Malwarebytes' Anti-Malware 1.51.2.1300 www.malwarebytes.org Database version: 8171 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 11/15/2011 10:03:19 PM mbam-log-2011-11-15_22-02-27.txt Scan type: Full scan (C:\|) Objects scanned: 378712 Time elapsed: 31 minute(s), 27 second(s) Memory Processes Infected: 4 Memory Modules Infected: 1 Registry Keys Infected: 6 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 17 Memory Processes Infected: c:\Users\jean\AppData\Roaming\D6DD5\B50DD.exe (Malware.Packer) -> 2800 -> No action taken. c:\Users\jean\AppData\Roaming\D50D8\lvvm.exe (Malware.Packer) -> 3972 -> No action taken. c:\Users\jean\AppData\Roaming\pa00ucs2bd3\av security 2012v121.exe (Exploit.Drop) -> 6368 -> No action taken. c:\Users\jean\AppData\Roaming\microsoft\DDFD\C6F.exe (Malware.Packer) -> 6936 -> No action taken. Memory Modules Infected: c:\programdata\mouseonlineservice.dll (Trojan.SHarpro.PGen) -> No action taken. Registry Keys Infected: HKEY_CLASSES_ROOT\CLSID\{4f6c5a7f-93ba-41ce-ba77-5a415b3debef} (PUP.FunWebProducts) -> No action taken. HKEY_CLASSES_ROOT\TypeLib\{68e87bb7-8295-4514-9562-ac39cd4bb2c5} (PUP.FunWebProducts) -> No action taken. HKEY_CLASSES_ROOT\Interface\{7560E624-E498-4D61-A34D-00546B8C1F9D} (PUP.FunWebProducts) -> No action taken. HKEY_CLASSES_ROOT\Maps4PC_0cInstaller.Start.1 (PUP.FunWebProducts) -> No action taken. HKEY_CLASSES_ROOT\Maps4PC_0cInstaller.Start (PUP.FunWebProducts) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4F6C5A7F-93BA-41CE-BA77-5A415B3DEBEF} (PUP.FunWebProducts) -> No action taken. Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: c:\Users\jean\AppData\Roaming\D6DD5\B50DD.exe (Malware.Packer) -> No action taken. c:\Users\jean\AppData\Roaming\D50D8\lvvm.exe (Malware.Packer) -> No action taken. c:\Users\jean\AppData\Roaming\pa00ucs2bd3\av security 2012v121.exe (Exploit.Drop) -> No action taken. c:\Users\jean\AppData\Roaming\microsoft\DDFD\C6F.exe (Malware.Packer) -> No action taken. c:\program files (x86)\maps4pc_0cei\Installr\1.bin\0cEZSETP.dll (PUP.FunWebProducts) -> No action taken. c:\program files (x86)\Network\Web\IEHV\iehv.exe (PUP.HistoryTool) -> No action taken. c:\Users\jean\AppData\Local\Temp\3ac3.exe (Exploit.Drop) -> No action taken. c:\Users\jean\AppData\Local\Temp\EF66.tmp (Trojan.Downloader.Tracur) -> No action taken. c:\Users\jean\AppData\Local\Temp\thpm3569577912854876238.tmp (Trojan.Exploit.Drop.THPM) -> No action taken. c:\Users\jean\AppData\Local\Temp\wpbt0.dll (Exploit.Drop) -> No action taken. c:\Users\jean\AppData\Roaming\EXCEL.EXE (Malware.Packer) -> No action taken. c:\Users\jean\AppData\Roaming\iexplore.exe (Malware.Packer) -> No action taken. c:\Users\jean\AppData\Roaming\java.exe (Exploit.Drop) -> No action taken. c:\Users\jean\AppData\Local\Temp\thpm1066638488511985139.tmp (Exploit.Drop.3) -> No action taken. c:\Users\jean\AppData\Roaming\ldr.ini (Malware.Trace) -> No action taken. c:\programdata\mouseonlineservice.dll (Trojan.SHarpro.PGen) -> No action taken. c:\Users\jean\Desktop\av security 2012.lnk (Rogue.AVSecurity2012) -> No action taken.