Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 7/24/2015
Scan Time: 3:00:33 AM
Logfile: MalwarebyteslScanHistIog.txt
Administrator: Yes
Version: 2.1.8.1057
Malware Database: v2015.07.24.03
Rootkit Database: v2015.07.22.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: WAT
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 321560
Time Elapsed: 15 min, 14 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 1
PUP.Optional.Privoxy.A, C:\Program Files\Alfasistem Memory\privoxy.exe, 2064, Delete-on-Reboot, [8d06c2238802251102731ce9c43f3ac6]
Modules: 1
PUP.Optional.Privoxy.A, C:\Program Files\Alfasistem Memory\mgwz.dll, Delete-on-Reboot, [8d06c2238802251102731ce9c43f3ac6],
Registry Keys: 7
PUP.Optional.Binkiland.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\elggllhppljlljkgfeokjpehmdamkejk, Quarantined, [f69d1fc604868aac134d206b00043dc3],
PUP.Optional.Binkiland.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [355e3aab94f6072f145689864eb52ed2],
PUP.Optional.Binkiland.A, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\Binkiland Browser, Quarantined, [f0a3d5107f0bbe788bdac6c538ccbb45],
PUP.Optional.InstallCore.C, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\InstallCore, Quarantined, [0b88766f9eec0a2c3faf9bfee420748c],
PUP.Optional.Binkiland.A, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\elggllhppljlljkgfeokjpehmdamkejk, Quarantined, [dfb4cc199eec44f21849b7d4b15359a7],
PUP.Optional.Binkiland.A, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, Quarantined, [fa999d48781253e32f3c1af5fc0736ca],
PUP.Optional.Privoxy.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PrivoxyService, Quarantined, [8d06c2238802251102731ce9c43f3ac6],
Registry Values: 9
PUP.Optional.Binkiland.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, http://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_soft_15_08&cd=2XzuyEtN2Y1L1QzutDtDtBtCyBtDyE0C0EtDtA0C0Bzz0BtAtN0D0Tzu0StCtCyEyBtN1L2XzutAtFyBtFyBtFtCtDtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2StCzzyDzz0A0A0A0EtG0FyCyCtCtGtAtDyCtCtGtCtCyDyEtGtDyE0CtAtBzzyDyEtA0EyB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtAyB0C0FzyzztAtGtC0AyB0AtGyEyEyCtAtG0AyE0C0AtGtD0FyEyB0DtC0AtD0A0ByB0C2Q&cr=1518548297&ir=, Quarantined, [355e3aab94f6072f145689864eb52ed2]
PUP.Optional.Binkiland.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURLFallback, http://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_soft_15_08&cd=2XzuyEtN2Y1L1QzutDtDtBtCyBtDyE0C0EtDtA0C0Bzz0BtAtN0D0Tzu0StCtCyEyBtN1L2XzutAtFyBtFyBtFtCtDtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2StCzzyDzz0A0A0A0EtG0FyCyCtCtGtAtDyCtCtGtCtCyDyEtGtDyE0CtAtBzzyDyEtA0EyB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtAyB0C0FzyzztAtGtC0AyB0AtGyEyEyCtAtG0AyE0C0AtGtD0FyEyB0DtC0AtD0A0ByB0C2Q&cr=1518548297&ir=, Quarantined, [850ebd282f5b86b081e9739c6d965ca4]
PUP.Optional.Binkiland.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Binkiland, Quarantined, [4d4622c3206aed49fc6e35dae91a27d9]
PUP.Optional.Binkiland.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|DisplayName, Binkiland, Quarantined, [99faae37355594a25119cb44d42fc040]
PUP.Optional.Binkiland.A, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, http://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_soft_15_08&cd=2XzuyEtN2Y1L1QzutDtDtBtCyBtDyE0C0EtDtA0C0Bzz0BtAtN0D0Tzu0StCtCyEyBtN1L2XzutAtFyBtFyBtFtCtDtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2StCzzyDzz0A0A0A0EtG0FyCyCtCtGtAtDyCtCtGtCtCyDyEtGtDyE0CtAtBzzyDyEtA0EyB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtAyB0C0FzyzztAtGtC0AyB0AtGyEyEyCtAtG0AyE0C0AtGtD0FyEyB0DtC0AtD0A0ByB0C2Q&cr=1518548297&ir=, Quarantined, [fa999d48781253e32f3c1af5fc0736ca]
PUP.Optional.Binkiland.A, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURLFallback, http://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_soft_15_08&cd=2XzuyEtN2Y1L1QzutDtDtBtCyBtDyE0C0EtDtA0C0Bzz0BtAtN0D0Tzu0StCtCyEyBtN1L2XzutAtFyBtFyBtFtCtDtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2StCzzyDzz0A0A0A0EtG0FyCyCtCtGtAtDyCtCtGtCtCyDyEtGtDyE0CtAtBzzyDyEtA0EyB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtAyB0C0FzyzztAtGtC0AyB0AtGyEyEyCtAtG0AyE0C0AtGtD0FyEyB0DtC0AtD0A0ByB0C2Q&cr=1518548297&ir=, Quarantined, [c7cce2033a50999d0467cc43ae5509f7]
PUP.Optional.Binkiland.A, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Binkiland, Quarantined, [fa993fa6484225113734df30ef14639d]
PUP.Optional.Binkiland.A, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|DisplayName, Binkiland, Quarantined, [bad9588d11798fa7e388020d53b0f40c]
PUM.Bad.Proxy, HKU\S-1-5-21-1757981266-1500820517-725345543-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, 127.0.0.1:8118, Quarantined, [5b38dc09e8a248eeb1b91b71ac58827e]
Registry Data: 0
(No malicious items detected)