Malwarebytes
www.malwarebytes.com

-Logboekdetails-
Scandatum: 20-02-19
Scantijd: 20:22
Logbestand: cd25a148-3544-11e9-8aeb-c454445b5f32.json

-Software-informatie-
Versie: 3.7.1.2839
Versie componenten: 1.0.538
Update pakketversie: 1.0.9360
Licentie: Proef

-Systeeminformatie-
Besturingssysteem: Windows 10 (Build 17134.590)
Processor: x64
Bestandssysteem: NTFS
Gebruiker: TOSHIBA\gebruiker

-Scansamenvatting-
Scantype: Bedreigingsscan
Scan geactiveerd door: Handmatig
Resultaat: Voltooid
Objecten gescand: 692787
Dreigingen herkend: 69
Dreigingen in quarantaine: 69
Verstreken tijd: 1 u., 46 min, 27 sec

-Scanopties-
Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Uitgeschakeld
Heuristiek: Ingeschakeld
POP: Detectie
POA: Detectie

-Scandetails-
Proces: 0
(Geen kwaadaardige items gedetecteerd)

Module: 0
(Geen kwaadaardige items gedetecteerd)

Registersleutel: 14
Worm.AutoRun, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\EXPLORER.EXE, In quarantaine, [1011], [201662],1.0.9360
Worm.AutoRun, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\EXPLORER.EXE, In quarantaine, [1011], [201662],1.0.9360
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\IEXPLORE.EXE, In quarantaine, [417], [206313],1.0.9360
Trojan.Agent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\IEXPLORE.EXE, In quarantaine, [417], [206313],1.0.9360
Trojan.Dropper, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\RUNDLL32.EXE, In quarantaine, [717], [206684],1.0.9360
Trojan.Dropper, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\RUNDLL32.EXE, In quarantaine, [717], [206684],1.0.9360
Trojan.Agent.UA, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\DLLHOST.EXE, In quarantaine, [3999], [220630],1.0.9360
Trojan.Agent.UA, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\DLLHOST.EXE, In quarantaine, [3999], [220630],1.0.9360
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SPOOLSV.EXE, In quarantaine, [417], [217818],1.0.9360
Trojan.Agent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SPOOLSV.EXE, In quarantaine, [417], [217818],1.0.9360
Trojan.Agent.E.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SVCHOST.EXE, In quarantaine, [3708], [370308],1.0.9360
Trojan.Agent.E.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SVCHOST.EXE, In quarantaine, [3708], [370308],1.0.9360
Backdoor.Agent.E, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SEARCHPROTOCOLHOST.EXE, In quarantaine, [3730], [414511],1.0.9360
Backdoor.Agent.E, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SEARCHPROTOCOLHOST.EXE, In quarantaine, [3730], [414511],1.0.9360

Registerwaarde: 0
(Geen kwaadaardige items gedetecteerd)

Registerdata: 0
(Geen kwaadaardige items gedetecteerd)

Gegevensstroom: 0
(Geen kwaadaardige items gedetecteerd)

Map: 0
(Geen kwaadaardige items gedetecteerd)

Bestand: 55
Trojan.FakeMS, C:\USERS\GEBRUIKER\SMSS.EXE, In quarantaine, [715], [194096],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\cmd.exe, In quarantaine, [417], [194064],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\CMD.EXE-2EB3E6E2.pf, In quarantaine, [417], [194064],1.0.9360
Trojan.Agent, C:\winrs.exe, In quarantaine, [417], [195973],1.0.9360
Trojan.Agent, C:\SERVICES.EXE, In quarantaine, [417], [202345],1.0.9360
Trojan.Banker.Gen, C:\gb_16x11.png, In quarantaine, [2539], [195187],1.0.9360
Trojan.Banker.Gen, C:\gb_60x42.png, In quarantaine, [2539], [195187],1.0.9360
Worm.AutoRun, C:\EXPLORER.EXE, In quarantaine, [1011], [201662],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\IEXPLORE.EXE, In quarantaine, [417], [206313],1.0.9360
Trojan.Agent, C:\CALCULATOR.EXE, In quarantaine, [417], [201431],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\IGFXTRAY.EXE, In quarantaine, [417], [206316],1.0.9360
Trojan.Agent, C:\SMSS.EXE, In quarantaine, [417], [202361],1.0.9360
Trojan.Agent, C:\WINLOGON.EXE, In quarantaine, [417], [202568],1.0.9360
Trojan.Dropper, C:\USERS\GEBRUIKER\RUNDLL32.EXE, In quarantaine, [717], [206684],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\SERVICES.EXE, In quarantaine, [417], [206714],1.0.9360
Trojan.Downloader, C:\USERS\GEBRUIKER\WINLOGON.EXE, In quarantaine, [500], [206821],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\CALC.EXE, In quarantaine, [417], [219561],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\WUAUCLT.EXE, In quarantaine, [417], [215791],1.0.9360
Trojan.Agent, C:\SYSTEM.DLL, In quarantaine, [417], [202408],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\CONHOST.EXE, In quarantaine, [417], [226942],1.0.9360
Trojan.VirTool, C:\SOUNDREC.EXE, In quarantaine, [3967], [217085],1.0.9360
Backdoor.CycBot, C:\USERS\GEBRUIKER\sihost.exe, In quarantaine, [3880], [218318],1.0.9360
Backdoor.Agent, C:\USERS\GEBRUIKER\EXPLORER.EXE, In quarantaine, [1435], [230713],1.0.9360
Trojan.Agent.UA, C:\USERS\GEBRUIKER\DLLHOST.EXE, In quarantaine, [3999], [220630],1.0.9360
Trojan.Agent, C:\USERS\GEBRUIKER\SPOOLSV.EXE, In quarantaine, [417], [217818],1.0.9360
Trojan.Agent.E.Generic, C:\USERS\GEBRUIKER\svchost.exe, In quarantaine, [3708], [370308],1.0.9360
Backdoor.Agent.E, C:\USERS\GEBRUIKER\WININIT.EXE, In quarantaine, [3730], [414509],1.0.9360
Backdoor.Agent.E, C:\USERS\GEBRUIKER\SEARCHPROTOCOLHOST.EXE, In quarantaine, [3730], [414511],1.0.9360
RiskWare.MisusedLegit, C:\MOUNT.EXE, In quarantaine, [4062], [325938],1.0.9360
Adware.ChinAd, C:\index.html, In quarantaine, [459], [458303],1.0.9360
RiskWare.ExtensionMismatch, C:\AWARDS_BASE.JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\AWARD_4[1].GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\DUST.JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\HELPICON_SOLID.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\IMAGE_RFSE0ZBIFERFH8PF9_WPQQ[1].JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\IMG0_1600X2560.JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\INSIDER.SCALE-125.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\INSIDERBLACK.SCALE-200.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\PACKAGE.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\NEXTBLACK.SCALE-100.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\SPOTLIGHTMAIL_2017-09.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\SWIPETEACHINGCALLOUTIMAGE.LAYOUTDIR-LTR.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\SPOTLIGHTCALENDAR_2017-03.GIF, In quarantaine, [10738], [79309],1.0.9360
PUP.Optional.DriverToolkit, C:\USERS\GEBRUIKER\DOWNLOADS\DRIVERTOOLKITINSTALLER (2).EXE, In quarantaine, [987], [512879],1.0.9360
PUP.Optional.DriverToolkit, C:\USERS\GEBRUIKER\DOWNLOADS\DRIVERTOOLKITINSTALLER (1).EXE, In quarantaine, [987], [512879],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\IMAGE_RFSE0ZBIFERFH8PF9_WPQQ[1].JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\INSIDERBLACK.SCALE-200.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\AWARDS_BASE.JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\IMG0_1600X2560.JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\HELPICON_SOLID.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\DUST.JPG, In quarantaine, [10738], [79314],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\PACKAGE.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\SPOTLIGHTCALENDAR_2017-03.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\SWIPETEACHINGCALLOUTIMAGE.LAYOUTDIR-LTR.GIF, In quarantaine, [10738], [79309],1.0.9360
RiskWare.ExtensionMismatch, C:\USERS\GEBRUIKER\SPOTLIGHTMAIL_2017-09.GIF, In quarantaine, [10738], [79309],1.0.9360

Fysieke sector: 0
(Geen kwaadaardige items gedetecteerd)

WMI: 0
(Geen kwaadaardige items gedetecteerd)


(end)