300184-3600769634-1668645338-1000\SOFTWARE\SupHpUISoft</path><vendor>PUP.Optional.WebSearches.A</vendor><action>success</action><hash>2dbf6406fd8dd85e71a02ab9b2516e92</hash></key>
<key><path>HKU\S-1-5-21-724300184-3600769634-1668645338-1000\SOFTWARE\INSTALLCORE\1I1T1Q1S</path><vendor>PUP.Optional.InstallCore.A</vendor><action>success</action><hash>2ac25a10f7932115e7a78c817c88619f</hash></key>
<key><path>HKU\S-1-5-21-724300184-3600769634-1668645338-1000\SOFTWARE\INSTALLCORE</path><vendor>PUP.Optional.InstallCore.A</vendor><action>success</action><hash>01ebe387d6b4e4526ef3ef34ee1702fe</hash></key>
<key><path>HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\EnterDigital</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></key>
<value><path>HKLM\SOFTWARE\SUPTAB</path><valuename>ptid</valuename><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><valuedata>cor</valuedata><hash>d6162149acde3bfbf28ab32e21e258a8</hash></value>
<value><path>HKU\S-1-5-21-724300184-3600769634-1668645338-1000\SOFTWARE\INSTALLCORE</path><valuename>tb</valuename><vendor>PUP.Optional.InstallCore.A</vendor><action>success</action><valuedata>0V1D1S1R1D0V1O</valuedata><hash>01ebe387d6b4e4526ef3ef34ee1702fe</hash></value>
<folder><path>C:\ProgramData\IePluginServices</path><vendor>PUP.Optional.IePluginServices.A</vendor><action>success</action><hash>d616a2c81c6e0333215fdebbaf54df21</hash></folder>
<folder><path>C:\ProgramData\IePluginServices\update</path><vendor>PUP.Optional.IePluginServices.A</vendor><action>success</action><hash>d616a2c81c6e0333215fdebbaf54df21</hash></folder>
<folder><path>C:\ProgramData\WindowsMangerProtect</path><vendor>PUP.Optional.WPM.A</vendor><action>success</action><hash>75772a405238f93dd87d207bdc276898</hash></folder>
<folder><path>C:\ProgramData\WindowsMangerProtect\log</path><vendor>PUP.Optional.WPM.A</vendor><action>success</action><hash>75772a405238f93dd87d207bdc276898</hash></folder>
<folder><path>C:\ProgramData\WindowsMangerProtect\update</path><vendor>PUP.Optional.WPM.A</vendor><action>success</action><hash>75772a405238f93dd87d207bdc276898</hash></folder>
<folder><path>C:\Users\Milka\AppData\Roaming\sweet-page</path><vendor>PUP.Optional.SweetPage.A</vendor><action>success</action><hash>a349a2c8d3b748ee4e28465e748f3ac6</hash></folder>
<folder><path>C:\Users\Milka\AppData\Roaming\sweet-page\log</path><vendor>PUP.Optional.SweetPage.A</vendor><action>success</action><hash>a349a2c8d3b748ee4e28465e748f3ac6</hash></folder>
<folder><path>C:\Program Files\EnterDigital</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></folder>
<folder><path>C:\Program Files\EnterDigital\bin</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></folder>
<folder><path>C:\Program Files\EnterDigital\bin\plugins</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></folder>
<folder><path>C:\Program Files\EnterDigital\bin\TEMP</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></folder>
<file><path>C:\Windows\KMService.exe</path><vendor>RiskWare.Tool.CK</vendor><action>delete-on-reboot</action><hash>519b5e0c6a20cd697f792c6d60a20df3</hash></file>
<file><path>C:\ProgramData\IePluginServices\PluginService.exe</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>fdef0268711972c455ea3d4959a846ba</hash></file>
<file><path>C:\ProgramData\7bb6df21-8ca8-4eec-965d-8cd2261544c7\maintainer.bak</path><vendor>PUP.Optional.SwiftBrowse</vendor><action>success</action><hash>1fcdc6a42f5bf046c45a838334ce1ae6</hash></file>
<file><path>C:\Windows\System32\drivers\{f1d7e225-e39d-4bcb-8a90-eaa4181b222b}Gw.sys</path><vendor>PUP.Optional.Sanbreel.A</vendor><action>success</action><hash>2dbf4f1b23670432ca3e5f88679c748c</hash></file>
<file><path>C:\Program Files\EnterDigital\updateEnterDigital.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>edff3733d1b98caa6420f05be223fe02</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\utilEnterDigital.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>48a4b6b452383cfa5d26aaa1b15454ac</hash></file>
<file><path>C:\ProgramData\IePluginServices\update\conf</path><vendor>PUP.Optional.IePluginServices.A</vendor><action>success</action><hash>d616a2c81c6e0333215fdebbaf54df21</hash></file>
<file><path>C:\ProgramData\WindowsMangerProtect\log\ProtectWindowsManager_2014-10-31[17-48-01-257].log</path><vendor>PUP.Optional.WPM.A</vendor><action>success</action><hash>75772a405238f93dd87d207bdc276898</hash></file>
<file><path>C:\ProgramData\WindowsMangerProtect\update\conf</path><vendor>PUP.Optional.WPM.A</vendor><action>success</action><hash>75772a405238f93dd87d207bdc276898</hash></file>
<file><path>C:\Users\Milka\AppData\Roaming\sweet-page\UninstallManager.exe</path><vendor>PUP.Optional.SweetPage.A</vendor><action>success</action><hash>a349a2c8d3b748ee4e28465e748f3ac6</hash></file>
<file><path>C:\Users\Milka\AppData\Roaming\sweet-page\log\UninstallManager_2014-10-31[18-35-04-776].log</path><vendor>PUP.Optional.SweetPage.A</vendor><action>success</action><hash>a349a2c8d3b748ee4e28465e748f3ac6</hash></file>
<file><path>C:\Program Files\EnterDigital\0</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\7za.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\EnterDigital.ico</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\EnterDigitalUninstall.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\gbicpopjaaipnhconhlfmbkjbcfdhkkl.crx</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\updateEnterDigital.InstallState</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\7za.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\BrowserAdapter.7z</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\EnterDigital.BrowserAdapter.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\EnterDigital.BrowserAdapter64.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\EnterDigital.PurBrowse.exe</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\EnterDigital.PurBrowseG.zip</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\f1d7e225e39d4bcb8a90.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\f1d7e225e39d4bcb8a9064.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\sqlite3.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\utilEnterDigital.InstallState</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\{f1d7e225-e39d-4bcb-8a90-eaa4181b222b}.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.Bromon.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.BroStats.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.BrowserAdapter.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.CompatibilityChecker.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.FFUpdate.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.GCUpdate.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.IEUpdate.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.Msvcmon.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
<file><path>C:\Program Files\EnterDigital\bin\plugins\EnterDigital.PurBrowseG.dll</path><vendor>PUP.Optional.EnterDigital.A</vendor><action>success</action><hash>de0e04665c2ebe78e656fbbfae557888</hash></file>
</items>
</mbam-log>
i adw cleaner
- Kod: Zaznacz wszystko
# AdwCleaner v4.201 - Logfile created 10/04/2015 at 16:43:48
# Updated 08/04/2015 by Xplode
# Database : 2015-04-08.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : Milka - LAPTOP_MILKA
# Running from : C:\Users\Milka\Desktop\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Milka\AppData\Roaming\Mozilla\Firefox\Profiles\5xmzf7tr.default\user.js
Folder Found : C:\Users\Milka\AppData\Roaming\pdfforge
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\EnterDigital
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\EnterDigital
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17689
-\\ Mozilla Firefox v37.0.1 (x86 pl)
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [949 bytes] - [10/04/2015 16:43:48]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1007 bytes] ##########