Malwarebytes Anti-Malware
www.malwarebytes.org

Scandatum: 11-7-2015
Scantijd: 23:24
Logboekbestand: MBAM scanlog.txt
Beheerder: Ja

Versie: 2.1.8.1057
Malware-database: v2015.07.11.04
Rootkit-database: v2015.07.10.01
Licentie: Proef
Malware-bescherming: Ingeschakeld
Bescherming tegen kwaadaardige websites: Ingeschakeld
Zelfbescherming: Uitgeschakeld

Besturingssysteem: Windows 7 Service Pack 1
Processor: x64
Bestandssysteem: NTFS
Gebruiker: Jelle

Scantype: Bedreigingsscan
Resultaat: Voltooid
Objecten gescand: 465309
Verstreken tijd: 44 min, 34 sec

Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Uitgeschakeld
Heuristiek: Ingeschakeld
POP: Ingeschakeld
POA: Ingeschakeld

Processen: 0
(Geen kwaadaardige items gedetecteerd)

Modules: 0
(Geen kwaadaardige items gedetecteerd)

Registersleutels: 39
PUP.Optional.FunMoods.A, HKU\S-1-5-21-2521610771-4007929080-1142802741-500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}, In quarantaine, [89f7be22305a2b0b3ec63a5b62a08d73], 
PUP.Optional.FunMoods.A, HKU\S-1-5-21-2521610771-4007929080-1142802741-500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}, In quarantaine, [89f7be22305a2b0b3ec63a5b62a08d73], 
PUP.Optional.Funmoods.A, HKU\S-1-5-21-2521610771-4007929080-1142802741-500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}, In quarantaine, [99e75c84c7c3e254d378c9edbf43b34d], 
PUP.Optional.Funmoods.A, HKU\S-1-5-21-2521610771-4007929080-1142802741-500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}, In quarantaine, [99e75c84c7c3e254d378c9edbf43b34d], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}, In quarantaine, [cbb5b0305f2b79bd43bb8b2fba4849b7], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{706D4A4B-184A-4434-B331-296B07493D2D}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{8BE10F21-185F-4CA0-B789-9921674C3993}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{94C0B25D-3359-4B10-B227-F96A77DB773F}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B173667F-8395-4317-8DD6-45AD1FE00047}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B32672B3-F656-46E0-B584-FE61C0BB6037}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{BFE569F7-646C-4512-969B-9BE3E580D393}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C2996524-2187-441F-A398-CD6CB6B3D020}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E047E227-5342-4D94-80F7-CFB154BF55BD}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.BabylonToolBar.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}, In quarantaine, [542c8957c5c562d442bc84365ba79967], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}, In quarantaine, [2b550dd3ed9dd561a548f39e9b6719e7], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\TypeLib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{23C70BCA-6E23-4A65-AD2E-1389062074F1}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{295CACB4-51F5-46FD-914E-C72BAAE1B672}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C0585B2F-74D7-4734-88DE-6C150C5D4036}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.Funmoods.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EF0588D6-1621-4A75-B8BE-F4BC34794136}, In quarantaine, [e69ad10f9dede155c02dd1c057ab8e72], 
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}, In quarantaine, [98e832ae1e6ce2546240a65c7a89b14f], 
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}, In quarantaine, [1e623fa1acde2d096240e31f4bb85ba5], 
PUP.Optional.BabylonToolBar.A, HKU\S-1-5-21-2521610771-4007929080-1142802741-500\SOFTWARE\BabylonToolbar, In quarantaine, [aad6ac3426647eb8164af46cec186997], 
PUP.FunMoods, HKU\S-1-5-21-2521610771-4007929080-1142802741-500\SOFTWARE\Funmoods, In quarantaine, [fe82cf11008af83ea88bbd932dd6a957], 

Registerwaarden: 16
PUP.Optional.Softomate.A, HKU\S-1-5-21-2521610771-4007929080-1142802741-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{CA3EB689-8F09-4026-AA10-B9534C691CE0}, In quarantaine, [3749954b9ceeae885dea91f122e0b848], 
PUP.Optional.Softomate.A, HKU\S-1-5-21-2521610771-4007929080-1142802741-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{CA3EB689-8F09-4026-AA10-B9534C691CE0}, In quarantaine, [3749954b9ceeae885dea91f122e0b848], 
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|DisplayName, Funmoods, In quarantaine, [98e832ae1e6ce2546240a65c7a89b14f]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|URL, http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1QzuyBzzzytBzy0CtA0BzytBtAtA0E0B0D0DtN0D0Tzu0StByEyCtN1L2XzutBtFtCtFtCtFtAtCtB&cr=439454045, In quarantaine, [1f615e827c0e3ff7f5ad52b0b54e9868]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|FaviconURL, http://start.funmoods.com/favicon.ico, In quarantaine, [037df2ee404a1f17fca625dde12211ef]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|TopResultURLFallback, http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1QzuyBzzzytBzy0CtA0BzytBtAtA0E0B0D0DtN0D0Tzu0StByEyCtN1L2XzutBtFtCtFtCtFtAtCtB&cr=439454045, In quarantaine, [86fa05dbb6d4b482efb34bb753b040c0]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|FaviconPath, C:\PROGRA~2\Funmoods\1.5.23.22\FavIcon.ico, In quarantaine, [90f0756b682268ce5f431ce65fa43dc3]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|FaviconURLFallback, http://start.funmoods.com/favicon.ico, In quarantaine, [611f06dacebc0b2b1b87e71bd42f7e82]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}, Funmoods, In quarantaine, [611f3ba543470c2ab8ea887a34cfce32]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|DisplayName, Funmoods, In quarantaine, [1e623fa1acde2d096240e31f4bb85ba5]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|URL, http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1QzuyBzzzytBzy0CtA0BzytBtAtA0E0B0D0DtN0D0Tzu0StByEyCtN1L2XzutBtFtCtFtCtFtAtCtB&cr=439454045, In quarantaine, [afd1edf363277cbaacf630d23ac914ec]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|FaviconURL, http://start.funmoods.com/favicon.ico, In quarantaine, [cdb34997abdfae88970b4ab842c123dd]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|TopResultURLFallback, http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1QzuyBzzzytBzy0CtA0BzytBtAtA0E0B0D0DtN0D0Tzu0StByEyCtN1L2XzutBtFtCtFtCtFtAtCtB&cr=439454045, In quarantaine, [add36d73c9c1c076bae8887aa95a24dc]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|FaviconPath, C:\PROGRA~2\Funmoods\1.5.23.22\FavIcon.ico, In quarantaine, [2858eaf63b4fad89138f08fabb484bb5]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|FaviconURLFallback, http://start.funmoods.com/favicon.ico, In quarantaine, [88f8766ad6b49a9cf6acab572fd4d729]
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}, Funmoods, In quarantaine, [3848845c4b3fd660356df210a85b5ba5]

Registerdata: 0
(Geen kwaadaardige items gedetecteerd)

Mappen: 0
(Geen kwaadaardige items gedetecteerd)

Bestanden: 2
Trojan.MSIL.Injector, C:\Users\Jelle\AppData\Local\Temp\os1Ez1fg.exe.part, In quarantaine, [443cc51bbdcd96a0e01b4ac405006a96], 
PUP.Optional.APSuggestor.A, C:\Users\Jelle\AppData\Roaming\Mozilla\Firefox\Profiles\tw93kk1w.default\extensions\{7F23E3F4-F72E-4f4f-8761-854C8942708F}.xpi, In quarantaine, [e19f2bb519719c9a5133df2eef1459a7], 

Fysieke Sectoren: 0
(Geen kwaadaardige items gedetecteerd)


(end)