Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Malwarebytes
- www.malwarebytes.com
- -Log Details-
- Scan Date: 7/18/18
- Scan Time: 10:49 PM
- Log File: 19cbf2a0-8acc-11e8-82ce-9829a646de16.json
- Administrator: Yes
- -Software Information-
- Version: 3.5.1.2522
- Components Version: 1.0.391
- Update Package Version: 1.0.5961
- License: Free
- -System Information-
- OS: Windows 10 (Build 17134.165)
- CPU: x64
- File System: NTFS
- User: NORBIK\norbi
- -Scan Summary-
- Scan Type: Threat Scan
- Scan Initiated By: Manual
- Result: Completed
- Objects Scanned: 321198
- Threats Detected: 27
- Threats Quarantined: 27
- Time Elapsed: 4 min, 20 sec
- -Scan Options-
- Memory: Enabled
- Startup: Enabled
- Filesystem: Enabled
- Archives: Enabled
- Rootkits: Disabled
- Heuristics: Enabled
- PUP: Detect
- PUM: Detect
- -Scan Details-
- Process: 0
- (No malicious items detected)
- Module: 0
- (No malicious items detected)
- Registry Key: 4
- Trojan.BitCoinMiner, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\BROWSE, Quarantined, [529], [518482],1.0.5961
- Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, Quarantined, [413], [518478],1.0.5961
- Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, Quarantined, [413], [518476],1.0.5961
- Adware.Tuto4PC, HKLM\SOFTWARE\Foldershare, Quarantined, [2765], [536223],1.0.5961
- Registry Value: 5
- PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Quarantined, [693], [-1],0.0.0
- PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Quarantined, [693], [-1],0.0.0
- Trojan.BitCoinMiner, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\BROWSE|CMDLINE, Quarantined, [529], [518482],1.0.5961
- PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, Quarantined, [693], [259988],1.0.5961
- Trojan.Downloader.E, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\STARTUPAPPROVED\RUN|1547484, Quarantined, [4112], [451404],1.0.5961
- Registry Data: 4
- PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH PAGE, Replaced, [693], [293485],1.0.5961
- PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Replaced, [693], [293485],1.0.5961
- PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Replaced, [693], [293485],1.0.5961
- PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Replaced, [693], [293486],1.0.5961
- Data Stream: 0
- (No malicious items detected)
- Folder: 3
- Adware.Tuto4PC, C:\PROGRAM FILES (X86)\HASH, Quarantined, [2765], [512199],1.0.5961
- Spyware.Arkei, C:\PROGRAMDATA\Arkei-fa989d39-4459-4f69-bbb6-5809e1cf8025, Quarantined, [723], [541539],1.0.5961
- Adware.Tuto4PC.Generic, C:\PROGRAM FILES\FZ5UV6ATOW, Quarantined, [3723], [537397],1.0.5961
- File: 11
- Trojan.BitCoinMiner, C:\WINSYS\SYSCONFIG.BAT, Quarantined, [529], [446006],1.0.5961
- Adware.Tuto4PC, C:\PROGRAM FILES (X86)\HASH\48728.exe.config, Quarantined, [2765], [512199],1.0.5961
- Adware.Linkury.Generic, C:\USERS\NORBI\APPDATA\LOCAL\SHAM.DB, Quarantined, [3758], [516191],1.0.5961
- Adware.Tuto4PC.Generic, C:\PROGRAM FILES\FZ5UV6ATOW\CAST.CONFIG, Quarantined, [3723], [537397],1.0.5961
- Adware.Tuto4PC.Generic, C:\Program Files\FZ5UV6ATOW\FZ5UV6ATO.exe.config, Quarantined, [3723], [537397],1.0.5961
- Adware.Tuto4PC.Generic, C:\Program Files\FZ5UV6ATOW\uninstaller.exe, Quarantined, [3723], [537397],1.0.5961
- Adware.Tuto4PC.Generic, C:\Program Files\FZ5UV6ATOW\uninstaller.exe.config, Quarantined, [3723], [537397],1.0.5961
- PUP.Optional.BundleInstaller, C:\PROGRAM FILES (X86)\KMSPICO 10.2.1 FINAL\REGISTRY_ACTIVATION_3420379231.EXE, Quarantined, [403], [505351],1.0.5961
- Backdoor.Bot, C:\PROGRAM FILES (X86)\KMSPICO 10.2.1 FINAL\ACTIVATION.EXE, Quarantined, [798], [419768],1.0.5961
- Adware.IStartSurf, C:\PROGRAM FILES (X86)\KMSPICO 10.2.1 FINAL\KMSPICOACTIVATOR.EXE, Quarantined, [592], [501988],1.0.5961
- Generic.Malware/Suspicious, C:\PROGRAM FILES (X86)\FOLDERSHARE\UNINSTALLER.EXE, Quarantined, [0], [392686],1.0.5961
- Physical Sector: 0
- (No malicious items detected)
- WMI: 0
- (No malicious items detected)
- (end)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement