Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
Database version: v2013.09.17.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Dennis :: DENNIS-PC [administrator]
Protection: Enabled
9/16/2013 10:17:52 PM
mbam-log-2013-09-16 (22-17-52).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 218593
Time elapsed: 7 minute(s), 46 second(s)
Memory Processes Detected: 2
C:\Program Files (x86)\WebConnect\updateWebConnect.exe (PUP.Optional.WebConnect.A) -> 1932 -> Delete on reboot.
C:\ProgramData\0\ss u helper\ss u helper.exe (Trojan.Downloader) -> 3496 -> Delete on reboot.
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 32
HKLM\SYSTEM\CurrentControlSet\Services\Update WebConnect (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{2316c625-b487-4410-a1a5-ff040b65245f} (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{d8caf2df-52d3-42cf-9ddb-f4ff828db4f8} (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKCR\Interface\{7C28CEF1-A4A6-4B6A-8B97-C44F1267753C} (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316C625-B487-4410-A1A5-FF040B65245F} (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{2316C625-B487-4410-A1A5-FF040B65245F} (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2316C625-B487-4410-A1A5-FF040B65245F} (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{450D0633-4A34-CE87-428C-E0F12F59E49E} (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{450D0633-4A34-CE87-428C-E0F12F59E49E} (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{450D0633-4A34-CE87-428C-E0F12F59E49E} (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{450D0633-4A34-CE87-428C-E0F12F59E49E} (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{450D0633-4A34-CE87-428C-E0F12F59E49E} (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} (PUP.Optional.BrowseFox.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{35853321-818D-4B5D-AA6B-6C56DBBFEEE7} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCR\TypeLib\{F909BBB7-24F1-499C-88ED-CD8F8286A589} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCR\Interface\{8540A75D-34C4-4260-9DC0-839EC6BC76B4} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCR\CLSID\{D4563F7A-358C-47BC-A1C9-47B539BD19BF} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4563F7A-358C-47BC-A1C9-47B539BD19BF} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4563F7A-358C-47BC-A1C9-47B539BD19BF} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4563F7A-358C-47BC-A1C9-47B539BD19BF} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D4563F7A-358C-47BC-A1C9-47B539BD19BF} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4563F7A-358C-47BC-A1C9-47B539BD19BF} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4563F7A-358C-47BC-A1C9-47B539BD19BF} (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCR\WebProtect.WebProtect.1 (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCR\WebProtect.WebProtect (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8A997153-1D30-7775-0F95-D6A02F8C760A} (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{62D82EC1-0D3A-DF54-8E3E-07E1337A5311} (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1 (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\WEBCONNECT (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-195761990 (Trojan.Downloader) -> Quarantined and deleted successfully.
Registry Values Detected: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Optimizer Pro (PUP.Optional.OptimizePro.A) -> Data: C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe -> Quarantined and deleted successfully.
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0S1S1T0E1J1L1H1R -> Quarantined and deleted successfully.
HKCU\Software\WebConnect|iid (PUP.Optional.WebConnect.A) -> Data: def_WebConnect -> Quarantined and deleted successfully.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 7
C:\Program Files (x86)\Optimizer Pro (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect (PUP.Optional.WebConnect.A) -> Delete on reboot.
C:\ProgramData\0 (Trojan.Downloader) -> Delete on reboot.
C:\ProgramData\0\Setup (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\ProgramData\0\ss u helper (Trojan.Downloader) -> Delete on reboot.
C:\ProgramData\0\ss u helper\195761990 (Trojan.Downloader) -> Quarantined and deleted successfully.
Files Detected: 54
C:\Program Files (x86)\WebConnect\updateWebConnect.exe (PUP.Optional.WebConnect.A) -> Delete on reboot.
C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe (PUP.Optional.OptimizePro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect\WebConnectBHO.dll (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
C:\ProgramData\savEnshuarree\66YS.dll (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Web Protect\WebProtect.dll (PUP.Optional.WebProtect) -> Quarantined and deleted successfully.
C:\ProgramData\InstallMate\{BD984B57-5BA3-400A-A2E1-1381667B69A1}\Setup.exe (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully.
C:\ProgramData\InstallMate\{BD984B57-5BA3-400A-A2E1-1381667B69A1}\TsuDll.dll (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully.
C:\ProgramData\savEnshuarree\C7n2d.exe (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\Documents\Downloads\update.exe (PUP.Optional.Ibryte) -> Quarantined and deleted successfully.
C:\Users\Dennis\AppData\Local\Temp\nsj1920.tmp (PUP.Optional.Somoto.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\AppData\Local\Temp\Optimizer_Pro.exe (PUP.Optional.PCOptimizerPro) -> Quarantined and deleted successfully.
C:\Users\Dennis\AppData\Local\Temp\OtshotInstaller7.exe (PUP.Optional.Otshot.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\AppData\Local\Temp\setup.exe (PUP.Optional.Amonetize.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\AppData\Local\Temp\00294823\66YS.dll (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\AppData\Local\Temp\00294823\C7n2d.exe (PUP.Optional.MultiPlug.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\Downloads\Flash Player 12 (1).exe (PUP.Optional.AirInstaller) -> Quarantined and deleted successfully.
C:\Users\Dennis\Downloads\Flash Player 12 (2).exe (PUP.Optional.AirInstaller) -> Quarantined and deleted successfully.
C:\Users\Dennis\Downloads\Flash Player 12.exe (PUP.Optional.AirInstaller) -> Quarantined and deleted successfully.
C:\Users\Dennis\Downloads\FLVPlayerSetup.exe (PUP.Optional.InstallCore.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\Downloads\Noisia - Machine Gun (16 Bit Remix).exe (PUP.Optional.Installrex) -> Quarantined and deleted successfully.
C:\Users\Dennis\Downloads\setup.exe (PUP.Optional.iBryte) -> Quarantined and deleted successfully.
C:\Users\Dennis\Downloads\YTDSetup.exe (PUP.Optional.BundledToolBar.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\Local Settings\Temporary Internet Files\Content.IE5\5NQTIJ46\check_offer_rp[1].dll (PUP.Optional.Screensaver) -> Quarantined and deleted successfully.
C:\Users\Dennis\Local Settings\Temporary Internet Files\Content.IE5\L8RQ4ZD1\hXNA[1].exe (PUP.Optional.PreLoader.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\Local Settings\Temporary Internet Files\Content.IE5\TV3BBGWP\OptimizerPro[1].exe (PUP.Optional.OptimizePro.A) -> Quarantined and deleted successfully.
C:\Users\Dennis\Desktop\Internet Explorer.url (Malware.Trace) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptimizerPro.chm (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\English.ini (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\file_id.diz (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\HomePage.url (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptimizerPro.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptProGuard.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptProSchedule.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptProStart.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptProUninstaller.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\scan.gif (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\sqlite3.dll (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\unins000.dat (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\unins000.exe (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro\Optimizer Pro on the Web.lnk (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro\Help.lnk (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro\Optimizer Pro.lnk (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro\Uninstall Optimizer Pro.lnk (PUP.Optional.OptimizerPro.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect\ieakfmpjhljbpbfpldjkddkjmmgjmgon.crx (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect\Microsoft.Win32.TaskScheduler.dll (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect\sqlite3.exe (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect\updateWebConnect.InstallState (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect\WebConnect.Common.dll (PUP.Optional.WebConnect.A) -> Delete on reboot.
C:\Program Files (x86)\WebConnect\WebConnect.ico (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WebConnect\WebConnectUninstall.exe (PUP.Optional.WebConnect.A) -> Quarantined and deleted successfully.
C:\ProgramData\0\ss u helper\195761990.ini (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\ProgramData\0\ss u helper\ss u helper.exe (Trojan.Downloader) -> Delete on reboot.
(end)