Code:
Alles auswählen Aufklappen ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-06-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-27-2021
# Duration: 00:00:22
# OS: Windows 10 Home
# Cleaned: 81
# Failed: 0
***** [ Services ] *****
Deleted TBSecSvc
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Common Files\Tencent
Deleted C:\Program Files (x86)\Tencent
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\????
Deleted C:\ProgramData\Tencent
Deleted C:\Users\joreu\AppData\Local\Temp\Tencent
Deleted C:\Users\joreu\AppData\Local\Tencent
Deleted C:\Users\joreu\AppData\Roaming\LDSGameCenter
Deleted C:\Users\joreu\AppData\Roaming\LuDaShi
Deleted C:\Users\joreu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\????
Deleted C:\Users\joreu\AppData\Roaming\Tencent
Deleted C:\Users\joreu\AppData\Roaming\lockhomepage
Deleted C:\Windows\ServiceProfiles\LocalService\AppData\Local\Host App Service
Deleted C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Host App Service
Deleted C:\Windows\Temp\Tencent
***** [ Files ] *****
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\ScreenShot.lnk
Deleted C:\Users\joreu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ScreenShot.lnk
Deleted C:\Users\joreu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\????.lnk
Deleted C:\Windows\System32\Tasks_Migrated\App Explorer
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\en.mail.qq.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\qq.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\wx.qq.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\en.mail.qq.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\qq.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\wx.qq.com
Deleted HKCU\Software\Ludashi
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\360se6
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\PPTAssist
Deleted HKCU\Software\PRODUCTSETUP
Deleted HKCU\Software\QiLu Inc.
Deleted HKCU\Software\Thunder Network
Deleted HKCU\Software\csastats
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{16151CE8-F2D4-4CE2-9B17-9EDF4A1D1C72}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{23A7B146-A9A4-48FA-8B67-6197716578AE}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{3B721879-E10F-4DFA-80B0-2161526BB383}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{46FBDF6F-FDF8-426E-A787-99E5B9896C27}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{72455376-8156-4D81-B42A-904A46834331}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{803D8BA5-7325-4B99-968B-1A3E5BED698D}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{80CE794F-5543-4474-BA16-6EE10E5C5DD7}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{C6667E9A-4128-455E-933A-CA8B67CF1E3C}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{FEF5D657-6699-4A67-85F5-2824E403ED95}
Deleted HKLM\Software\Classes\QQLIVE
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\services\tbsecsvc
Deleted HKLM\Software\Policies\Microsoft\Internet Explorer\Main|Start Page
Deleted HKLM\Software\Wow6432Node\QiLu Inc.
Deleted HKLM\Software\Wow6432Node\ScreenShot
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{D9EBCF5D-3F8F-4B6A-89BA-70577BE73C62}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\ScreenShot
Deleted HKLM\Software\Wow6432Node\\Policies\Microsoft\Internet Explorer\Main|Start Page
Deleted HKLM\System\Setup\FirstBoot\Services\tbsecsvc
***** [ Chromium (and derivatives) ] *****
Deleted OnlineMapFinder - ceopoaldcnmhechacafgagdkklcogkgd
Deleted ilnidodcffjfecahcfiihlhiohnaobic
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Deleted www1.online/?w=RD1919
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.CyberLinkShellExtension Registry HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2}
Deleted Preinstalled.LenovoCCSDK Folder C:\Program Files (x86)\LENOVO\CCSDK
Deleted Preinstalled.LenovoCCSDK Folder C:\ProgramData\LENOVO\CCSDK
Deleted Preinstalled.LenovoCCSDK Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{67827BB6-4B05-6181-921A-E49FC484E859}
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\joreu\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Deleted Preinstalled.LenovoPhotoMaster Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|PhotoMasterImportAgent
Deleted Preinstalled.LenovoPhotoMaster Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Run|PhotoMasterImportAgent
Deleted Preinstalled.LenovoPower2Go Folder C:\Program Files (x86)\LENOVO\POWER2GO
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLMLServer_For_P2G8
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLVirtualDrive
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLMLServer_For_P2G8
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLVirtualDrive
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Deleted Preinstalled.LenovoPowerDVD Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BE47BAF-1CFD-47FD-9FCD-0A15CC9F104C}
Deleted Preinstalled.LenovoPowerDVD Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PDVDServ12 Task
Deleted Preinstalled.LenovoPowerDVD Task C:\Windows\System32\Tasks\PDVDSERV12 TASK
Deleted Preinstalled.LenovoSHAREit Folder C:\Program Files (x86)\LENOVO\SHAREIT
Deleted Preinstalled.LenovoSHAREit Folder C:\Users\joreu\AppData\Local\LENOVO\SHAREIT
Deleted Preinstalled.LenovoSHAREit Folder C:\Users\joreu\AppData\Local\Temp\LENOVO\SHAREIT
Deleted Preinstalled.LenovoSHAREit Registry HKLM\Software\Classes\CLSID\{430BD134-576D-4E75-87CD-0F5C6221A82B}
Deleted Preinstalled.LenovoSHAREit Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\SHAREit_is1
Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoUtility
Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LenovoUtility
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [10243 octets] - [27/07/2021 20:15:18]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Code:
Alles auswählen Aufklappen ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-06-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-27-2021
# Duration: 00:00:08
# OS: Windows 10 Home
# Scanned: 31979
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [10243 octets] - [27/07/2021 20:15:18]
AdwCleaner[C00].txt - [9830 octets] - [27/07/2021 20:17:36]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
27.07.2021, 19:22
Baum-Darstellung