Habe mit MBM ales nach Anleitung durchgeführt. Hier das Log:
Code:
Alles auswählen Aufklappen ATTFilter
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 01.08.2014
Scan Time: 00:54:18
Logfile: letzter scan mbam.txt
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.07.31.07
Rootkit Database: v2014.07.17.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Andrea
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 264684
Time Elapsed: 20 min, 26 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 4
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{11111111-1111-1111-1111-110011221158}, Quarantined, [b360178fe99287af79d4581c847e3ec2],
PUP.Optional.Incredibar.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\dlnembnfbcpjnepmfjmngjenhhajpdfd, Quarantined, [d43ff7af97e4e0562a526b7b0101758b],
PUP.GamesPlayLab, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\mpfapcdfbbledbojijcbcclmlieaoogk, Quarantined, [d73c4d592c4f1b1b546f0ef78c77c040],
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, Quarantined, [33e0782e5229330325ef65b18c78e41c],
Registry Values: 4
PUP.Optional.StartPage.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS\{336D0C35-8A85-403a-B9D2-65C292C39087}, Quarantined, [35de9016186306307b700e5061a117e9],
PUP.Optional.StartPage.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{336D0C35-8A85-403A-B9D2-65C292C39087}, C:\Program Files\Web Assistant\Firefox, Quarantined, [35de9016186306307b700e5061a117e9]
PUP.Optional.Incredibar, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}, C:\Program Files\Web Assistant\Firefox, Quarantined, [36dd4c5aaad15dd9d5b0c951f80c6d93]
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, MYSTART, Quarantined, [33e0782e5229330325ef65b18c78e41c]
Registry Data: 0
(No malicious items detected)
Folders: 1
PUP.Optional.CrossRider.A, C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0, Quarantined, [7f94dbcbb3c82c0ade51e5d0857da55b],
Files: 8
PUP.Optional.OpenCandy, C:\Users\Andrea\Desktop\PhotoScape_V3.6.3.exe, Quarantined, [9f74abfb542784b2064c726ec53f56aa],
PUP.Optional.Outbrowse, C:\Users\Andrea\Downloads\setup.exe, Quarantined, [a86b178ff18ae05655e52c74af5222de],
PUP.FakeFlash.Domaiq, C:\Users\Andrea\Downloads\FlashPlayer_V.143524008c.exe, Quarantined, [3ad9ecba9ae1a59135457080eb1552ae],
PUP.Optional.Incredibar.A, C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dlnembnfbcpjnepmfjmngjenhhajpdfd_0.localstorage, Quarantined, [e42f01a5afcce452e99205e1837f6c94],
PUP.Optional.CrossRider.A, C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0.localstorage, Quarantined, [18fbb7ef4635c17568fa5494ca3843bd],
PUP.Optional.Searchqu.A, C:\Users\Andrea\AppData\Roaming\Mozilla\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}, Quarantined, [1af97c2ac7b40d29b5c257b8ef1503fd],
PUP.Optional.CrossRider.A, C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0\3, Quarantined, [7f94dbcbb3c82c0ade51e5d0857da55b],
PUP.Optional.CrossRider.A, C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0\4, Quarantined, [7f94dbcbb3c82c0ade51e5d0857da55b],
Physical Sectors: 0
(No malicious items detected)
(end)
01.08.2014, 00:29
Baum-Darstellung