196361'GData meldet ständig sowas in dieser Art: (PUP): Win32.Adware.Narn.D (Engine B) Datei: Updater.exe'

ONNLEINCHEN · 15.09.2019, 17:59

Code:

ATTFilter

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build:    09-04-2019
# Database: 2019-08-27.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    09-15-2019
# Duration: 00:01:49
# OS:       Windows 7 Professional
# Cleaned:  79
# Failed:   1


***** [ Services ] *****

Deleted       WinZip Smart Monitor Service

***** [ Folders ] *****

Deleted       C:\Program Files (x86)\Browser Files
Deleted       C:\Program Files (x86)\Solvusoft
Deleted       C:\Program Files (x86)\WinThruster
Deleted       C:\Program Files\FileViewPro
Deleted       C:\Program Files\Solvusoft
Deleted       C:\Program Files\WinZip Driver Updater
Deleted       C:\ProgramData\FileViewPro
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileViewPro
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\WinZip Driver Updater
Deleted       C:\ProgramData\Solvusoft
Deleted       C:\ProgramData\WinZip\WinZip Driver Updater
Deleted       C:\ProgramData\WinZip\WinZip Smart Monitor
Deleted       C:\Users\Conny\AppData\Local\YSearchUtil
Deleted       C:\Users\Conny\AppData\Roaming\DESKTOPICONAMAZON
Deleted       C:\Users\Conny\AppData\Roaming\OpenOffice Updater
Deleted       C:\Users\Conny\AppData\Roaming\Solvusoft
Deleted       C:\Users\Conny\AppData\Roaming\WinThruster
Deleted       C:\Windows\Installer\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
Deleted       C:\Windows\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil
Not Deleted   C:\Program Files\WinZip Smart Monitor

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
Deleted       C:\Users\Conny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Deleted       C:\Users\Conny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Deleted       C:\Users\Public\Desktop\Google Chrome.lnk

***** [ Tasks ] *****

Deleted       C:\Windows\System32\Tasks\START WINZIP DRIVER UPDATER SCHEDULE
Deleted       C:\Windows\System32\Tasks\Start WinZip Driver Updater Update
Deleted       C:\Windows\System32\Tasks\Start WinZip Driver Updater for Conny-PC@Conny(logon)
Deleted       C:\Windows\System32\Tasks\{11136802-17DE-45F0-ABD5-F37EA3E116AE}
Deleted       C:\Windows\Tasks\Start WinZip Driver Updater for Conny-PC@Conny(logon).job

***** [ Registry ] *****

Deleted       HKCU\Software\ImInstaller
Deleted       HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted       HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{92300A55-3F8B-41D3-A6FD-06D9D0D29019}
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Run|OpenOffice Updater
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\OpenOffice Updater
Deleted       HKCU\Software\OpenOffice Updater
Deleted       HKCU\Software\Solvusoft
Deleted       HKLM\SOFTWARE\CLASSES\APPLICATIONS\SolvusoftTray.exe
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FBFF8AC-FA52-4F0D-9665-D4F11B8AC352}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C60E22C2-7D05-4E5A-A670-D415C2737851}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D61C818F-DBF7-486B-A06C-AF7FACBEC561}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AE75E8A-2F4B-40BC-AB42-24C932B05837}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FBFF8AC-FA52-4F0D-9665-D4F11B8AC352}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C60E22C2-7D05-4E5A-A670-D415C2737851}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D61C818F-DBF7-486B-A06C-AF7FACBEC561}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Start WinZip Driver Updater Schedule
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Start WinZip Driver Updater Update
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Start WinZip Driver Updater for Conny-PC@Conny(logon)
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{11136802-17DE-45F0-ABD5-F37EA3E116AE}
Deleted       HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Websuche.exe
Deleted       HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WinThruster.exe
Deleted       HKLM\Software\Classes\Installer\Features\8AC8A37767831AA4BA87EEAC32B1FFA3
Deleted       HKLM\Software\Classes\Installer\Products\8AC8A37767831AA4BA87EEAC32B1FFA3
Deleted       HKLM\Software\Classes\Installer\UpgradeCodes\5556309623D8EAC478D3B24F6A68D7B0
Deleted       HKLM\Software\Common Toolkit Suite
Deleted       HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{92300A55-3F8B-41D3-A6FD-06D9D0D29019}
Deleted       HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5556309623D8EAC478D3B24F6A68D7B0
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8AC8A37767831AA4BA87EEAC32B1FFA3
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DesktopIconAmazon
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FileViewPro_is1
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinZip Driver Updater
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
Deleted       HKLM\Software\Solvusoft
Deleted       HKLM\Software\Websuche
Deleted       HKLM\Software\Wow6432Node\ImInstaller
Deleted       HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted       HKLM\Software\Wow6432Node\Solvusoft
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\App Paths\Websuche.exe
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\App Paths\WinThruster.exe
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CommonToolkitTray_Solvusoft
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Websuche

***** [ Chromium (and derivatives) ] *****

Deleted       Amazon Assistant for Chrome
Deleted       Symbols & Smileys
Deleted       obhjnggbngfbgghjfkmpcnihbgnehgeo

***** [ Chromium URLs ] *****

Deleted       Claro Search
Deleted       MyStart Search
Deleted       MyStart Search

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [51116 octets] - [15/09/2019 17:16:39]
AdwCleaner[S00].txt - [9035 octets] - [15/09/2019 17:49:47]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

196361'GData meldet ständig sowas in dieser Art: (PUP): Win32.Adware.Narn.D (Engine B) Datei: Updater.exe'

Log-Analyse und Auswertung: 196361'GData meldet ständig sowas in dieser Art: (PUP): Win32.Adware.Narn.D (Engine B) Datei: Updater.exe'

196361'GData meldet ständig sowas in dieser Art: (PUP): Win32.Adware.Narn.D (Engine B) Datei: Updater.exe'

Ähnliche Themen: 196361'GData meldet ständig sowas in dieser Art: (PUP): Win32.Adware.Narn.D (Engine B) Datei: Updater.exe'