API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 4th, 2017
235
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.64 KB | None | 0 0
raw download clone embed print report
  1. Malwarebytes
  2. www.malwarebytes.com
  3.  
  4. -Log Details-
  5. Scan Date: 7/4/17
  6. Scan Time: 1:35 AM
  7. Log File:
  8. Administrator: Yes
  9.  
  10. -Software Information-
  11. Version: 3.1.2.1733
  12. Components Version: 1.0.160
  13. Update Package Version: 1.0.2287
  14. License: Trial
  15.  
  16. -System Information-
  17. OS: Windows 10 (Build 14393.1358)
  18. CPU: x64
  19. File System: NTFS
  20. User: DESKTOP\Phikicheli
  21.  
  22. -Scan Summary-
  23. Scan Type: Threat Scan
  24. Result: Completed
  25. Objects Scanned: 403144
  26. Threats Detected: 54
  27. Threats Quarantined: 54
  28. Time Elapsed: 11 min, 8 sec
  29.  
  30. -Scan Options-
  31. Memory: Enabled
  32. Startup: Enabled
  33. Filesystem: Enabled
  34. Archives: Enabled
  35. Rootkits: Disabled
  36. Heuristics: Enabled
  37. PUP: Enabled
  38. PUM: Enabled
  39.  
  40. -Scan Details-
  41. Process: 0
  42. (No malicious items detected)
  43.  
  44. Module: 0
  45. (No malicious items detected)
  46.  
  47. Registry Key: 8
  48. Trojan.Clicker, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E7BC34A3-BA86-11CF-84B1-CBC2DA68BF6C}, Quarantined, [26], [383807],1.0.2287
  49. Trojan.Clicker, HKLM\SOFTWARE\CLASSES\NTService.Control.1, Quarantined, [26], [383807],1.0.2287
  50. Trojan.Clicker, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E7BC34A3-BA86-11CF-84B1-CBC2DA68BF6C}, Quarantined, [26], [383807],1.0.2287
  51. Trojan.Clicker, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E7BC34A3-BA86-11CF-84B1-CBC2DA68BF6C}\InprocServer32, Quarantined, [26], [383807],1.0.2287
  52. Trojan.Clicker, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E7BC34A3-BA86-11CF-84B1-CBC2DA68BF6C}\InprocServer32, Quarantined, [26], [383807],1.0.2287
  53. PUP.Optional.Plumbytes, HKLM\SOFTWARE\MICROSOFT\TRACING\Plumbytes_RASAPI32, Quarantined, [9125], [396951],1.0.2287
  54. PUP.Optional.Plumbytes, HKLM\SOFTWARE\MICROSOFT\TRACING\Plumbytes_RASMANCS, Quarantined, [9125], [396951],1.0.2287
  55. PUP.Optional.Plumbytes, HKLM\SOFTWARE\Plumbytes Software, Quarantined, [9125], [262040],1.0.2287
  56.  
  57. Registry Value: 1
  58. PUP.Optional.WinResSync.Generic, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|WINRESSYNC, Quarantined, [1514], [337571],1.0.2287
  59.  
  60. Registry Data: 0
  61. (No malicious items detected)
  62.  
  63. Data Stream: 0
  64. (No malicious items detected)
  65.  
  66. Folder: 7
  67. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\locales, Quarantined, [26], [383807],1.0.2287
  68. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\dataup, Quarantined, [26], [383807],1.0.2287
  69. PUP.Optional.YSearchTab, C:\Users\Phikicheli\AppData\Roaming\Mozilla\Firefox\Profiles\3b2os9s3.default\storage\default\http+++imdownloader.ysearchtab.com\idb\301792106ttes.files, Quarantined, [9156], [395234],1.0.2287
  70. PUP.Optional.YSearchTab, C:\Users\Phikicheli\AppData\Roaming\Mozilla\Firefox\Profiles\3b2os9s3.default\storage\default\http+++imdownloader.ysearchtab.com\idb, Quarantined, [9156], [395234],1.0.2287
  71. PUP.Optional.YSearchTab, C:\USERS\PHIKICHELI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3B2OS9S3.DEFAULT\STORAGE\DEFAULT\http+++imdownloader.ysearchtab.com, Quarantined, [9156], [395234],1.0.2287
  72. PUP.Optional.BundleInstaller, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\24515234, Quarantined, [25], [341983],1.0.2287
  73. PUP.Optional.ThreatSupport, C:\USERS\PHIKICHELI\APPDATA\LOCAL\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}, Quarantined, [2055], [343538],1.0.2287
  74.  
  75. File: 38
  76. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\dataup\dataup.exe, Quarantined, [26], [383807],1.0.2287
  77. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\dataup\dataup.ini, Quarantined, [26], [383807],1.0.2287
  78. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\dataup\help_dll.dll, Quarantined, [26], [383807],1.0.2287
  79. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\dataup\NTSVC.ocx, Quarantined, [26], [383807],1.0.2287
  80. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\locales\en-US.pak, Quarantined, [26], [383807],1.0.2287
  81. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\locales\zh-CN.pak, Quarantined, [26], [383807],1.0.2287
  82. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\cef.pak, Quarantined, [26], [383807],1.0.2287
  83. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\cef_100_percent.pak, Quarantined, [26], [383807],1.0.2287
  84. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\cef_200_percent.pak, Quarantined, [26], [383807],1.0.2287
  85. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\cef_extensions.pak, Quarantined, [26], [383807],1.0.2287
  86. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\icudtl.dat, Quarantined, [26], [383807],1.0.2287
  87. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\libcef.dll, Quarantined, [26], [383807],1.0.2287
  88. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\libEGL.dll, Quarantined, [26], [383807],1.0.2287
  89. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\libGLESv2.dll, Quarantined, [26], [383807],1.0.2287
  90. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\natives_blob.bin, Quarantined, [26], [383807],1.0.2287
  91. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\snapshot_blob.bin, Quarantined, [26], [383807],1.0.2287
  92. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\svcvmx.exe, Quarantined, [26], [383807],1.0.2287
  93. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\vmxclient.exe, Quarantined, [26], [383807],1.0.2287
  94. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\widevinecdm.dll, Quarantined, [26], [383807],1.0.2287
  95. Trojan.Clicker, C:\Windows\syswow64\config\systemprofile\AppData\Local\ntuserlitelist\svcvmx\widevinecdmadapter.dll, Quarantined, [26], [383807],1.0.2287
  96. PUP.Optional.YSearchTab, C:\Users\Phikicheli\AppData\Roaming\Mozilla\Firefox\Profiles\3b2os9s3.default\storage\default\http+++imdownloader.ysearchtab.com\idb\301792106ttes.sqlite, Quarantined, [9156], [395234],1.0.2287
  97. PUP.Optional.YSearchTab, C:\Users\Phikicheli\AppData\Roaming\Mozilla\Firefox\Profiles\3b2os9s3.default\storage\default\http+++imdownloader.ysearchtab.com\.metadata, Quarantined, [9156], [395234],1.0.2287
  98. PUP.Optional.YSearchTab, C:\Users\Phikicheli\AppData\Roaming\Mozilla\Firefox\Profiles\3b2os9s3.default\storage\default\http+++imdownloader.ysearchtab.com\.metadata-v2, Quarantined, [9156], [395234],1.0.2287
  99. PUP.Optional.InstallCore, C:\PROGRAM FILES (X86)\KMSPICO\KMSPICO_PATCH.EXE, Quarantined, [3], [386655],1.0.2287
  100. Trojan.Clicker, C:\WINDOWS\SYSTEM32\TPRDPW64.EXE, Quarantined, [26], [399773],1.0.2287
  101. PUP.Optional.Plumbytes, C:\$RECYCLE.BIN\S-1-5-21-1712185177-3340612968-1910388385-1001\$RXBRSM5.EXE, Quarantined, [9125], [123575],1.0.2287
  102. PUP.Optional.Amonetize, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\AMIPIXEL.CFG, Quarantined, [6], [302488],1.0.2287
  103. PUP.Optional.ConvertAd, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\NSK1159.TMP, Quarantined, [386], [290930],1.0.2287
  104. PUP.Optional.BundleInstaller, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\ICREINSTALL_KEYGEN-STEP-2.EXE, Quarantined, [25], [342755],1.0.2287
  105. Trojan.Clicker, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\1498955546\S5M_INSTALL_325.ZIP, Quarantined, [26], [387412],1.0.2287
  106. PUP.Optional.Plumbytes, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\PAIFFC5.TMP, Quarantined, [9125], [123575],1.0.2287
  107. PUP.Optional.FastDataX, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\24515234\IC-0.11DD1B68C42F84.EXE, Quarantined, [9347], [407240],1.0.2287
  108. Adware.Yelloader, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\1498955546\S5-20170325.ZIP, Quarantined, [1409], [409678],1.0.2287
  109. PUP.Optional.BundleInstaller, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\24515234\IC-0.9814C3728F27A.EXE, Quarantined, [25], [341983],1.0.2287
  110. PUP.Optional.BundleInstaller, C:\Users\Phikicheli\AppData\Local\Temp\24515234\dlreport, Quarantined, [25], [341983],1.0.2287
  111. PUP.Optional.BundleInstaller, C:\USERS\PHIKICHELI\APPDATA\LOCAL\TEMP\RARSFX6\KEYGEN-STEP-2.EXE, Quarantined, [25], [342755],1.0.2287
  112. PUP.Optional.ThreatSupport, C:\USERS\PHIKICHELI\APPDATA\LOCAL\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}\SCANLOGS.XML, Quarantined, [2055], [343538],1.0.2287
  113. PUP.Optional.MyRadioXP, C:\USERS\PHIKICHELI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\chrome-extension_fnhfdmnphmbbjbgppnpcddkefmeokfho_0.localstorage, Quarantined, [2945], [360496],1.0.2287
  114.  
  115. Physical Sector: 0
  116. (No malicious items detected)
  117.  
  118.  
  119. (end)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!