| |
| |||||||
Log-Analyse und Auswertung: Scan ergibt PUP.Optional.PricePeep.A und Malware.Trace befallWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
16.06.2014, 11:51
| #1 |
| |  Scan ergibt PUP.Optional.PricePeep.A und Malware.Trace befall Hallo Trojaner Board Team, da ich mir heute einen neuen PGP Schlüssel einrichten wollte, wollte ich zunächst ausschließen dass sich auf meinem Rechner ein Key-Logger oder andere Eckelheimer verstecken. Ein Scan mit Malwarebytes hat dabei folgendes ergeben: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 16.06.2014 Scan Time: 11:13:50 Logfile: Maleware.txt Administrator: Yes Version: 2.00.2.1012 Malware Database: v2014.06.16.02 Rootkit Database: v2014.06.02.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: C5136164 Scan Type: Threat Scan Result: Completed Objects Scanned: 540045 Time Elapsed: 32 min, 2 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 4 PUP.Optional.PricePeep.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}, , [061c5821daa14ee8e5ea690c1ce6857b], PUP.Optional.PricePeep.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}, , [061c5821daa14ee8e5ea690c1ce6857b], PUP.Optional.PricePeep.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\PricePeep, , [f42e1069631878be13c20aba986aa15f], PUP.Optional.CrossRider.A, HKU\S-1-5-21-2563777637-2523973292-974082842-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [7aa8f5846b10043297c847a57c8754ac], Registry Values: 10 Malware.Trace, HKU\S-1-5-21-2563777637-2523973292-974082842-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [e2407306b1cad3632dcbbe73c83bdd23] Malware.Trace, HKU\S-1-5-21-2563777637-2523973292-974082842-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [8e94da9f6e0d35017a7e3af74bb8d729] Malware.Trace, HKU\S-1-5-21-2563777637-2523973292-974082842-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [74ae07724536092d6593250c3ac97a86] Malware.Trace, HKU\S-1-5-21-42933632-2124368392-1501187911-1398592-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [68ba43363d3e8da9d82050e132d1659b] Malware.Trace, HKU\S-1-5-21-42933632-2124368392-1501187911-152748-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [8a9830491863b97d03f55dd46e9504fc] Malware.Trace, HKU\S-1-5-21-74642-3284969411-2123768488-129672-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [a28086f3e99239fde51340f16f942ad6] Malware.Trace, HKU\S-1-5-21-74642-3284969411-2123768488-155029-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [b0727aff97e432043cbcf14009fa3ac6] Malware.Trace, HKU\S-1-5-21-74642-3284969411-2123768488-157177-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [44de4534c8b385b1fff978b9fd063ec2] Malware.Trace, HKU\S-1-5-21-74642-3284969411-2123768488-439000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [7fa398e157241b1b08f0cd6404ff3bc5] Malware.Trace, HKU\S-1-5-21-74642-3284969411-2123768488-4731-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\DISALLOWCPL|1, Microsoft.BitLockerDriveEncryption, , [180a97e2a5d659dd76823cf5fb08ce32] Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 0 (No malicious items detected) Physical Sectors: 0 (No malicious items detected) (end) Code:
ATTFilter # AdwCleaner v3.212 - Report created 16/06/2014 at 12:17:02
# Updated 05/06/2014 by Xplode
# Operating System : Windows 7 Enterprise Service Pack 1 (64 bits)
# Username : C5136164 - WDFN00304443A
# Running from : C:\Users\C5136164\Downloads\adwcleaner_3.212.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\C5136164\AppData\Local\Temp\OCS
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00100000-2001-0051-B4B6-006094B9D64F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00100000-2001-0054-B4B6-006094B9D64F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00100000-2001-0057-B4B6-006094B9D64F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B90F32AD-859E-4EDD-BFAE-C9216849520C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C08AB035-3820-4FA7-9420-B0259A4DA2B8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DAADF07B-7D06-4AF4-B3CA-6144830077EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKCU\Software\OCS
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16843
-\\ Mozilla Firefox v29.0.1 (en-US)
[ File : C:\Users\C5136164\AppData\Roaming\Mozilla\Firefox\Profiles\wiftgoih.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [9919 octets] - [24/12/2013 16:35:34]
AdwCleaner[R1].txt - [1007 octets] - [24/12/2013 16:45:30]
AdwCleaner[R2].txt - [1126 octets] - [24/12/2013 16:52:00]
AdwCleaner[R3].txt - [1844 octets] - [16/06/2014 12:10:46]
AdwCleaner[R4].txt - [1904 octets] - [16/06/2014 12:14:28]
AdwCleaner[S0].txt - [7379 octets] - [24/12/2013 16:37:15]
AdwCleaner[S1].txt - [1068 octets] - [24/12/2013 16:46:52]
AdwCleaner[S2].txt - [1188 octets] - [24/12/2013 16:53:33]
AdwCleaner[S3].txt - [1806 octets] - [16/06/2014 12:17:02]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1866 octets] ##########
Danke |
| Themen zu Scan ergibt PUP.Optional.PricePeep.A und Malware.Trace befall |
| explorer, firefox, internet, internet explorer, irc/cloner.bi, malware.trace, malwarebytes, microsoft, pup.optional.pricepeep.a, rechner, trojaner board, win32/downloadsponsor.a, win32/installerex.e, win32/packed.vmdetector.d, win32/softonicdownloader.e, win32/toolbar.crossrider.aa, win32/toolbar.crossrider.k, win32/toolbar.crossrider.t, win32/toolbar.searchsuite, win64/toolbar.crossrider.b, windows, windows 7 |
Baum-Darstellung