Malwarebytes Anti-Malware www.malwarebytes.org Scandatum: 17/09/2015 Scantijd: 18:50 Logboekbestand: 17 september 2015 18.50 u.txt Beheerder: Ja Versie: 2.1.8.1057 Malware-database: v2015.09.17.04 Rootkit-database: v2015.08.16.01 Licentie: Gratis Malware-bescherming: Uitgeschakeld Bescherming tegen kwaadaardige websites: Uitgeschakeld Zelfbescherming: Uitgeschakeld Besturingssysteem: Windows 7 Service Pack 1 Processor: x64 Bestandssysteem: NTFS Gebruiker: Hensyr Scantype: Aangepaste scan Resultaat: Voltooid Objecten gescand: 673785 Verstreken tijd: 2 u., 47 min, 3 sec Geheugen: Ingeschakeld Opstarten: Ingeschakeld Bestandssysteem: Ingeschakeld Archieven: Ingeschakeld Rootkits: Ingeschakeld Heuristiek: Ingeschakeld POP: Ingeschakeld POA: Ingeschakeld Processen: 1 PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\privoxy.exe, 5308, Verwijder-bij-herstart, [af49a18f98f378be6484b2c5dd2755ab] Modules: 1 PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\mgwz.dll, Verwijder-bij-herstart, [af49a18f98f378be6484b2c5dd2755ab], Registersleutels: 2 PUP.Optional.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PrivoxyService, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.Privoxy.PrxySvrRST, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\IT Viewer Viewer, Verwijder-bij-herstart, [6296e34d870433030ec11d10c1426e92], Registerwaarden: 2 PUP.Optional.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PRIVOXYSERVICE|ImagePath, "C:\Program Files (x86)\IT Viewer\privoxy.exe" --service, In quarantaine, [669231ffdab1d95d1bce700729db31cf] PUM.Bad.Proxy, HKU\S-1-5-21-1223704088-254192944-2079473161-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, 127.0.0.1:8118, In quarantaine, [6692d759711a87af826a6210c63ee719] Registerdata: 0 (Geen kwaadaardige items gedetecteerd) Mappen: 1 PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer, Verwijder-bij-herstart, [af49a18f98f378be6484b2c5dd2755ab], Bestanden: 15 Backdoor.Agent.WD, C:\Users\Hensyr\AppData\Local\Temp\hp_u_23232323.exe, In quarantaine, [ae4a2f01f69581b5c2fcc185fc04718f], PUP.Optional.Privoxy.PrxySvrRST, C:\Windows\System32\Tasks\IT Viewer Viewer, In quarantaine, [a553d65a6724072ffbd258d57c877c84], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\privoxy.exe, Verwijder-bij-herstart, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\astask.exe, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\checkproxy.exe, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\config.txt, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\default.action, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\default.filter, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\itff.exe, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\jpchromium.exe, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\jpchromium64.exe, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\mgwz.dll, Verwijder-bij-herstart, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\privoxy.log, Verwijder-bij-herstart, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\tsnet.dll, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], PUP.Optional.PrxySvrRST, C:\Program Files (x86)\IT Viewer\tsnet64.dll, In quarantaine, [af49a18f98f378be6484b2c5dd2755ab], Fysieke Sectoren: 0 (Geen kwaadaardige items gedetecteerd) (end)