Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
"websearches" und andere Schädlinge (Logfile)

"websearches" und andere Schädlinge (Logfile)


Log-Analyse und Auswertung: "websearches" und andere Schädlinge (Logfile)

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 26.01.2015, 20:09   #1
Jina
 
"websearches" und andere Schädlinge (Logfile) - Standard

"websearches" und andere Schädlinge (Logfile)


Hi,
ich nutze dieses Forum gerade zum ersten Mal..
Ich habe meinen neuen Laptop noch nicht lang, jedoch nach dem Download handelsüblicher Software von eigentlich seriösen Seiten (dachte ich) haben mir einige Überraschungen beschert und ich bin schockiert, wieviele Funde Malwarebytes mir anzeigt. "Websearches" hab ich schon als solches erkannt und konnte es auch nicht in der Systemsteuerung löschen, jedoch bin ich wirklich überfragt, was ich damit jetzt anfange. Kann mir jemand helfen, wie ich weiter vorgehen soll? Lieben Dank.

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 26.01.2015
Scan Time: 19:36:52
Logfile:
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.26.07
Rootkit Database: v2015.01.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Janina

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 327950
Time Elapsed: 11 min, 26 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 1
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\ProtectService.exe, 1740, , [e81726d59dec64d2fde85cabc04220e0]

Modules: 2
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcp110.dll, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcr110.dll, , [bd427586a3e6c076f553cfad9b68bb45],

Registry Keys: 17
PUP.Optional.XTab.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IHProtect Service, , [e81726d59dec64d2fde85cabc04220e0],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.SupTab.A, HKU\S-1-5-21-2879392512-1592893863-600582413-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.SupTab.A, HKU\S-1-5-21-2879392512-1592893863-600582413-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [33cc966560294beb924d8260d0340bf5],
PUP.Optional.IHProtect.A, HKLM\SOFTWARE\WOW6432NODE\IHProtect, , [c13e7a81a5e449edae990676010250b0],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, , [e51a6d8e0a7f1620181817e0e81c1fe1],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\webssearchesSoftware, , [bd42c83348413ef842b55b5959aa07f9],
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [e21d36c50089ab8ba33c0ed427dd5ea2],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB, , [8778a15a6e1b191de14142503dc6847c],
PUP.Optional.Qone8, HKU\S-1-5-21-2879392512-1592893863-600582413-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [42bd27d415748caaf3ebb52d59ab6c94],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\webssearches uninstall, , [c837fa01692084b263685becac571de3],

Registry Values: 1
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB|ptid, cvs, , [8778a15a6e1b191de14142503dc6847c]

Registry Data: 14
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT),,[827d2ccfaddc1e18153f019b8a7b1be5]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}),,[44bb30cbddac48ee1443d6c620e5be42]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT),,[7d82c833fd8cce682c2a910ba560f50b]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT),,[09f60eed3356e74f2632504cad58f10f]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}),,[df20be3da5e40e2816ba8f0a01049d63]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT),,[8c739f5c96f31d19f0640d8f9075857b]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}),,[44bbf803e8a18bab0156a7f5bb4a57a9]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT),,[4cb3c8333a4f44f291c50993f4112bd5]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT),,[f9069a613f4a270f03559dffb1544db3]
PUP.Optional.WebsSearches, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1421841988&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}),,[09f6e01b6e1b2511daf6c1d89a6b59a7]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[dc231ddedcad06301d18e8beef167a86]
PUP.Optional.WebsSearches, HKU\S-1-5-21-2879392512-1592893863-600582413-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://istart.webssearches.com/web/?type=dspp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=dspp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}),,[41be09f2cebbf73f9938abeec63f53ad]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-2879392512-1592893863-600582413-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hppp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT),,[55aa708b4e3b023410e3901663a2ae52]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-2879392512-1592893863-600582413-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=dspp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=dspp&ts=1421842025&from=cvs&uid=TOSHIBAXMQ01ABF050_84B6P3BXTXX84B6P3BXT&q={searchTerms}),,[f20d8b70107946f0a42ecacf28dd43bd]

Folders: 34
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\image, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\weather, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\en-US, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-419, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-ES, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-BE, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CA, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CH, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-FR, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-LU, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-CH, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-IT, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pl, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt-BR, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru-MO, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\tr-TR, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\vi-VI, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-CN, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-TW, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\log, , [c837fa01692084b263685becac571de3],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, , [55aaf00b4d3ccf67e3295108778c9f61],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate, , [b44bed0e2b5ebb7b294061152ad9e21e],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate\update, , [b44bed0e2b5ebb7b294061152ad9e21e],

Files: 108
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\ProtectService.exe, , [e81726d59dec64d2fde85cabc04220e0],
PUP.Optional.SupTab.A, C:\Program Files (x86)\XTab\SupTab.dll, , [52ad1ae1820721155efa37c12dd5738d],
PUP.Optional.WindowsProtectManger.A, C:\Users\Janina\AppData\Local\Temp\~dl4DAE\~dljyb\tmp\wpm_v20.0.0.1714.exe, , [45ba609bd0b98bab437a5b0b13ed1ee2],
PUP.Optional.XTab.A, C:\Users\Janina\AppData\Local\Temp\~dl4DAE\~dljyb\tmp\XTab_v4.0.exe, , [3ec13dbe8900c76ff3f2c74062a0d729],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\uninstall.exe, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\BrowerWatchCH.dll, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\BrowerWatchFF.dll, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\BrowserAction.dll, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\CmdShell.exe, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\conf, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\ffsearch_toolbar!1.0.0.1025.xpi, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\HPNotify.exe, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\IeWatchDog.dll, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\install.data, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcp110.dll, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcr110.dll, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\searchProvider.xml, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\about.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\about_bk.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\btn.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\btn_apply.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\close.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\conf.xml, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\conf_back.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\input_bk.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\logo.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\main.xml, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\radio_1.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\radio_2.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\rigth_arrow.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\settings.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\data.html, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\indexIE.html, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\indexIE8.html, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\main.css, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\ver.txt, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\arrow.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\default_add_logo.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\default_add_logo_hover.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\default_logo.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\googlelogo.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\googlelogo2.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\google_trends.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\icon128.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\icon16.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\icon48.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\loading.gif, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\logo32.ico, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\weather\0.png, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\common.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\ga.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\ie8.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\jquery-1.11.0.min.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\jquery.autocomplete.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\js.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\library.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\xagainit-ie8.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\xagainit.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\xagainit2.0.js, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\en-US\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-419\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-ES\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-BE\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CA\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CH\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-FR\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-LU\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-CH\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-IT\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pl\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt-BR\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru-MO\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\tr-TR\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\vi-VI\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-CN\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-TW\messages.json, , [bd427586a3e6c076f553cfad9b68bb45],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\363.json, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\MessageBox.xml, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\uninstallDlg2.xml, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\UninstallManager.exe, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\bg.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\bg1.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\bk_shadow.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\button.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\button1.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\checkbox.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\checkbox_select.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\checked.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\close.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\loading_bg.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\loading_light.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\min.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\scrollbar.bmp, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\Thumbs.db, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\unchecked.png, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code\code1.jpg, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code\code2.jpg, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code\code3.jpg, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code\code4.jpg, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code\code5.jpg, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code\code6.jpg, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\images\code\Thumbs.db, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\log\UninstallManager_2015-01-21[13-08-48-820].log, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\log\UninstallManager_2015-01-21[13-09-15-063].log, , [c837fa01692084b263685becac571de3],
PUP.Optional.WebsSearches.A, C:\Users\Janina\AppData\Roaming\webssearches\log\UninstallManager_2015-01-21[13-09-24-383].log, , [c837fa01692084b263685becac571de3],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate\update\conf, , [b44bed0e2b5ebb7b294061152ad9e21e],

Physical Sectors: 0
(No malicious items detected)


(end)

 

Themen zu "websearches" und andere Schädlinge (Logfile)
detected, download, fehlercode 0xc0000005, fehlercode 0xc0000142, iexplore.exe, install.exe, installmanager.exe, internet, internet explorer, malwarebytes, microsoft, pup.optional.ihprotect.a, pup.optional.ihprotectupdate.a, pup.optional.qone8, pup.optional.suptab.a, pup.optional.webssearches, pup.optional.webssearches.a, pup.optional.windowsprotectmanger.a, pup.optional.wpm.a, pup.optional.xtab.a, schädlinge, service.exe, software, superfish inc. visualdiscovery entfernen, websearches, webssearches uninstall entfernen, websuche entfernen, überfragt


« Windows 7: Mehrere Trojaner gefunden | Windows 8 mit Power 8 Startmenü Ersatz : Laptop lüftet permanent extrem laut, Office Programme insbes. word agieren verzögert auf Eingaben »


Ähnliche Themen: "websearches" und andere Schädlinge (Logfile)


  1. Diverse Malware ("CoolSaleCoupon", "ddownlloaditkeep", "omiga-plus", "SaveSense", "SaleItCoupon"); lahmer PC & viel Werbung!
    Plagegeister aller Art und deren Bekämpfung - 11.01.2015 (16)
  2. Ärger mit Adware "websearches.com"
    Plagegeister aller Art und deren Bekämpfung - 27.11.2014 (11)
  3. Startseite "istart.websearches.com" und massenweise fenster öffnen sich
    Plagegeister aller Art und deren Bekämpfung - 23.07.2014 (5)
  4. Ärger mit "websearches und mediaplayerplus" Trojanern-/Vierenprogrammen
    Log-Analyse und Auswertung - 31.05.2014 (7)
  5. "Websearches" entfernen
    Log-Analyse und Auswertung - 26.05.2014 (11)
  6. "Server ist ausgelastet" - "Dieser Vorgang kann nicht ausgeführt werden,da die andere Anwendung aktiv ist.
    Log-Analyse und Auswertung - 29.11.2013 (23)
  7. "monstermarketplace.com" Infektion und ihre Folgen; "Anti-Virus-Blocker"," unsichtbare Toolbars" + "Browser-Hijacker" von selbst installiert
    Log-Analyse und Auswertung - 16.11.2013 (21)
  8. Windows 7 PRO, SP1 wird zunehmend langsamer! Gefunden "DealPly", "HideIcon" und andere
    Log-Analyse und Auswertung - 06.11.2013 (19)
  9. "AppsHat", "DeltaToolbar" und div. andere Software nach Download von mcpatcher
    Plagegeister aller Art und deren Bekämpfung - 02.10.2013 (23)
  10. "Server ist ausgelastet" - "Dieser Vorgang kann nicht ausgeführt werden,da die andere Anwendung aktiv ist.
    Diskussionsforum - 30.07.2013 (7)
  11. Schädlinge "EXP/CVE-2013-2423.J" und "TR/Spy.ZBot.Intt.12" über Avira gefunden
    Log-Analyse und Auswertung - 24.05.2013 (9)
  12. Umleitung auf "ihavenet", "newsbusters" und andere Seiten
    Plagegeister aller Art und deren Bekämpfung - 06.04.2013 (21)
  13. "Trojan.Vundo-Variant/F" in Datei "C:\Windows\Syswow64\avsredirect.dll" + vorher weitere Schädlinge
    Plagegeister aller Art und deren Bekämpfung - 19.12.2010 (15)
  14. Logfile - nach Versuch von "twgg.org" meinen Computer zu "reinigen"
    Log-Analyse und Auswertung - 28.05.2010 (5)
  15. "I-Worm.Bagele.AAKP" oder "Trojan.DL.Bagele.ABLT" auf andere PC's übertragbar?
    Mülltonne - 31.10.2009 (1)
  16. "Adware.Virtumonde"/"Downloader.MisleadApp"/"TR/VB.agt.4"/"NewDotNet.A.1350"/"Fakerec
    Plagegeister aller Art und deren Bekämpfung - 22.08.2008 (6)
  17. TR/Dropper.Gen und diverse andere "Schädlinge" ? Bitte um Hilfe !
    Plagegeister aller Art und deren Bekämpfung - 10.08.2008 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema "websearches" und andere Schädlinge (Logfile) - Hi, ich nutze dieses Forum gerade zum ersten Mal.. Ich habe meinen neuen Laptop noch nicht lang, jedoch nach dem Download handelsüblicher Software von eigentlich seriösen Seiten (dachte ich) haben - "websearches" und andere Schädlinge (Logfile)...
Archiv
Du betrachtest: "websearches" und andere Schädlinge (Logfile) auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131