Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 28/03/2015 Scan Time: 14:25:26 Logfile: MBAM scanlog.txt Administrator: Yes Version: 2.00.4.1028 Malware Database: v2015.03.28.03 Rootkit Database: v2015.03.26.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x86 File System: NTFS User: lumon Scan Type: Threat Scan Result: Completed Objects Scanned: 369717 Time Elapsed: 20 min, 36 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 5 PUP.Optional.Cinema.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CinemaP-1.9cV16.03-nv, , [588b52f8a8e270c60f0dc713d2319070], PUP.Optional.Cinema.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CinemaP-1.9cV16.03-nv-ie, , [7d662b1f0f7bec4ae7351ac0000348b8], PUP.Optional.Cinema.A, HKU\S-1-5-21-2468661837-1990217823-1405067445-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CinemaP-1.9cV16.03-nv-ie, , [fde6ba9031591422f329607ad3305ea2], PUP.Optional.Linkey.A, HKU\S-1-5-21-2468661837-1990217823-1405067445-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, , [40a3aaa01b6fd85ef90bfcbe72916799], PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [4e9578d23159ae88c238a4edcd36b14f], Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 2 PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.MBot.A, C:\Program Files\mbot_be_79, , [865d78d21b6fa0967d0b9afd6e952dd3], Files: 26 PUP.Optional.InstallCore, C:\Users\lumon\AppData\Roaming\0F1L1I1PtF1F1C1N\Firefox Free Download Packages\uninstaller.exe, , [a83b90ba2d5d75c19743e3612dd504fc], PUP.Optional.Multiplug.A, C:\Program Files\Hide Facebook Suggested Posts\Hide Facebook Suggested Posts.exe, , [5e85e4662d5d94a27f460728c240a858], PUP.Optional.Monetizer, C:\Users\lumon\AppData\Local\Temp\lochmaster 4.0 demo crack__10924_i1485348676_il412748.exe, , [737066e477131620768918d4f312cd33], PUP.Optional.OutBrowse, C:\Users\lumon\AppData\Local\Temp\setup.exe, , [12d1e16955352f076de1093056ac01ff], PUP.Optional.CrossRider.A, C:\Users\lumon\AppData\Local\Temp\1216.exe, , [ba293416f59567cf65d6c963b6503fc1], PUP.Optional.CrossRider.A, C:\Users\lumon\AppData\Local\Temp\1321.exe, , [f6ed53f7800aa690bd7e0527aa5cec14], PUP.Optional.CrossRider.A, C:\Users\lumon\AppData\Local\Temp\1474.exe, , [09daef5b1c6e261049f2101c8d7953ad], PUP.Optional.CrossRider.A, C:\Users\lumon\AppData\Local\Temp\1523.exe, , [2cb7e169d6b40630f04b2309a75fb34d], PUP.Optional.CrossRider.A, C:\Users\lumon\AppData\Local\Temp\1608.exe, , [1ec564e6b1d9f73fa992fb3122e4e719], PUP.Optional.CrossRider.A, C:\Users\lumon\AppData\Local\Temp\1863.exe, , [d11274d65436dc5a70cb3fed2adc10f0], Trojan.BitMiner, C:\Users\lumon\AppData\Local\Temp\msupdate71\indexer.exe, , [5e8569e18ffb5dd947cc16ddd52c9a66], Trojan.BitMiner, C:\Users\lumon\AppData\Local\Temp\msupdate71\msupdate.7z, , [e6fd3416a5e54cea1ff444affb06b749], PUP.Optional.OutBrowse, C:\Users\lumon\AppData\Local\Temp\nsu3D91.tmp\wdrcc.dll, , [776c183248427eb8193560d95da551af], PUP.Optional.Amonetize, C:\Users\lumon\Downloads\lochmaster 4.0 demo crack_10924_i46624300_il345.exe, , [f7ec94b6107aed49908886ae3ec42dd3], Trojan.Agent, C:\Users\lumon\Downloads\Lochmaster.4.0.keygen.by.DBC.zip, , [9a49eb5fe3a79d99820dcf184cb58b75], RiskWare.Tool.CK, C:\Windows\KMSAct.exe, , [fae9c486a0ea979f76aa721c3dc5a15f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\GoogleCrashHandler.exe, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\GoogleUpdate.exe, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\GoogleUpdateBroker.exe, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\GoogleUpdateHelper.msi, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\GoogleUpdateOnDemand.exe, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\goopdate.dll, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\goopdateres_en.dll, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\npGoogleUpdate4.dll, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\psmachine.dll, , [4e9578d23159ae88c238a4edcd36b14f], PUP.Optional.GlobalUpdate.A, C:\Users\lumon\AppData\Local\Temp\comh.379576\psuser.dll, , [4e9578d23159ae88c238a4edcd36b14f], Physical Sectors: 0 (No malicious items detected) (end)