Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

malware?


  • Please log in to reply
1 reply to this topic

#1 dang0

dang0

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:COLORADO
  • Local time:12:45 AM

Posted 18 September 2012 - 09:26 AM

malwarebytes log-no action taken


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.17.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
DDG-ACER :: ACER-PC [administrator]

9/18/2012 6:59:46 AM
mbam-log-2012-09-18 (08-22-28).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 276234
Time elapsed: 2 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 20
HKCR\CLSID\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> No action taken.
HKCR\TypeLib\{44444444-4444-4444-4444-440144184425} (PUP.CrossRider.BCA) -> No action taken.
HKCR\Interface\{55555555-5555-5555-5555-550155185525} (PUP.CrossRider.BCA) -> No action taken.
HKCR\CrossriderApp0011825.BHO.1 (PUP.CrossRider.BCA) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111181125} (PUP.CrossRider.BCA) -> No action taken.
HKCR\CLSID\{22222222-2222-2222-2222-220122182225} (PUP.CrossRider.BCA) -> No action taken.
HKCR\CrossriderApp0011825.Sandbox.1 (PUP.CrossRider.BCA) -> No action taken.
HKCR\CrossriderApp0011825.Sandbox (PUP.CrossRider.BCA) -> No action taken.
HKCR\CLSID\{33333333-3333-3333-3333-330133183325} (PUP.CrossRider.BCA) -> No action taken.
HKCR\CrossriderApp0011825.FBApi.1 (PUP.CrossRider.BCA) -> No action taken.
HKCR\CrossriderApp0011825.FBApi (PUP.CrossRider.BCA) -> No action taken.
HKCR\CrossriderApp0011825.BHO (PUP.CrossRider.BCA) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BcoolApp (PUP.CrossRider.BCA) -> No action taken.
HKCU\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\BCOOLTEAM (PUP.CrossRider.BCA) -> No action taken.
HKLM\SOFTWARE\Google\Chrome\Extensions\maeiepphbmmcgpcnalhdnobgijjphace (PUP.CrossRider.BCA) -> No action taken.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\maeiepphbmmcgpcnalhdnobgijjphace (PUP.CrossRider.BCA) -> No action taken.

Registry Values Detected: 2
HKCU\Software\InstalledBrowserExtensions\BcoolTeam|11825 (PUP.CrossRider.BCA) -> Data: BcoolApp -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BcoolApp|Publisher (PUP.CrossRider.BCA) -> Data: BcoolTeam -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 17
C:\Program Files (x86)\BcoolApp (PUP.CrossRider.BCA) -> No action taken.
C:\Program Files\FunWebProducts (PUP.MyWebSearch) -> No action taken.
C:\Program Files\FunWebProducts\ScreenSaver (PUP.MyWebSearch) -> No action taken.
C:\Program Files\FunWebProducts\ScreenSaver\Images (PUP.MyWebSearch) -> No action taken.
C:\Program Files\FunWebProducts\Shared (PUP.MyWebSearch) -> No action taken.
C:\Program Files\FunWebProducts\Shared\Cache (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\2.bin (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\Avatar (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\Cache (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\Game (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\History (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\Message (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\Message\COMMON (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\Notifier (PUP.MyWebSearch) -> No action taken.
C:\Program Files\MyWebSearch\bar\Settings (PUP.MyWebSearch) -> No action taken.

Files Detected: 13
C:\Program Files (x86)\BcoolApp\BcoolApp.dll (PUP.CrossRider.BCA) -> No action taken.
C:\Users\Guest\Documents\Downloads\ZwinkySetup2.3.64.2.ZJfox000.exe (PUP.MyWebSearch) -> No action taken.
C:\Users\DDG-ACER\Downloads\ffdshow.exe (PUP.Bundle.Installer.OI) -> No action taken.
C:\Users\DDG-ACER\Downloads\Setup (1).exe (PUP.Bundle.Installer.OI) -> No action taken.
C:\Users\DDG-ACER\Downloads\Setup.exe (PUP.Bundle.Installer.OI) -> No action taken.
C:\Program Files (x86)\BcoolApp\BcoolAppInstaller.log (PUP.CrossRider.BCA) -> No action taken.
C:\Program Files (x86)\BcoolApp\BcoolApp.exe (PUP.CrossRider.BCA) -> No action taken.
C:\Program Files (x86)\BcoolApp\BcoolApp.ico (PUP.CrossRider.BCA) -> No action taken.
C:\Program Files (x86)\BcoolApp\BcoolApp.ini (PUP.CrossRider.BCA) -> No action taken.
C:\Program Files (x86)\BcoolApp\BcoolAppGui.exe (PUP.CrossRider.BCA) -> No action taken.
C:\Program Files (x86)\BcoolApp\Uninstall.exe (PUP.CrossRider.BCA) -> No action taken.
C:\Users\DDG-ACER\Local Settings\Application Data\BcoolApp\Chrome\BcoolApp.crx (PUP.CrossRider.BCA) -> No action taken.
C:\Users\DDG-ACER\AppData\Local\BcoolApp\Chrome\BcoolApp.crx (PUP.CrossRider.BCA) -> No action taken.

(end)
Old Dogs CAN'T learn NEW tricks. TRY ME-I gotta master this computer age.


BC AdBot (Login to Remove)

 


#2 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:08:45 AM

Posted 19 September 2012 - 04:06 AM

Hi,

Please let Malwarebytes remove what it has found and reboot afterwards.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users