Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 03/07/2014
Scan Time: 16:08:01
Logfile: RAPPORT MALWAREBYTES.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.03.03
Rootkit Database: v2014.07.01.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Goulaux

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 314682
Time Elapsed: 10 min, 14 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 3
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6CA2A4DE-483E-456B-8634-6445460D7097}, Quarantined, [54cbf1aa4d2e94a2e60c88c5e31f966a], 
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{6CA2A4DE-483E-456B-8634-6445460D7097}, Quarantined, [54cbf1aa4d2e94a2e60c88c5e31f966a], 
PUP.Optional.FlowSurf.A, HKU\S-1-5-21-2575316985-3212262540-2264320754-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF, Quarantined, [39e6d8c3ec8f1224b0a7dd2adf25d52b], 

Registry Values: 2
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|jid1-tofUlNEIFlkUIA@jetpack, C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack, Quarantined, [09169efd1863f343d646834516ecb947]
PUP.Optional.FlowSurf.A, HKU\S-1-5-21-2575316985-3212262540-2264320754-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF|chrid, oglkiljdmflopemijdadoiepkhcaodjn, Quarantined, [39e6d8c3ec8f1224b0a7dd2adf25d52b]

Registry Data: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[23fc2675f68588ae7a375c3523e1c040]

Folders: 0
(No malicious items detected)

Files: 2
Trojan.Banker.Kreapixel, C:\Users\Goulaux\AppData\Roaming\~irwkzmu.exe, Quarantined, [d14e76257506d95dc6e375cd2fd2a15f], 
PUP.Optional.Outbrowse, C:\Users\Goulaux\Downloads\Setup.exe, Quarantined, [8d92f9a26c0faa8c483148ce7490ae52], 

Physical Sectors: 0
(No malicious items detected)


(end)