Code:
Alles auswählen Aufklappen ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
Database version: v2014.01.24.04
Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 7.0.6001.18000
Prometheus :: PROMETHEUS-PC [administrator]
24.01.2014 15:04:18
mbar-log-2014-01-24 (15-04-18).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 205360
Time elapsed: 11 minute(s), 36 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 8
HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com) -> Replace on reboot.
HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com) -> Replace on reboot.
HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com) -> Replace on reboot.
HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com/) -> Replace on reboot.
HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com) -> Replace on reboot.
HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com) -> Replace on reboot.
HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com) -> Replace on reboot.
HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL (Hijack.SearchPage) -> Bad: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1375386104902.000005&tguid=46364-3869-1375386104902-2A0E42EA35C8FDC23E4B0087F1C117D0&st=chrome&q=) Good: (hxxp://www.google.com/) -> Replace on reboot.
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\Users\Prometheus\AppData\Local\Temp\is-BDCDC.tmp\8969.exe (Trojan.MSIL) -> Delete on reboot.
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Sorry...
Code:
Alles auswählen Aufklappen ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
Database version: v2014.01.24.05
Windows Vista Service Pack 1 x86 NTFS
Internet Explorer 7.0.6001.18000
Prometheus :: PROMETHEUS-PC [administrator]
24.01.2014 15:28:55
mbar-log-2014-01-24 (15-28-55).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 205193
Time elapsed: 13 minute(s), 22 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
24.01.2014, 16:04
Baum-Darstellung