Jump to content

Recommended Posts

Malwarebytes Anti-Malware (Test)


Datenbank Version: v2013.02.26.06

Windows XP Service Pack 3 x86 NTFS

Internet Explorer 8.0.6001.18702

MG :: MARTIN [Administrator]

Schutz: Aktiviert

26.02.2013 10:42:08

mbam-log-2013-02-26 (10-42-08).txt

Art des Suchlaufs: Quick-Scan

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 234746

Laufzeit: 14 Minute(n), 28 Sekunde(n)

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0

(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0

(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 2

HKCR\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32| (Trojan.0Access) -> Bösartig: (C:\RECYCLER\S-1-5-18\$83cf1b51e58b4d78083aad73ca3df802\n.) Gut: (fastprox.dll) -> Erfolgreich ersetzt und in Quarantäne gestellt.

HKCR\CLSID\{FBEB8A05-BEEE-4442-804E-409D6C4515E9}\InProcServer32| (Trojan.0Access) -> Bösartig: (C:\RECYCLER\S-1-5-21-1696424027-655268351-3834083482-1006\$83cf1b51e58b4d78083aad73ca3df802\n.) Gut: (shell32.dll) -> Erfolgreich ersetzt und in Quarantäne gestellt.

Infizierte Verzeichnisse: 0

(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1

C:\RECYCLER\S-1-5-21-1696424027-655268351-3834083482-1006\$83cf1b51e58b4d78083aad73ca3df802\n (Trojan.0Access) -> Löschen bei Neustart.


Link to post
Share on other sites

Hello und Wilkommen, Martinhio: :)


We can't review scan logs or work on malware diagnostics and removal in this sub-section of the forum.

So, please follow the recommendations in this sticky topic: Available Assistance For Possibly Infected Computers.

One of the malware experts will guide you through the cleaning process.

Google Translation:

Wir können nicht überprüfen Scan-Protokolle oder zur Arbeit auf Malware Diagnose und Beseitigung in diesem Teilbereich des Forums.

Also, bitte folgen Sie den Empfehlungen in diesem klebrigen Thema: Available Assistance For Possibly Infected Computers.

Einer der Malware-Experten werden Sie durch den Reinigungsvorgang zu führen.

Vielen Dank!


Link to post
Share on other sites

Hello and welcome to Malwarebytes

Just to add to what daledoc1 has already given you....

You're computer appears to be infected with Rootkit.ZeroAccess, a BackDoor Trojan.



One or more of the identified infections is known to use a backdoor.

This allows hackers to remotely control your computer, steal critical system information and download and execute files.

I would advise you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the infection has been identified, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?


When Should I Format, How Should I Reinstall


We can attempt to clean this machine but we cannot guarantee that it will be 100% secure afterwards nor that we can repair whatever damage may have already been done.

If you decide to clean it, please follow the instructions from daledoc1 above.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.