Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 2014-05-28 Scan Time: 09:48:49 Logfile: Administrator: Yes Version: 2.00.2.1012 Malware Database: v2014.05.28.04 Rootkit Database: v2014.05.21.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: agrawa Scan Type: Threat Scan Result: Completed Objects Scanned: 257214 Time Elapsed: 17 min, 30 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 1 RiskWare.Tool.CK, C:\Windows\KMService.exe, 1432, , [5c68f561f8831b1b87db6a50936e52ae] Modules: 0 (No malicious items detected) Registry Keys: 9 PUP.Optional.Tarma.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\3dc97251-4286-46bd-b655-56ec68cee5f1, , [3c88acaaf3889a9c8b5594b152aea55b], PUP.Optional.Tarma.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\f7ad4353-c04a-4722-8ccd-738577cac01e, , [ffc580d67209a69021bf6adb39c7f808], PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\MediaBuzzV1, , [6064b3a3ff7c46f04568a0f3f50d738d], PUP.Optional.MediaBuzz.A, HKLM\SOFTWARE\WOW6432NODE\MediaBuzzV1mode1789, , [e5df6bebde9d9a9c38751e755ca628d8], PUP.Optional.MediaPlayerAlpha.A, HKLM\SOFTWARE\WOW6432NODE\MediaPlayerV1alpha6312, , [93318ec86b1069cd9acdabfa58aae11f], PUP.Optional.MediaViewer.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewerV1alpha1487, , [63615afc710a092d7051217fcc36e51b], PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha3044, , [f0d499bdf9828caa5db7a000837f966a], PUP.Optional.MediaView.A, HKLM\SOFTWARE\WOW6432NODE\MediaViewV1alpha3675, , [40843f1783f84ee8d044b2ee2bd7ec14], PUP.Optional.MediaWatch.A, HKLM\SOFTWARE\WOW6432NODE\MediaWatchV1home812, , [794b4313007b3afc601ca7314eb5fc04], Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 8 PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ch, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content\icons, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content\icons\default, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ie, , [c4006ee8e19acf67eaca681c1ae84fb1], Files: 18 RiskWare.Tool.CK, C:\Windows\KMService.exe, , [5c68f561f8831b1b87db6a50936e52ae], PUP.Optional.Tarma.A, C:\ProgramData\InstallMate\{1F94EC1E-D8D9-4651-A4BA-90FBC477CEE8}\Setup.exe, , [3c88acaaf3889a9c8b5594b152aea55b], PUP.Optional.Tarma.A, C:\ProgramData\InstallMate\{5FABCEF9-760D-447F-A694-3E2F8448EC0F}\Setup.exe, , [ffc580d67209a69021bf6adb39c7f808], PUP.Optional.Installrex, C:\Users\agrawa\Downloads\Hack Facebook Account 2014.exe, , [dee61442fc7f96a026e008442bd62ed2], PUP.Optional.OpenCandy, C:\Users\agrawa\Downloads\PhotoScape_V3.6.5.exe, , [ebd9cb8b502b86b0e3196d107292916f], Spyware.Password, C:\Users\agrawa\Downloads\Facebook Account Hacker 2013.rar, , [358f2b2bff7c72c41f53a6b94aba7a86], PUP.Optional.Installrex, C:\Users\agrawa\Downloads\Facebook Account Hacker 2014 (1).exe, , [259f82d42b504ee826e078d4c33e29d7], PUP.Optional.Installrex, C:\Users\agrawa\Downloads\Facebook Account Hacker 2014 (2).exe, , [e1e3d87e95e66dc9de28bb9141c036ca], PUP.Optional.Installrex, C:\Users\agrawa\Downloads\Facebook Account Hacker 2014.exe, , [01c3c78f9ddeaf87f90d1537e021e21e], PUP.Optional.InstallMonetizer, C:\Users\agrawa\Downloads\Facebook Hack Tool 4 2 0 Downloader__3687_i286782483_il3272177.exe, , [b410d77fe8939b9b356038f12fd2738d], PUP.Optional.InstallMonetizer, C:\Users\agrawa\Downloads\Facebook Password Hacker Version 0.6.rar__3515_i286813478_il3279522.exe, , [b60eeb6b7b001125672ee1485aa73cc4], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome.manifest, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\install.rdf, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content\ffMediaBuzzV1mode1789.js, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content\ffMediaBuzzV1mode1789ffaction.js, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content\overlay.xul, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content\icons\Thumbs.db, , [c4006ee8e19acf67eaca681c1ae84fb1], PUP.Optional.MediaBuzz.A, C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode1789\ff\chrome\content\icons\default\MediaBuzzV1mode1789_32.png, , [c4006ee8e19acf67eaca681c1ae84fb1], Physical Sectors: 0 (No malicious items detected) (end)