Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org
Database version: v2012.04.30.02
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
John O. B. Cole :: JOHNOBCOLE-PC [administrator]
4/29/2012 9:23:03 PM
mbam-log-2012-04-29 (21-23-03).txt
Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 296663
Time elapsed: 46 minute(s), 47 second(s)
Memory Processes Detected: 1
C:\Users\John O. B. Cole\AppData\Local\dplaysvr.exe (Trojan.Agent) -> 972 -> Delete on reboot.
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dplaysvr (Trojan.Agent) -> Data: C:\Users\John O. B. Cole\AppData\Local\dplaysvr.exe -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dplaysvr (Trojan.Agent) -> Data: C:\Users\John O. B. Cole\AppData\Local\dplaysvr.exe -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|DATA4F8.tmp.exe (Trojan.FakeAlert) -> Data: C:\Users\JOHNOB~1.COL\AppData\Local\Temp\DATA4F8.tmp.exe -> Quarantined and deleted successfully.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 4
C:\Users\John O. B. Cole\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M4QSESUN\3[1].exe (Trojan.CleaMan.TxGen) -> Quarantined and deleted successfully.
C:\Users\John O. B. Cole\AppData\Local\dplaysvr.exe (Trojan.Agent) -> Delete on reboot.
C:\Users\John O. B. Cole\Local Settings\Application Data\dplaysvr.exe (Trojan.Agent) -> Delete on reboot.
C:\Users\John O. B. Cole\AppData\Local\temp\DATA4F8.tmp.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
(end)