Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlaufdatum: 26.08.2015
Suchlaufzeit: 19:00
Protokolldatei: mbam.txt
Administrator: Ja
Version: 2.1.8.1057
Malware-Datenbank: v2015.08.26.07
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Mattia
Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 422858
Abgelaufene Zeit: 29 Min., 52 Sek.
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 1
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\Service\tcsvc.exe, 2232, Löschen bei Neustart, [8ae5b05dc4c77abc6270751bb64fc838]
Module: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 13
PUP.Optional.TermCoach.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\tcsvc_1.10.0.22, In Quarantäne, [8ae5b05dc4c77abc6270751bb64fc838],
PUP.Optional.TermCoach.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\tcfd_vw_1_10_0_22, In Quarantäne, [8be4f01d315a999d5a78494745c09d63],
PUP.Optional.BHOMultiIE, HKU\S-1-5-21-1834663506-1515400271-3122690314-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D}, In Quarantäne, [1a559e6f7219ae885316514792701ee2],
PUP.Optional.BHOMultiIE, HKU\S-1-5-21-1834663506-1515400271-3122690314-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D}, In Quarantäne, [1a559e6f7219ae885316514792701ee2],
PUP.Optional.IEBHOMulti.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D}, In Quarantäne, [600f1df0b2d95adce1d21583bd45c937],
PUP.Optional.TermCoach.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\TermCoach_1.10.0.22, In Quarantäne, [3738a26b5c2f41f5daf820702adb34cc],
PUP.Optional.WebProtectorPlus.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Web Protector Plus, Löschen bei Neustart, [c5aa5fae1378a591cb56e23edb28e51b],
PUP.Optional.WebProtectorPlus.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Web Protector Plus Server, Löschen bei Neustart, [78f7b558fc8f122450d2101016ed6a96],
PUP.Optional.TermCoach.A, HKLM\SOFTWARE\WOW6432NODE\TermCoach_1.10.0.22, In Quarantäne, [b7b88d80ed9e4aecdf8f605459abab55],
PUP.Optional.WebProtector.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kfecnpmgnlnbmipaogfhoacoioifjgko, In Quarantäne, [adc21eef8dfe26107a4825857d878f71],
PUP.Optional.WebProtector.A, HKU\S-1-5-21-1834663506-1515400271-3122690314-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\kfecnpmgnlnbmipaogfhoacoioifjgko, In Quarantäne, [fb7449c4662569cdbb06119958ac748c],
PUP.Optional.ProductSetup.A, HKU\S-1-5-21-1834663506-1515400271-3122690314-1001\SOFTWARE\PRODUCTSETUP, In Quarantäne, [0768a16cb7d4b2844b461d8f61a350b0],
PUP.Optional.WebProtector.A, HKU\S-1-5-21-1834663506-1515400271-3122690314-500\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\kfecnpmgnlnbmipaogfhoacoioifjgko, In Quarantäne, [214ed23b27649d997948b4f640c401ff],
Registrierungswerte: 3
PUP.Optional.Vitruvian.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\tcfd_vw_1_10_0_22|ImagePath, system32\drivers\tcfd_vw_1_10_0_22.sys, In Quarantäne, [016e9e6f2665e254f41f288926de34cc]
PUP.Optional.Vitruvian.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\tcsvc_1.10.0.22|ImagePath, "C:\Program Files (x86)\TermCoach_1.10.0.22\Service\tcsvc.exe", In Quarantäne, [e38cc14c42493df9ca0100a7a460c937]
PUP.Optional.ProductSetup.A, HKU\S-1-5-21-1834663506-1515400271-3122690314-1001\SOFTWARE\PRODUCTSETUP|tb, 1Y1R1D1J0K1L1S, In Quarantäne, [0768a16cb7d4b2844b461d8f61a350b0]
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Ordner: 3
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22, Löschen bei Neustart, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\Service, Löschen bei Neustart, [6c0343caccbf1b1b96f40a11cb383ac6],
Dateien: 22
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\Service\tcsvc.exe, Löschen bei Neustart, [8ae5b05dc4c77abc6270751bb64fc838],
PUP.Optional.TermCoach.A, C:\Windows\System32\drivers\tcfd_vw_1_10_0_22.sys, Löschen bei Neustart, [8be4f01d315a999d5a78494745c09d63],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\Uninstall.exe, In Quarantäne, [3738a26b5c2f41f5daf820702adb34cc],
PUP.Optional.TermCoach.A, C:\Windows\System32\drivers\tcfd_vt_1_10_0_22.sys, In Quarantäne, [a7c851bc04873afca42e1a765fa6fe02],
PUP.Optional.InstallCore.A, C:\Users\Mattia\AppData\Local\Temp\CR_Downloader_fuer_final-fantasy-ix-(disc-1)-(v1.exe, In Quarantäne, [313e0c016a21e25402c6f0c054adf20e],
PUP.Optional.PricePeep.A, C:\Users\Mattia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, Löschen bei Neustart, [4827fa13018a4cea09e3c65ef70c8779],
PUP.Optional.PricePeep.A, C:\Users\Mattia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, In Quarantäne, [79f67d9042496cca22ca68bcac57a35d],
PUP.Optional.Vitruvian.A, C:\Users\Mattia\AppData\Local\Temp\vitruvian-installer-hardwareprofile-v0001, In Quarantäne, [5c1323eaa0eb78be9cb6c1db857f718f],
PUP.Optional.Vitruvian.A, C:\Users\Mattia\AppData\Local\Temp\vitruvian-installer-install-v0003, In Quarantäne, [4629e12ce3a82a0caca62e6e21e3f50b],
PUP.Optional.Vitruvian.A, C:\Users\Mattia\AppData\Local\Temp\vitruvian-installer-processes-v0002, In Quarantäne, [dc93ab6226652a0c054d79231de7e719],
PUP.Optional.Vitruvian.A, C:\Users\Mattia\AppData\Local\Temp\vitruvian-installer-scheduledtasks-v0001, In Quarantäne, [df908a834f3ce3533c16a2fa64a0e31d],
PUP.Optional.Vitruvian.A, C:\Users\Mattia\AppData\Local\Temp\vitruvian-installer-softwareregkeys-v0002, In Quarantäne, [79f69c710586072f6ae85f3d9d6744bc],
PUP.Optional.ReMarkable.A, C:\Users\Mattia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Löschen bei Neustart, [81ee3dd0d7b40a2c8f9d1d855ba98878],
PUP.Optional.ReMarkable.A, C:\Users\Mattia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Löschen bei Neustart, [e9860508d4b7d066c26a6e3470942ed2],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\terms-of-service.rtf, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses\buildcrx-license.txt, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses\Info-ZIP-license.txt, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses\JSON-simple-license.txt, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses\nsJSON-license.txt, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses\Nustache-license.txt, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses\TaskScheduler-license.txt, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
PUP.Optional.TermCoach.A, C:\Program Files (x86)\TermCoach_1.10.0.22\3rd Party Licenses\UAC-license.txt, In Quarantäne, [6c0343caccbf1b1b96f40a11cb383ac6],
Physische Sektoren: 0
(keine bösartigen Elemente erkannt)
(end) |