API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 25th, 2018
311
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.91 KB | None | 0 0
raw download clone embed print report
  1. Malwarebytes
  2. www.malwarebytes.com
  3.  
  4. -Log Details-
  5. Scan Date: 6/25/18
  6. Scan Time: 9:08 PM
  7. Log File: 28c14c67-78ab-11e8-bfca-94de80615e8b.json
  8. Administrator: Yes
  9.  
  10. -Software Information-
  11. Version: 3.5.1.2522
  12. Components Version: 1.0.374
  13. Update Package Version: 1.0.5623
  14. License: Free
  15.  
  16. -System Information-
  17. OS: Windows 7 Service Pack 1
  18. CPU: x64
  19. File System: NTFS
  20. User: admin-Komputer\admin
  21.  
  22. -Scan Summary-
  23. Scan Type: Threat Scan
  24. Scan Initiated By: Manual
  25. Result: Completed
  26. Objects Scanned: 343353
  27. Threats Detected: 98
  28. Threats Quarantined: 98
  29. Time Elapsed: 1 min, 54 sec
  30.  
  31. -Scan Options-
  32. Memory: Enabled
  33. Startup: Enabled
  34. Filesystem: Enabled
  35. Archives: Enabled
  36. Rootkits: Disabled
  37. Heuristics: Enabled
  38. PUP: Detect
  39. PUM: Detect
  40.  
  41. -Scan Details-
  42. Process: 0
  43. (No malicious items detected)
  44.  
  45. Module: 0
  46. (No malicious items detected)
  47.  
  48. Registry Key: 12
  49. Trojan.Egguard.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Quarantined, [1126], [-1],0.0.0
  50. Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\winamgr, Quarantined, [389], [526075],1.0.5623
  51. Adware.ExtenBro, HKU\S-1-5-21-2298222908-433205819-1316438490-1000\SOFTWARE\WOW6432NODE\betterworld, Quarantined, [1994], [526091],1.0.5623
  52. PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, Quarantined, [1363], [327197],1.0.5623
  53. PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, Quarantined, [1363], [327197],1.0.5623
  54. PUP.Optional.Gameo, HKU\S-1-5-21-2298222908-433205819-1316438490-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\AUDIO\POLICYCONFIG\PROPERTYSTORE\822ea4cc_0, Quarantined, [998], [185308],1.0.5623
  55. Trojan.BitCoinMiner, HKLM\SOFTWARE\SystemaRev, Quarantined, [525], [527865],1.0.5623
  56. Trojan.CoreBot, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\btlr, Quarantined, [4512], [515824],1.0.5623
  57. Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, Quarantined, [501], [518478],1.0.5623
  58. Trojan.Agent, HKLM\SOFTWARE\WOW6432NODE\NetworkMgmt, Quarantined, [389], [526089],1.0.5623
  59. Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, Quarantined, [501], [518476],1.0.5623
  60. Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4A0D29CD-7A99-4F5F-B81B-115A5BB25EC4}, Quarantined, [525], [530713],1.0.5623
  61.  
  62. Registry Value: 7
  63. Trojan.Egguard.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [1126], [-1],0.0.0
  64. Trojan.Egguard.PrxySvrRST, HKU\S-1-5-21-2298222908-433205819-1316438490-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [1126], [-1],0.0.0
  65. Trojan.Egguard.PrxySvrRST, HKU\S-1-5-21-2298222908-433205819-1316438490-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Quarantined, [1126], [-1],0.0.0
  66. Trojan.Egguard.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Quarantined, [1126], [-1],0.0.0
  67. PUP.Optional.Gameo, HKU\S-1-5-21-2298222908-433205819-1316438490-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\AUDIO\POLICYCONFIG\PROPERTYSTORE\822ea4cc_0|, Quarantined, [998], [185308],1.0.5623
  68. Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{4A0D29CD-7A99-4F5F-B81B-115A5BB25EC4}|INSTALLLOCATION, Quarantined, [525], [530713],1.0.5623
  69. Trojan.FakeMS, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINAMGR|IMAGEPATH, Quarantined, [3015], [506363],1.0.5623
  70.  
  71. Registry Data: 0
  72. (No malicious items detected)
  73.  
  74. Data Stream: 0
  75. (No malicious items detected)
  76.  
  77. Folder: 12
  78. PUP.Optional.Badu, C:\PROGRAM FILES (X86)\SBQH, Quarantined, [2789], [316151],1.0.5623
  79. Adware.Tuto4PC.Generic, C:\PROGRAMDATA\40ccc1d60c1d4712ab2be982f0b65780, Quarantined, [3716], [493327],1.0.5623
  80. Adware.Tuto4PC.Generic, C:\PROGRAMDATA\c6ef9faa279b4480ac035d885e8a2dcc, Quarantined, [3716], [493327],1.0.5623
  81. PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE, Quarantined, [4562], [443706],1.0.5623
  82. Trojan.Agent, C:\PROGRAMDATA\MICROSOFT\WINDOWS\AUDIO, Quarantined, [389], [526075],1.0.5623
  83. Adware.Tuto4PC, C:\PROGRAM FILES (X86)\C++, Quarantined, [2793], [531056],1.0.5623
  84. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\browser, Quarantined, [1126], [505207],1.0.5623
  85. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\network, Quarantined, [1126], [505207],1.0.5623
  86. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon, Quarantined, [4634], [509531],1.0.5623
  87. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js, Quarantined, [4634], [509531],1.0.5623
  88. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0, Quarantined, [4634], [509531],1.0.5623
  89. PUP.Optional.SystemTable.Generic, C:\USERS\ADMIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE, Quarantined, [4634], [509531],1.0.5623
  90.  
  91. File: 67
  92. PUP.Optional.Badu, C:\PROGRAM FILES (X86)\SBQH\UC.EXE, Quarantined, [2789], [316151],1.0.5623
  93. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\1.bat, Quarantined, [2789], [316151],1.0.5623
  94. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\360net.dll, Quarantined, [2789], [316151],1.0.5623
  95. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\360NetBase.dll, Quarantined, [2789], [316151],1.0.5623
  96. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\360NetBase64.dll, Quarantined, [2789], [316151],1.0.5623
  97. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\360NetUL.dll, Quarantined, [2789], [316151],1.0.5623
  98. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\7z.dll, Quarantined, [2789], [316151],1.0.5623
  99. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\7z.exe, Quarantined, [2789], [316151],1.0.5623
  100. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\Bind.exe, Quarantined, [2789], [316151],1.0.5623
  101. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\data.txt, Quarantined, [2789], [316151],1.0.5623
  102. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\sbqh.ini, Quarantined, [2789], [316151],1.0.5623
  103. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\unins000.dat, Quarantined, [2789], [316151],1.0.5623
  104. PUP.Optional.Badu, C:\Program Files (x86)\sbqh\unins000.exe, Quarantined, [2789], [316151],1.0.5623
  105. Adware.Tuto4PC.Generic, C:\PROGRAMDATA\40ccc1d60c1d4712ab2be982f0b65780\GBPQJSJJDT.exe.config, Quarantined, [3716], [493327],1.0.5623
  106. Adware.Tuto4PC.Generic, C:\PROGRAMDATA\c6ef9faa279b4480ac035d885e8a2dcc\SWKRUXJTLM.exe.config, Quarantined, [3716], [493327],1.0.5623
  107. Adware.Linkury.Generic, C:\USERS\ADMIN\APPDATA\ROAMING\Alpha-Ron.tst, Quarantined, [3751], [405188],1.0.5623
  108. PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE\CONF.DB, Quarantined, [4562], [443706],1.0.5623
  109. Adware.Linkury.Generic, C:\USERS\ADMIN\APPDATA\ROAMING\UNINSTALL_TEMP.ICO, Quarantined, [3751], [405196],1.0.5623
  110. Trojan.Egguard.PrxySvrRST, C:\PROGRAMDATA\MICROSOFT\WINDOWS\GPR\NETWORK\SVCNETWK.EXE, Quarantined, [1126], [517482],1.0.5623
  111. PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\SOURCEHASH{F0847AE0-465A-4D7B-A555-AABB43B550F0}, Quarantined, [3692], [398594],1.0.5623
  112. Trojan.Agent, C:\PROGRAMDATA\MICROSOFT\WINDOWS\AUDIO\DATA.CFG, Quarantined, [389], [526075],1.0.5623
  113. Trojan.Agent, C:\ProgramData\Microsoft\Windows\Audio\winamgr.exe, Quarantined, [389], [526075],1.0.5623
  114. Adware.Tuto4PC, C:\PROGRAM FILES (X86)\C++\226753.exe.config, Quarantined, [2793], [531056],1.0.5623
  115. Trojan.Egguard.PrxySvrRST, C:\PROGRAMDATA\MICROSOFT\WINDOWS\GPR\NETWORK\GENERAL.JS, Quarantined, [1126], [505207],1.0.5623
  116. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\ca.crt, Quarantined, [1126], [505207],1.0.5623
  117. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\ca.key, Quarantined, [1126], [505207],1.0.5623
  118. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\cert8.db, Quarantined, [1126], [505207],1.0.5623
  119. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\certutil.exe, Quarantined, [1126], [505207],1.0.5623
  120. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\chrome.exe, Quarantined, [1126], [505207],1.0.5623
  121. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\freebl3.dll, Quarantined, [1126], [505207],1.0.5623
  122. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\key3.db, Quarantined, [1126], [505207],1.0.5623
  123. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\libnspr4.dll, Quarantined, [1126], [505207],1.0.5623
  124. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\libplc4.dll, Quarantined, [1126], [505207],1.0.5623
  125. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\libplds4.dll, Quarantined, [1126], [505207],1.0.5623
  126. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\libvlcwk.dll, Quarantined, [1126], [505207],1.0.5623
  127. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\nss3.dll, Quarantined, [1126], [505207],1.0.5623
  128. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\nssckbi.dll, Quarantined, [1126], [505207],1.0.5623
  129. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\nssdbm3.dll, Quarantined, [1126], [505207],1.0.5623
  130. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\nssutil3.dll, Quarantined, [1126], [505207],1.0.5623
  131. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\secmod.db, Quarantined, [1126], [505207],1.0.5623
  132. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\smime3.dll, Quarantined, [1126], [505207],1.0.5623
  133. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\softokn3.dll, Quarantined, [1126], [505207],1.0.5623
  134. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\sqlite3.dll, Quarantined, [1126], [505207],1.0.5623
  135. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\func\ssl3.dll, Quarantined, [1126], [505207],1.0.5623
  136. Trojan.Egguard.PrxySvrRST, C:\ProgramData\Microsoft\Windows\GPR\network\default_cse.js, Quarantined, [1126], [505207],1.0.5623
  137. PUP.Optional.SystemTable.Generic, C:\USERS\ADMIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE\1.2_0\manifest.json, Quarantined, [4634], [509531],1.0.5623
  138. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon128.png, Quarantined, [4634], [509531],1.0.5623
  139. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon16.png, Quarantined, [4634], [509531],1.0.5623
  140. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon24.png, Quarantined, [4634], [509531],1.0.5623
  141. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon32.png, Quarantined, [4634], [509531],1.0.5623
  142. PUP.Optional.SystemTable.Generic, C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js\background.js, Quarantined, [4634], [509531],1.0.5623
  143. PUM.Optional.FireFoxSecurityOverride, C:\USERS\ADMIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\F0JTJKU3.DEFAULT-1415217263169\USER.JS, Quarantined, [14254], [302435],1.0.5623
  144. PUP.Optional.ContentPush, C:\WINDOWS\RUN.VBS, Quarantined, [828], [368898],1.0.5623
  145. RiskWare.FilePatch, C:\PROGRAMDATA\ABLETON\.LIVE 9 SUITE_UPDATED\PROGRAM\ABLETON LIVEPATCH [IO].EXE, Quarantined, [9153], [341056],1.0.5623
  146. RiskWare.FilePatch, C:\PROGRAMDATA\ABLETON\LIVE 9 SUITE\PROGRAM\ABLETON LIVEPATCH [IO].EXE, Quarantined, [9153], [341056],1.0.5623
  147. Adware.Linkury, C:\USERS\ADMIN\APPDATA\ROAMING\ZONEX.BIN, Quarantined, [1092], [504848],1.0.5623
  148. PUP.Optional.OpenCandy, C:\USERS\ADMIN\APPDATA\ROAMING\UTORRENT\UPDATES\3.4.2_37754.EXE, Quarantined, [1034], [431539],1.0.5623
  149. Adware.Agent, C:\USERS\ADMIN\APPDATA\ROAMING\ALPHA-RON.EXE, Quarantined, [104], [335137],1.0.5623
  150. PUP.Optional.Linkury, C:\USERS\ADMIN\APPDATA\ROAMING\TIPTAM.BIN, Quarantined, [233], [331415],1.0.5623
  151. RiskWare.BitCoinMiner, C:\USERS\ADMIN\APPDATA\LOCAL\OPERA-12.8\000001N.ZIP, Quarantined, [919], [467508],1.0.5623
  152. RiskWare.BitCoinMiner, C:\USERS\ADMIN\APPDATA\LOCAL\C.FRAMEWORK\MSIEXEC64.EXE, Quarantined, [919], [467508],1.0.5623
  153. RiskWare.BitCoinMiner, C:\USERS\ADMIN\APPDATA\LOCAL\CCLEANER V9.18\MSIEXEC64.EXE, Quarantined, [919], [467508],1.0.5623
  154. RiskWare.BitCoinMiner, C:\USERS\ADMIN\APPDATA\LOCAL\OPERA-12.8\MSIEXEC64.EXE, Quarantined, [919], [467508],1.0.5623
  155. Adware.ExtenBro, C:\USERS\ADMIN\APPDATA\LOCAL\WINDOWS\EXITNODE\EXITNODE.EXE, Quarantined, [1994], [527890],1.0.5623
  156. PUP.Optional.InstallCore, C:\USERS\ADMIN\APPDATA\LOCAL\MP4TOMOV_SETUP.EXE, Quarantined, [393], [110443],1.0.5623
  157. RiskWare.BitCoinMiner, C:\USERS\ADMIN\APPDATA\LOCAL\C.FRAMEWORK\000001N.ZIP, Quarantined, [919], [467508],1.0.5623
  158. RiskWare.BitCoinMiner, C:\USERS\ADMIN\APPDATA\LOCAL\CCLEANER V9.18\000001N.ZIP, Quarantined, [919], [467508],1.0.5623
  159.  
  160. Physical Sector: 0
  161. (No malicious items detected)
  162.  
  163. WMI: 0
  164. (No malicious items detected)
  165.  
  166.  
  167. (end)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!