Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Adwareprobleme

Adwareprobleme


Log-Analyse und Auswertung: Adwareprobleme

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 06.07.2014, 18:37   #1
julcek111
 
Adwareprobleme - Standard

Adwareprobleme


Hallo,
seit einiger Zeit plagt mich die Sorge, dass bei meinem PC nicht mehr alles stimmt.
Vorab eine Information:
Ich benutze Norton 360.

Außer die üblichen Tracking Cookies kommt aus den Scans nicht viel raus, aber vor allem Adwareprobleme plagen mich. Merkwürdige Links und ähnliches öffnen sich plötzlich im Internet und Massen an Werbung.

Ich habe letztens eine Software installiert und dabei nicht ganz aufgepasst. Diese hat mir glaube ich jede Menge Müll auf meinen Laptop geholt.

Ich habe mal Malwarebytes Anti-Malware laufen lassen:

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Scan Date: 06.07.2014
Scan Time: 19:24:38
Logfile: Log.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.06.06
Rootkit Database: v2014.07.03.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Lukas

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 306154
Time Elapsed: 9 min, 17 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 3
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, 1352, , [a7a7029a65161026406290ccb64bd32d]
Adware.Adpeak, C:\Program Files\003\vxlsnyaiet64.exe, 1684, , [48068e0e13681b1b87fbccb120e420e0]
PUP.Optional.AdPeak.A, C:\Program Files\003\vxlsnyaiet64.exe, 1684, , [074727757704d95d1bebaa18cc3617e9]

Modules: 1
PUP.Optional.Skytech.A, C:\Program Files (x86)\SupTab\DpInterface32.dll, , [eb63bce098e32016ddf2c5c660a131cf], 

Registry Keys: 23
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, , [a7a7029a65161026406290ccb64bd32d], 
Adware.Adpeak, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\vxlsnyaiet64, , [48068e0e13681b1b87fbccb120e420e0], 
PUP.Optional.CouponDownloader.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{10AD2C61-0898-4348-8600-14A342F22AC3}, , [a5a9d0cc7efd1a1c987b1d31dd251fe1], 
PUP.Optional.CouponDownloader.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{10AD2C61-0898-4348-8600-14A342F22AC3}, , [a5a9d0cc7efd1a1c987b1d31dd251fe1], 
PUP.Optional.CouponDownloader.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{10AD2C61-0898-4348-8600-14A342F22AC3}, , [a5a9d0cc7efd1a1c987b1d31dd251fe1], 
PUP.Optional.CouponDownloader.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{10AD2C61-0898-4348-8600-14A342F22AC3}, , [a5a9d0cc7efd1a1c987b1d31dd251fe1], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [eb63c8d4c2b9c86e33f9c19061a13bc5], 
PUP.Optional.SupTab.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [eb63c8d4c2b9c86e33f9c19061a13bc5], 
PUP.Optional.AdPeak.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\vxlsnyaiet64, , [074727757704d95d1bebaa18cc3617e9], 
PUP.Optional.AdPeak.A, HKLM\SOFTWARE\LevelQualityWatcher, , [f25c18845823191df31440758082817f], 
PUP.Optional.SupraSavings.A, HKLM\SOFTWARE\suprasavings, , [5ef013897a0155e1817cca0025ddbf41], 
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [72dcb8e4e3983402726c42b81de6ea16], 
PUP.Optional.WindowsProtectManger.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsProtectManger, , [e668e7b5b3c82d095bd58b29d2306f91], 
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\WOW6432NODE\sweet-pageSoftware, , [1c3248540477b5819b31bd4604003cc4], 
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [d876a0fcfe7d51e5429ca35759aa2dd3], 
PUP.Optional.AdPeak.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{E6B105B8-1F65-4428-9397-1DFD8A03B94D}, , [27274d4ff58615214c26d6e49c66d12f], 
PUP.Optional.BundleInstaller.A, HKLM\SOFTWARE\WOW6432NODE\VITTALIA\AxtanInstaller, , [d07e9606ceaddf57703934a2bc4605fb], 
PUP.Optional.SupraSavings.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Supra Savings, , [ce80e3b9146748ee73847e4be51dc53b], 
PUP.Optional.BrowserSafeGuard.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BrowserSafeguardInstalled, , [62ec5a4290eb63d32a1c10a53bc7d927], 
PUP.Optional.SupraSavings.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SupraSavings, , [92bcc1dbcab1fe3850ae89416b97c43c], 
PUP.Optional.SupraSavings.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\suprasavings, , [3618f5a7e6950c2abb44a327837f53ad], 
PUP.Optional.Qone8, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [27279b01d6a50b2bfae3916963a04bb5], 
PUP.Optional.Softonic.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, , [f05ecfcd552696a08466be0957abf50b], 

Registry Values: 4
PUP.Optional.SupTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SupTab\SEARCH~2.DLL, , [bc92524acdae3ef81d6f496bb250926e]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SupTab\SEARCH~1.DLL, , [b9954e4ef487c4723c50a90ba1612cd4]
PUP.Optional.FastStart.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\gerrq6ld.default\extensions\faststartff@gmail.com, , [4fff0a92a3d8b97dfb8bb05ec440b54b]
PUP.Optional.FastStart.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, , [87c72973a8d39c9a75bdd6de47bb0bf5]

Registry Data: 12
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}),,[ef5f019badceb4821e06efa650b45fa1]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}),,[c48a1a8294e79c9a53af2664d331b54b]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563),,[b896019b7ffc4cea43e0efa67c886997]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563),,[bf8f9705adce95a18a9b4f4655af7987]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[b6985c40eb90a591714c8c08ae568d73]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}),,[fa549ffda5d60630ef35752034d0b848]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563),,[6be36c303b40c67059cac0d5dc287c84]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563),,[d876623a23585cdac26332637b893cc4]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/web/?type=ds&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563&q={searchTerms}),,[cf7f8b11611a3afcaf53404ab84cd12f]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[af9fd0cc205b0c2a6c510d872fd58779]
PUP.Optional.SweetPage.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563),,[3a144854394286b0a878f99c33d14ab6]
PUP.Optional.SweetPage.A, HKU\S-1-5-21-1539172179-1726893121-3486313719-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563, Good: (www.google.com), Bad: (hxxp://www.sweet-page.com/?type=hp&ts=1403333861&from=adks&uid=ST750LM022XHN-M750MBB_S2SUJ9EC610563),,[1d31811bc2b91b1b37e8b2e3f01451af]

Folders: 7
PUP.Optional.SupraSavings.A, C:\Program Files\SupraSavings, , [c48a44584a312b0b6d5b9f01cf330000], 
PUP.Optional.SupraSavings.A, C:\Program Files\SupraSavings\SSL, , [c48a44584a312b0b6d5b9f01cf330000], 
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices, , [d27c4953e6953402889b19964ab8a45c], 
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update, , [d27c4953e6953402889b19964ab8a45c], 
PUP.Optional.WPM.A, C:\ProgramData\WindowsProtectManger, , [cf7f38642952a393a525159af60c8d73], 
PUP.Optional.WPM.A, C:\ProgramData\WindowsProtectManger\log, , [cf7f38642952a393a525159af60c8d73], 
PUP.Optional.WPM.A, C:\ProgramData\WindowsProtectManger\update, , [cf7f38642952a393a525159af60c8d73], 

Files: 11
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, , [a7a7029a65161026406290ccb64bd32d], 
PUP.Optional.Skytech.A, C:\Program Files (x86)\SupTab\DpInterface32.dll, , [eb63bce098e32016ddf2c5c660a131cf], 
Adware.Adpeak, C:\Program Files\003\vxlsnyaiet64.exe, , [48068e0e13681b1b87fbccb120e420e0], 
PUP.Optional.SupTab.A, C:\$Recycle.Bin\S-1-5-21-1539172179-1726893121-3486313719-1001\$R2JBGDE.dll, , [69e5a2fa344782b4a7bca095b44ce818], 
PUP.Optional.SupraSavings.A, C:\$Recycle.Bin\S-1-5-21-1539172179-1726893121-3486313719-1001\$RNIMYFM\2rs3.dll, , [ff4f8715ff7cbc7a69cec0bc986c50b0], 
PUP.Optional.AdPeak.A, C:\temp\InstallFilter64.msi, , [024c207c8af1ae885c2d043903fde719], 
PUP.Optional.SupraSavings.A, C:\Windows\Installer\22a89434.msi, , [7ed0c8d414678babb681bbc15da73bc5], 
PUP.Optional.AdPeak.A, C:\Program Files\003\vxlsnyaiet64.exe, , [074727757704d95d1bebaa18cc3617e9], 
PUP.Optional.SweetPage.A, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\sweet-page.xml, , [0b43b1eb7cff78beb417cc37719329d7], 
PUP.Optional.WPM.A, C:\ProgramData\WindowsProtectManger\log\wprotectmanager_2014-06-21[08-58-10-052].log, , [cf7f38642952a393a525159af60c8d73], 
PUP.Optional.WPM.A, C:\ProgramData\WindowsProtectManger\update\conf, , [cf7f38642952a393a525159af60c8d73], 

Physical Sectors: 0
(No malicious items detected)


(end)
Was soll ich nun machen? Ist es sogar schlimmeres als Adware?

Ich bedanke mich schonmal sehr

LG

Lukas

 

Themen zu Adwareprobleme
adware.adpeak, pup.optional.adpeak.a, pup.optional.browsersafeguard.a, pup.optional.bundleinstaller.a, pup.optional.coupondownloader.a, pup.optional.faststart.a, pup.optional.iepluginservice.a, pup.optional.iepluginservices.a, pup.optional.qone8, pup.optional.skytech.a, pup.optional.softonic.a, pup.optional.suprasavings.a, pup.optional.suptab.a, pup.optional.sweetpage.a, pup.optional.windowsprotectmanger.a, pup.optional.wpm.a, sweet-page, sweet-page entfernen, sweetpage, sweetpage entfernen


« Firefox, einzelne Wörter in blauer Schrift und doppelt unterstrichen, beim Hoovern erscheint ein Popup/Werbung | Windows 7: Programme und Internet extrem Langsam »


Zum Thema Adwareprobleme - Hallo, seit einiger Zeit plagt mich die Sorge, dass bei meinem PC nicht mehr alles stimmt. Vorab eine Information: Ich benutze Norton 360. Außer die üblichen Tracking Cookies kommt aus - Adwareprobleme...
Archiv
Du betrachtest: Adwareprobleme auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131