Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 19.09.2014
Scan Time: 19:54:09
Logfile: MalwarebytesLogExport140919.txt
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.09.19.05
Rootkit Database: v2014.09.18.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 8
CPU: x64
File System: NTFS
User: UserAdmin
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 524469
Time Elapsed: 13 min, 50 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 13
PUP.Optional.OutBrowse, HKLM\SOFTWARE\CLASSES\TYPELIB\{DCABB943-792E-44C4-9029-ECBEE6265AF9}, , [c8b9a04f8eeddf57e60b5c31dd25c040],
PUP.Optional.OutBrowse, HKLM\SOFTWARE\CLASSES\INTERFACE\{3408AC0D-510E-4808-8F7B-6B70B1F88534}, , [c8b9a04f8eeddf57e60b5c31dd25c040],
PUP.Optional.OutBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3408AC0D-510E-4808-8F7B-6B70B1F88534}, , [c8b9a04f8eeddf57e60b5c31dd25c040],
PUP.Optional.OutBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{DCABB943-792E-44C4-9029-ECBEE6265AF9}, , [c8b9a04f8eeddf57e60b5c31dd25c040],
PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\ssd, , [ea9745aac9b20b2b4efcfb1835ce3bc5],
PUP.Optional.PlusHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-5.0, , [ea9734bbeb90cb6bcd2972b9a162f10f],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-927294191-717072922-153577076-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [ed94f6f9710a61d50537293a7d876f91],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-927294191-717072922-153577076-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, , [562bc02f94e7ed496038de5a0ff4a65a],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-927294191-717072922-153577076-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, , [b1d017d89edd66d06e8ac18d0ef65fa1],
PUP.Optional.SystemSpeedup, HKU\S-1-5-21-927294191-717072922-153577076-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\ssd, , [7908d817e4973303b396b95ae51ec23e],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-927294191-717072922-153577076-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [86fb47a89edd65d10d2f1251d232738d],
PUP.Optional.PlusHD.A, HKU\S-1-5-21-927294191-717072922-153577076-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-5.0, , [354c49a60972c4720fe72b008d76d12f],
PUP.Optional.RegCleanerPro.A, HKU\S-1-5-21-927294191-717072922-153577076-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\RegClean Pro, , [a8d98e617209c3732b72312356aefa06],
Registry Values: 2
PUP.Optional.InstallCore.A, HKU\S-1-5-21-927294191-717072922-153577076-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0X2O1C0R2R1R, , [b1d017d89edd66d06e8ac18d0ef65fa1]
PUP.Optional.NextLive.A, HKU\S-1-5-21-927294191-717072922-153577076-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|NextLive, C:\windows\SysWOW64\rundll32.exe "C:\Users\UserAdmin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l, , [2a57ba359edd81b5dc4c1b1e8c7710f0]
Registry Data: 0
(No malicious items detected)
Folders: 6
PUP.Optional.RegCleanerPro.A, C:\Users\User1\AppData\Roaming\Systweak\RegClean Pro, , [6a17ad42c8b354e264f0ce084cb6b848],
PUP.Optional.RegCleanerPro.A, C:\Users\User1\AppData\Roaming\Systweak\RegClean Pro\Version 6.1, , [6a17ad42c8b354e264f0ce084cb6b848],
PUP.Optional.NextLive.A, C:\Users\UserAdmin\AppData\Roaming\newnext.me, , [364b9857aad10b2bceb0fdda0cf6c33d],
PUP.Optional.NextLive.A, C:\Users\UserAdmin\AppData\Roaming\newnext.me\cache, , [364b9857aad10b2bceb0fdda0cf6c33d],
PUP.Optional.SystemSpeedup, C:\Users\UserAdmin\AppData\Roaming\Systweak\ssd, , [fb862cc3c3b850e6406235b969992dd3],
PUP.Optional.Updater.A, C:\Users\UserAdmin\AppData\Roaming\DigitalSites\UpdateProc, , [2f52a649fa8189ade4b4eb0861a1a25e],
Files: 13
Trojan.MSIL.Injector, C:\ProgramData\InstallMate\{2645F441-3D38-4BC1-A92A-751AFDA6D6B7}\Custom.dll, , [95ec638c22593105a88df3f91ae730d0],
PUP.Optional.RegCleanerPro.A, C:\Users\User1\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\eng_rcp.dat, , [6a17ad42c8b354e264f0ce084cb6b848],
PUP.Optional.RegCleanerPro.A, C:\Users\User1\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\ExcludeList.rcp, , [6a17ad42c8b354e264f0ce084cb6b848],
PUP.Optional.RegCleanerPro.A, C:\Users\User1\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_12-30-2013.log, , [6a17ad42c8b354e264f0ce084cb6b848],
PUP.Optional.RegCleanerPro.A, C:\Users\User1\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\results.rcp, , [6a17ad42c8b354e264f0ce084cb6b848],
PUP.Optional.RegCleanerPro.A, C:\Users\User1\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\TempHLList.rcp, , [6a17ad42c8b354e264f0ce084cb6b848],
PUP.Optional.NextLive.A, C:\Users\UserAdmin\AppData\Roaming\newnext.me\nengine.cookie, , [364b9857aad10b2bceb0fdda0cf6c33d],
PUP.Optional.NextLive.A, C:\Users\UserAdmin\AppData\Roaming\newnext.me\cache\spark.bin, , [364b9857aad10b2bceb0fdda0cf6c33d],
PUP.Optional.SystemSpeedup, C:\Users\UserAdmin\AppData\Roaming\Systweak\ssd\SSDPTstub.exe, , [fb862cc3c3b850e6406235b969992dd3],
PUP.Optional.Updater.A, C:\Users\UserAdmin\AppData\Roaming\DigitalSites\UpdateProc\config.dat, , [2f52a649fa8189ade4b4eb0861a1a25e],
PUP.Optional.Updater.A, C:\Users\UserAdmin\AppData\Roaming\DigitalSites\UpdateProc\prod.dat, , [2f52a649fa8189ade4b4eb0861a1a25e],
PUP.Optional.CrossRider.A, C:\Users\User1\AppData\Roaming\Mozilla\Firefox\Profiles\t3xs70g2.default\prefs.js, Good: (), Bad: (user_pref("extensions.crossrider.bic", "14344df762ce7bea55912756a9b8cd71");), ,[f78ae00f205bf73fc22492a67b8a52ae]
PUP.Optional.CrossRider.A, C:\Users\UserAdmin\AppData\Roaming\Mozilla\Firefox\Profiles\tdc7s1r2.default\prefs.js, Good: (), Bad: (user_pref("extensions.crossrider.bic", "14344e94e9466af7545a1758661bd8f6");), ,[a8d9e40b1b607bbb50969b9d8580f808]
Physical Sectors: 0
(No malicious items detected)
(end)
Danke schon mal,