| |
| |||||||
Log-Analyse und Auswertung: Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht.Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
19.04.2020, 17:32
| #16 |
 | ![Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. - Standard](images/icons/icon1.gif){kind=icon} Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Habe 1-mal auf "Aktionen starten" gedrückt. Also vom Windows-Defender wurden ein paar Anwendungen in Quarantäne gesetzt, andere wurden deaktiviert, bei machen steht "Wartung unvollständig", ich gehe mal nicht davon aus dass der Defender alles rausgeholt hat... |
|
19.04.2020, 20:46
| #17 |
| /// TB-Ausbilder   | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Ich vermute, dass der Windows Defender auch die Quarantäne von AdwCleaner und Co anmeckert.
__________________Ich schaue mir das mal kurz mit FRST an:
|
|
19.04.2020, 21:18
| #18 |
| | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Ok, hier die Datei.
__________________ Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 19-04-2020
durchgeführt von fkrap (19-04-2020 22:16:24) Run:1
Gestartet von D:\Users\fkrap\Desktop\Virus\FRST
Geladene Profile: fkrap & f1kra (Verfügbare Profile: defaultuser0 & fkrap & Dad & f1kra)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
powershell: Get-MpThreat
powershell: Get-MpThreatDetection
*****************
========= Get-MpThreat =========
CategoryID : 1
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\190.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\190.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\190.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver1BlockAndSurf\186.dll.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 195750
ThreatName : Adware:Win32/AddLyrics
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\PriucaeeLesS\OycmtH3ieLMvJu.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\PriucaeeLesS\OycmtH3ieLMvJu.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\PriucaeeLesS\OycmtH3ieLMvJu.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\PriucaeeLesS\OycmtH3ieLMvJu.x64.dll.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 213571
ThreatName : BrowserModifier:Win32/Diplugem
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver1BlockAndSurf\Uninstall.exe.vir,
containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\Uninstall.exe.vir,
containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver8BlockAndSurf\Uninstall.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\ver3BlockAndSurf\Uninstall.exe.vir->(nsis-6-1)...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 213919
ThreatName : PUA:Win32/Lyrics
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\$Recycle.Bin\S-1-5-21-1340611331-2738064446-3359332511-1002\$RU2JXIA.exe,
file:_E:\Users\Finn.Katharina-PC\AppData\Local\Temp\ICReinstall_FileZilla_3.exe}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 213927
ThreatName : PUA:Win32/InstallCore
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183-4.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Weather It Up\Weather It Up-buttonutil.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\Weather It Up\063ddb21-0f22-4f6d-bcaa-db4770280183-5.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\Uninstall.exe.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 213930
ThreatName : PUA:Win32/CrossRider
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\supporter\Supporter.dll.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 213936
ThreatName : PUA:Win32/InstallMate
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\ProtectService.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\ProtectService.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\ProtectService.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchCH.dll.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 214126
ThreatName : BrowserModifier:Win32/SupTab
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Windows\Start
Menu\Programs\Internet Explorer.lnk.vir->[CMDEmbedded],
file:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Windows\Start
Menu\Programs\Internet Explorer.lnk.vir->[CMDEmbedded],
file:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Windows\Start
Menu\Programs\Internet Explorer.lnk.vir->[CMDEmbedded], containerfile:_E:\AdwCleaner\Quarantine\C\Us
ers\Finn.Katharina-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System
Tools\Internet Explorer (No Add-ons).lnk.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 221923
ThreatName : BrowserModifier:Win32/MyStartSearch!blnk
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\globalUpdate\Update\GoogleUpdate.exe.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 223696
ThreatName : PUA:Win32/GlobalUpdate
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\Users\Finn.Katharina-PC\Downloads\wlsetup-all_CB-DL-Manager.exe}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 223795
ThreatName : PUA:Win32/DownloadGuide
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}\1.9.3.1\lece.dll,
file:_E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}\1.9.3.1\lece.dll,
file:_E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}\1.9.3.1\lece.dll}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 224074
ThreatName : BrowserModifier:Win32/Prifou
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Boost\64Boost.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Boost\Boost.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Boost\Boost.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\x64\webTinstMKTN.sys.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 224324
ThreatName : PUA:Win32/Creprote
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\Users\Finn.Katharina-PC\AppData\Local\Temp\DMR\dmr_72.exe,
file:_E:\Users\Finn.Katharina-PC\Downloads\Microsoft Security Essentials - CHIP-Installer.exe,
file:_E:\Users\Finn.Katharina-PC\Downloads\Opera - CHIP-Installer.exe,
file:_E:\Users\Katharina\AppData\Local\Temp\OCS\ocs_v71a.exe}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 225064
ThreatName : PUA:Win32/DownloadSponsor
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Super Optimizer\SuperOptimizer.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Super Optimizer\SupOptGuard.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Super Optimizer\SupOptUninstaller.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Super Optimizer\SupOptLauncher.exe.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 226797
ThreatName : PUA:Win32/SuperOptimizer
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\Users\Finn.Katharina-PC\AppData\Local\Temp\F4FYlEJf.exe.part}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 226933
ThreatName : PUA:Win32/Bandoo
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Windows\System32\drivers\cherimoya.sys.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 226947
ThreatName : PUA:Win32/NetFilter
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\tsoni.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\liara64.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\tsoni64.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\liara.dll.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 226948
ThreatName : PUA:Win32/Perion
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\ProgramData\aLhTGOXHapr\dat\nBIrBarki.dll,
file:_E:\AdwCleaner\Quarantine\C\ProgramData\ZombieNews\Uninstall.exe.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 226949
ThreatName : PUA:Win32/PullUpdate
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\Users\Finn\AppData\Local\Temp\pcspeedup.exe}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 227063
ThreatName : PUA:Win32/SpeedChecker
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {containerfile:_E:\Users\Finn\Downloads\avira_free_antivirus_de_14.0.3.350.exe, file:_E:\Users\Finn\
Downloads\avira_free_antivirus_de_14.0.3.350.exe->(RarSfx)->offercast_avirav7_.exe}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 227072
ThreatName : PUA:Win32/AskToolbar
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 227075
ThreatName : PUA:Win32/Conduit
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\AnyProtectEx\Uninstall.exe.vir,
file:_E:\Users\Finn.Katharina-PC\AppData\Local\nsjEF4B.tmp}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 227148
ThreatName : PUA:Win32/ClickMeIn
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro 3.64\OptProUninstaller.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro 3.64\OptProSchedule.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro 3.64\OptProReminder.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro 3.64\OptimizerPro.exe.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 227235
ThreatName : PUA:Win32/SpeedingUpMyPC
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\WaInterEnhance\WaInterEnhance Internet
Enhancer\InternetEnhancer.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\WaInterEnhance\WaInterEnhance Internet Enhancer\InternetEnhancer.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\WaInterEnhance\WaInterEnhance Internet
Enhancer\InternetEnhancer.exe.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 233287
ThreatName : BrowserModifier:Win32/Soctuseer
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Deal
Keeper\bin\eb8709c552a249ef934164.dll.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Deal Keeper\bin\eb8709c552a249ef934164.dll.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\Deal Keeper\bin\eb8709c552a249ef934164.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Deal
Keeper\bin\eb8709c552a249ef93412b49aaf413b8.dll.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 235004
ThreatName : BrowserModifier:Win32/Foxiebro
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\utils.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\utils.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\utils.exe.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 235408
ThreatName : BrowserModifier:Win32/Xider
TypeID : 0
PSComputerName :
CategoryID : 27
DidThreatExecute : False
IsActive : False
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 242420
ThreatName : PUA:Win32/Presenoker
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir, containerfile:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\Weather It Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir,
containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Weather It Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir->extensionData/plugins/104.js...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 245677
ThreatName : BrowserModifier:JS/CrossRider
TypeID : 0
PSComputerName :
CategoryID : 8
DidThreatExecute : False
IsActive : False
Resources : {containerfile:_E:\Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe,
file:_E:\ProgramData\{8f9f2fec-619d-08cb-8f9f-f2fec619bfb1}\superpc_soft_partner.exe,
file:_E:\Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe->(nsis-6-$(PLUGINSDIR)\g.dll)}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 2147723143
ThreatName : Trojan:Win32/Bitrep.B
TypeID : 0
PSComputerName :
CategoryID : 8
DidThreatExecute : False
IsActive : False
Resources : {containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 5
ThreatID : 2147726780
ThreatName : Trojan:Win32/Occamy.C
TypeID : 0
PSComputerName :
CategoryID : 13
DidThreatExecute : False
IsActive : False
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Interne
t Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir, containerfile:_E:\AdwCleaner\Quara
ntine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch
Internet Explorer Browser.lnk.vir, containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC
\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir,
containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir...}
RollupStatus : 1
SchemaVersion : 1.0.0.0
SeverityID : 4
ThreatID : 213962
ThreatName : BrowserModifier:Win32/IstartSurf!lnk
TypeID : 0
PSComputerName :
========= Ende von Powershell: =========
========= Get-MpThreatDetection =========
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {8602DED0-5D1F-4DF9-ADED-5907B315F568}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir->extensionData/plugins/104.js}
ThreatID : 245677
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {1A00D40E-31AF-4CD7-BB9A-A6079EFE3AE6}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\utils.exe.vir}
ThreatID : 235408
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {30F5B306-2FEE-4500-B17F-AE53982963E5}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {containerfile:_E:\Users\Finn\Downloads\avira_free_antivirus_de_14.0.3.350.exe, file:_
E:\Users\Finn\Downloads\avira_free_antivirus_de_14.0.3.350.exe->(RarSfx)->offercast_av
irav7_.exe}
ThreatID : 227072
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {A8D700A5-91B7-46E7-A149-CC874AF24CEA}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\ver1BlockAndSurf\Uninstall.exe.vir,
containerfile:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\ver3BlockAndSurf\Uninstall.exe.vir,
containerfile:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\ver8BlockAndSurf\Uninstall.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\ver1BlockAndSurf\J6BlockAndSurfR79.exe.vir...}
ThreatID : 213919
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {365C7727-FCFB-472D-8883-E65E6DC34FF8}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Browser
Good\bin\utilBrowserGood.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Browser Good\BrowserGoodbho.dll.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\Browser Good\BrowserGoodUninstall.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Deal
Keeper\bin\0fda9c933a614e7b9de1.dll.vir...}
ThreatID : 235004
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {3879484C-80F8-4ACF-B6C0-DFE250B67794}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\$Recycle.Bin\S-1-5-21-1340611331-2738064446-3359332511-1002\$RU2JXIA.exe,
file:_E:\Users\Finn.Katharina-PC\AppData\Local\Temp\ICReinstall_FileZilla_3.exe}
ThreatID : 213927
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {1B2D0CC8-43EA-4215-B2A5-4C489E8146CE}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Mic
rosoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir, file:_
E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir->[CMDEmbedded]}
ThreatID : 213962
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {ADD7EDAC-522D-4087-BBE3-F0E1089E2EEE}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Mic
rosoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk.vir, c
ontainerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Micro
soft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No
Add-ons).lnk.vir, containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\Ap
pData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk.vir, file:_E
:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk.vir->[CMDEmbedded]...}
ThreatID : 221923
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {F03D37AE-3B34-4488-8039-D47FA4946A93}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchCH.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchFF.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowserAction.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\CmdShell.exe.vir...}
ThreatID : 214126
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {096DC410-2116-4FBB-A3B0-A2E2594F16D2}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver1BlockAndSurf\186.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\190.dll.vir}
ThreatID : 195750
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {48490ACB-B209-4E4F-B8B7-0D387CE8F392}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\PriucaeeLesS\OycmtH3ieLMvJu.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\PriucaeeLesS\OycmtH3ieLMvJu.x64.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\YoiuTubeAiDBLLocke\wh6J3OY8kDSwua.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\YoiuTubeAiDBLLocke\wh6J3OY8kDSwua.x64.dll.vir}
ThreatID : 213571
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {7E255360-ACAD-45AB-803D-2395BD6956AB}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Mic
rosoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk.vir, c
ontainerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Micro
soft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No
Add-ons).lnk.vir, containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\Ap
pData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk.vir, file:_E
:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk.vir->[CMDEmbedded]...}
ThreatID : 221923
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : False
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {10CB3480-BD55-43B8-9F8C-459A2BE55D6D}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 18.04.2020 13:11:22
LastThreatStatusChangeTime : 18.04.2020 13:18:50
ProcessName : Unknown
RemediationTime : 18.04.2020 13:18:50
Resources : {containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
file:_D:\Users\fkrap\Desktop\tmuf-dtn.iso->DETONATiON\keygen-tmuf-dtn.exe}
ThreatID : 2147726780
ThreatStatusErrorCode : -2147024673
ThreatStatusID : 103
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {51F48189-2534-4EE6-9D4A-D3599143940F}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir->extensionData/plugins/104.js}
ThreatID : 245677
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {8651F524-3C23-4AB9-8F23-3D8BA12DBA41}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\Users\Finn.Katharina-PC\AppData\Local\Temp\DMR\dmr_72.exe,
file:_E:\Users\Finn.Katharina-PC\Downloads\Microsoft Security Essentials -
CHIP-Installer.exe, file:_E:\Users\Finn.Katharina-PC\Downloads\Opera -
CHIP-Installer.exe, file:_E:\Users\Katharina\AppData\Local\Temp\OCS\ocs_v71a.exe}
ThreatID : 225064
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {162A4D1D-4A77-4624-AEE7-32B4E6E65EA0}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\PriucaeeLesS\OycmtH3ieLMvJu.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\PriucaeeLesS\OycmtH3ieLMvJu.x64.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\YoiuTubeAiDBLLocke\wh6J3OY8kDSwua.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\YoiuTubeAiDBLLocke\wh6J3OY8kDSwua.x64.dll.vir}
ThreatID : 213571
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {808DD2FF-BDB7-404B-AC45-0AC27EAA1DC5}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Mic
rosoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk.vir, c
ontainerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Micro
soft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No
Add-ons).lnk.vir, containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\Ap
pData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk.vir, file:_E
:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk.vir->[CMDEmbedded]...}
ThreatID : 221923
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : False
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {896E237F-9700-4B98-BCA4-691C2EA872C8}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 13:11:16
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
file:_D:\Users\fkrap\Desktop\tmuf-dtn.iso->DETONATiON\keygen-tmuf-dtn.exe}
ThreatID : 2147726780
ThreatStatusErrorCode : -2147024673
ThreatStatusID : 104
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {2277C3AD-337D-4B2F-9808-4B989DE3050E}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\utils.exe.vir}
ThreatID : 235408
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {37FF6AD6-4693-4ACF-915F-E1642B156511}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir}
ThreatID : 242420
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {4C2CBC18-91B5-4589-BF7C-736C4476F7BD}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Windows\System32\drivers\cherimoya.sys.vir}
ThreatID : 226947
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 1
CurrentThreatExecutionStatusID : 0
DetectionID : {67716B12-05D3-499F-B850-CC8C8565F235}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:41:40
ProcessName : Unknown
RemediationTime : 19.04.2020 12:41:40
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Mic
rosoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir, file:_
E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir->[CMDEmbedded]}
ThreatID : 213962
ThreatStatusErrorCode : 0
ThreatStatusID : 2
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {E9CDA616-DC48-4D02-A6D5-9EAE6F80570F}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\AnyProtectEx\Uninstall.exe.vir,
file:_E:\Users\Finn.Katharina-PC\AppData\Local\nsjEF4B.tmp}
ThreatID : 227148
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {F46CE6D1-E894-4139-BB81-507B090EFE7F}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:45
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver1BlockAndSurf\186.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\190.dll.vir}
ThreatID : 195750
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {466A6E75-C3A4-45EB-A12D-15FEA6284664}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {file:_E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}\1.9.3.1\lece.dll}
ThreatID : 224074
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {78440FB7-3B90-43FD-890D-F0628F94C16F}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Browser
Good\bin\utilBrowserGood.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Browser Good\BrowserGoodbho.dll.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\Browser Good\BrowserGoodUninstall.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Deal
Keeper\bin\0fda9c933a614e7b9de1.dll.vir...}
ThreatID : 235004
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {212468EA-39C7-4FD6-99D5-6EA68363549D}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\Users\Finn.Katharina-PC\Downloads\wlsetup-all_CB-DL-Manager.exe}
ThreatID : 223795
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {2CD3B508-F7CB-4E44-834E-A2F230151742}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {file:_E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}\1.9.3.1\lece.dll}
ThreatID : 224074
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : False
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {4B612F91-D662-49EB-BE86-1FC6B59D5BCD}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
file:_D:\Users\fkrap\Desktop\tmuf-dtn.iso->DETONATiON\keygen-tmuf-dtn.exe}
ThreatID : 2147726780
ThreatStatusErrorCode : -2147024673
ThreatStatusID : 103
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {7220D651-F4A1-40EB-AA83-83B878A0C990}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\ProgramData\ZombieNews\Uninstall.exe.vir,
file:_E:\ProgramData\aLhTGOXHapr\dat\nBIrBarki.dll}
ThreatID : 226949
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {83FA08BE-07EE-4D7A-A7AF-3501CEDB241A}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\WaInterEnhance\WaInterEnhance
Internet Enhancer\InternetEnhancer.exe.vir}
ThreatID : 233287
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {A7550A42-D7E0-49DE-8E17-6D67F759B7A8}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\supporter\Supporter.dll.vir}
ThreatID : 213936
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {36DB5C5F-AF58-4D42-84D8-E5DA86567352}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\globalUpdate\Update\GoogleUpdate.exe.vir}
ThreatID : 223696
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {74A8284C-517D-47A5-97C6-263E818B2ECE}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:58
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver1BlockAndSurf\186.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\ver3BlockAndSurf\190.dll.vir}
ThreatID : 195750
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {F22B41DA-D868-4400-85B1-9947EC677A19}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\WaInterEnhance\WaInterEnhance
Internet Enhancer\InternetEnhancer.exe.vir}
ThreatID : 233287
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {A1F30A38-BF11-4F9D-AF47-17BBDA48D6E1}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\WaInterEnhance\WaInterEnhance
Internet Enhancer\InternetEnhancer.exe.vir}
ThreatID : 233287
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {CC215F92-6D0D-4563-91DA-979426AAFC3E}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Mic
rosoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir, file:_
E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir->[CMDEmbedded]}
ThreatID : 213962
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {1FC765E6-256C-400E-B3D2-F6DF11223EE1}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\csrcc.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\garrus.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\grunt.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files\shopperz\kasumi32.dll.vir...}
ThreatID : 226948
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {636FD264-FDE1-4CAB-B383-DFA7E4D06035}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Browser
Good\bin\utilBrowserGood.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Browser Good\BrowserGoodbho.dll.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\Browser Good\BrowserGoodUninstall.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Deal
Keeper\bin\0fda9c933a614e7b9de1.dll.vir...}
ThreatID : 235004
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {CC4D902D-5939-43CD-91B3-DF26A0335ACF}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\Users\Finn.Katharina-PC\AppData\Local\Temp\F4FYlEJf.exe.part}
ThreatID : 226933
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {CD6B1768-9E8F-47C2-A77F-E6FA69400A6F}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {file:_E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}\1.9.3.1\lece.dll}
ThreatID : 224074
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {0FCFCACA-B7CF-45C7-B914-0A02E3E5DECF}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Boost\64Boost.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Boost\Boost.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Boost\Boost.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Boost\Boosti.dll.vir...}
ThreatID : 224324
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {652CF1AA-2B69-42E3-8508-1315911975B6}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183-4.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183-5.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\Uninstall.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\Weather It
Up-bg.exe.vir...}
ThreatID : 213930
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {6F478B86-8E9E-4511-93F2-7A427F5CFAFB}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchCH.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchFF.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowserAction.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\CmdShell.exe.vir...}
ThreatID : 214126
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {F15674F4-AEEC-4566-82E3-6E1E900881F5}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:58
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {containerfile:_E:\Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe, file:_E:\
Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe->(nsis-6-$(PLUGINSDIR)\g.dll)
}
ThreatID : 213919
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {0099F4CC-9C57-4402-A648-B39E472C310E}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:39
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {containerfile:_E:\Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe,
file:_E:\ProgramData\{8f9f2fec-619d-08cb-8f9f-f2fec619bfb1}\superpc_soft_partner.exe,
file:_E:\Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe->(nsis-6-$(PLUGINSDI
R)\g.dll)}
ThreatID : 2147723143
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {483FD1B1-938B-43BD-806B-979763504E76}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchCH.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowerWatchFF.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\BrowserAction.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\miuitab\CmdShell.exe.vir...}
ThreatID : 214126
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : False
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {4B1F989E-57D3-49B4-AC03-A53876CA0875}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 18:36:02
LastThreatStatusChangeTime : 19.04.2020 18:42:53
ProcessName : Unknown
RemediationTime : 19.04.2020 18:42:53
Resources : {containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
file:_D:\Users\fkrap\Desktop\tmuf-dtn.iso->DETONATiON\keygen-tmuf-dtn.exe}
ThreatID : 2147726780
ThreatStatusErrorCode : -2147024673
ThreatStatusID : 104
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {4FF6CE78-0F0C-4408-A44F-98678699EE57}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\SearchProtect\Main\bin\SPtool.dll.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\SearchProtect\Main\bin\uninstall.pun.vir...}
ThreatID : 227075
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {8013AF44-068F-4475-B28C-B1CC1B82B0D0}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Super
Optimizer\SuperOptimizer.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Super Optimizer\SupOptGuard.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\Super Optimizer\SupOptLauncher.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Super
Optimizer\SupOptReminder.exe.vir...}
ThreatID : 226797
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 2
CurrentThreatExecutionStatusID : 0
DetectionID : {203F14CD-9A06-420B-969D-02054080A50F}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:38:49
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\PriucaeeLesS\OycmtH3ieLMvJu.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program
Files (x86)\PriucaeeLesS\OycmtH3ieLMvJu.x64.dll.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\YoiuTubeAiDBLLocke\wh6J3OY8kDSwua.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\YoiuTubeAiDBLLocke\wh6J3OY8kDSwua.x64.dll.vir}
ThreatID : 213571
ThreatStatusErrorCode : 0
ThreatStatusID : 3
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 1
CurrentThreatExecutionStatusID : 0
DetectionID : {648E3E83-89D2-4004-978B-0E56C38C6F30}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 12:41:23
LastThreatStatusChangeTime : 19.04.2020 12:50:08
ProcessName : Unknown
RemediationTime : 19.04.2020 12:50:08
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Mic
rosoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir, file:_
E:\AdwCleaner\Quarantine\C\Users\Finn.Katharina-PC\AppData\Roaming\Microsoft\Internet
Explorer\Quick Launch\Launch Internet Explorer Browser.lnk.vir->[CMDEmbedded]}
ThreatID : 213962
ThreatStatusErrorCode : -2142207965
ThreatStatusID : 2
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {FEA8B135-6A6D-482A-AC90-698666462195}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It Up\utils.exe.vir}
ThreatID : 235408
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {82383FA0-9C59-4F32-8172-82CFBBD7EF4A}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:45
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {containerfile:_E:\Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe, file:_E:\
Users\Finn\AppData\Local\Temp\2222-2063_BlockAndSurf.exe->(nsis-6-$(PLUGINSDIR)\g.dll)
}
ThreatID : 213919
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {F13D5AD2-13F6-4775-A2C8-DD643B32E8BE}
DetectionSourceTypeID : 2
DomainUser : NT-AUTORITÄT\SYSTEM
InitialDetectionTime : 19.04.2020 09:06:35
LastThreatStatusChangeTime : 19.04.2020 12:22:36
ProcessName : Unknown
RemediationTime : 19.04.2020 12:22:36
Resources : {containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
file:_D:\Users\fkrap\Desktop\tmuf-dtn.iso->DETONATiON\keygen-tmuf-dtn.exe}
ThreatID : 2147726780
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {09C4D2ED-1FFE-4EE3-A93A-63CE79078747}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro
3.64\OptimizerPro.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Optimizer Pro 3.64\OptProGuard.exe.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro
3.64\OptProLauncher.exe.vir, file:_E:\AdwCleaner\Quarantine\C\Program Files
(x86)\Optimizer Pro 3.64\OptProMon.dll.vir...}
ThreatID : 227235
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {196D479F-9B12-4A3E-903C-61A89FB5E998}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 18:17:35
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {containerfile:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir,
file:_E:\AdwCleaner\Quarantine\C\Program Files (x86)\Weather It
Up\063ddb21-0f22-4f6d-bcaa-db4770280183.xpi.vir->extensionData/plugins/104.js}
ThreatID : 245677
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 9
CurrentThreatExecutionStatusID : 0
DetectionID : {6153F04C-9E8E-4521-8FF1-47DD640879E9}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 18.04.2020 13:26:16
LastThreatStatusChangeTime : 19.04.2020 12:21:57
ProcessName : Unknown
RemediationTime : 19.04.2020 12:21:57
Resources : {containerfile:_D:\Users\fkrap\Desktop\tmuf-dtn.iso,
containerfile:_D:\Users\fkrap\Downloads\tmuf-dtn.iso,
file:_D:\Users\fkrap\Desktop\tmuf-dtn.iso->DETONATiON\keygen-tmuf-dtn.exe,
file:_D:\Users\fkrap\Downloads\tmuf-dtn.iso->DETONATiON\keygen-tmuf-dtn.exe}
ThreatID : 2147726780
ThreatStatusErrorCode : 0
ThreatStatusID : 106
PSComputerName :
ActionSuccess : True
AdditionalActionsBitMask : 0
AMProductVersion : 4.18.2003.8
CleaningActionID : 3
CurrentThreatExecutionStatusID : 0
DetectionID : {9518AD47-710A-4C3D-9C48-341372A01015}
DetectionSourceTypeID : 1
DomainUser : LAUCH\fkrap
InitialDetectionTime : 19.04.2020 18:04:29
LastThreatStatusChangeTime : 19.04.2020 18:23:09
ProcessName : Unknown
RemediationTime : 19.04.2020 18:23:09
Resources : {file:_E:\Users\Finn\AppData\Local\Temp\pcspeedup.exe}
ThreatID : 227063
ThreatStatusErrorCode : 0
ThreatStatusID : 4
PSComputerName :
========= Ende von Powershell: =========
==== Ende von Fixlog 22:16:30 ====
|
|
19.04.2020, 21:39
| #19 |
| /// TB-Ausbilder | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Und die nächste "Überraschung"... wieder so eine "Besonderheit" bei dir... ein weiteres Nutzerprofil, dieses mal auf dem Laufwerk E:\, auch noch %Programdata% unter E:\  Auf dem Laufwerk E:\ befindet sich bei dir auch die Quarantäne von AdwCleaner, normal wäre C:\. Daran sind fast alle Funde von Windows Defender... d. h. Windows Defender meckert Funde an, die AdwCleaner bereits in seine Quarantäne verschoben hat, also bedeutungslos.  Keines Update: Das TBCleanUpTool entfernt nun auch Tools unter D:\users\benutzername\desktop\.  Wir entfernen noch die letzten paar Reste, die ich finden kann:
Dann wären wir durch! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Abschließend bitte noch einen Cleanup mit unserem TBCleanUpTool durchführen und unbedingt die Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt: Wenn Du möchtest, kannst Du hier sagen, ob du mit mir und meiner Hilfe zufrieden warst...  Vielleicht möchtest du das Forum mit einer kleinen Spende  unterstützen.  Hinweis: Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
19.04.2020, 21:45
| #20 |
| | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Danke für die schnelle Antwort, ich werde mich leider erst morgen darum kümmern können. Dann schicke ich nochmal die geforderten Sachen. Vll kann man dann noch lösen dass der Windows defender nicht mehr meckert... (vll muss ich dafür erst verstehen was die „Quarantäne“ bedeutet, ist ja irgendwie nicht ganz entfernt, oder?). Sry dass mein PC so „besonders“ ist 😂🙈🙈 sind Festplatten von nem anderen alten pc drin, vll daher die komischen %programmdata% Verzeichnisse. |
|
20.04.2020, 11:21
| #21 |
| /// TB-Ausbilder | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Wenn du den FRST-Fix ausführst und dann das TBCleanUpTool ausführst, sollte das passen. Gib einfach wieder Bescheid, sobald zu Zeit hast... kein Stress. |
|
20.04.2020, 18:56
| #22 |
| | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. So, hier noch der neue Fixlog. Ich probiere jetzt auch mal den clean-up nochmal aus. Praktisch fände ich ja schon, wenn der Windows Defender keine Bedrohungen mehr anzeigt die schon in Quarantäne sind. Vll kannst du mir da helfen? Evtl. das Dateisystem anders strukturieren? Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 19-04-2020
durchgeführt von fkrap (20-04-2020 18:27:29) Run:4
Gestartet von D:\Users\fkrap\Desktop\Virus\FRST
Geladene Profile: fkrap (Verfügbare Profile: defaultuser0 & fkrap & Dad & f1kra)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
HKU\S-1-5-21-2971441624-1949969398-1562293958-1001\Software\Classes\regfile: regedit.exe "%1" <==== ACHTUNG
E:\AdwCleaner
E:\Users\Finn.Katharina-PC\AppData\Local\Temp\*.exe
E:\$Recycle.Bin\S-1-5-21-1340611331-2738064446-3359332511-1002\*.exe
E:\Users\Finn.Katharina-PC\Downloads\*.exe
E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}
E:\Users\Finn.Katharina-PC\AppData\Local\Temp\DMR
E:\Users\Katharina\AppData\Local\Temp\OCS
E:\Users\Finn.Katharina-PC\AppData\Local\Temp\*.exe.part
E:\ProgramData\aLhTGOXHapr
E:\Users\Finn\AppData\Local\Temp\*.exe
E:\Users\Finn\Downloads\*.exe
E:\Users\Finn.Katharina-PC\AppData\Local\*.tmp
E:\ProgramData\{8f9f2fec-619d-08cb-8f9f-f2fec619bfb1}
DeleteQuarantine:
Unlock: C:\FRST
Reboot:
*****************
HKU\S-1-5-21-2971441624-1949969398-1562293958-1001\Software\Classes\regfile => nicht gefunden
"E:\AdwCleaner" Ordner verschieben:
Konnte nicht verschoben werden "E:\AdwCleaner" => ist geplant bei Neustart verschoben zu werden.
=========== "E:\Users\Finn.Katharina-PC\AppData\Local\Temp\*.exe" ==========
nicht gefunden
========= Ende -> "E:\Users\Finn.Katharina-PC\AppData\Local\Temp\*.exe" ========
=========== "E:\$Recycle.Bin\S-1-5-21-1340611331-2738064446-3359332511-1002\*.exe" ==========
nicht gefunden
========= Ende -> "E:\$Recycle.Bin\S-1-5-21-1340611331-2738064446-3359332511-1002\*.exe" ========
=========== "E:\Users\Finn.Katharina-PC\Downloads\*.exe" ==========
nicht gefunden
========= Ende -> "E:\Users\Finn.Katharina-PC\Downloads\*.exe" ========
"E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}" Ordner verschieben:
Konnte nicht verschoben werden "E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7}" => ist geplant bei Neustart verschoben zu werden.
"E:\Users\Finn.Katharina-PC\AppData\Local\Temp\DMR" => nicht gefunden
"E:\Users\Katharina\AppData\Local\Temp\OCS" => nicht gefunden
=========== "E:\Users\Finn.Katharina-PC\AppData\Local\Temp\*.exe.part" ==========
nicht gefunden
========= Ende -> "E:\Users\Finn.Katharina-PC\AppData\Local\Temp\*.exe.part" ========
"E:\ProgramData\aLhTGOXHapr" Ordner verschieben:
Konnte nicht verschoben werden "E:\ProgramData\aLhTGOXHapr" => ist geplant bei Neustart verschoben zu werden.
=========== "E:\Users\Finn\AppData\Local\Temp\*.exe" ==========
E:\Users\Finn\AppData\Local\Temp\1415171178_bandoffer.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\AutoRun.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\mpam-8649b846.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\oi_{4BA1B880-E847-4D26-A540-8C884F3D66B9}.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\PrefJsonCpp.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\ResStub.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\safeguard.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\vcredist9_x86.exe => erfolgreich verschoben
E:\Users\Finn\AppData\Local\Temp\wmfdist.exe => erfolgreich verschoben
========= Ende -> "E:\Users\Finn\AppData\Local\Temp\*.exe" ========
=========== "E:\Users\Finn\Downloads\*.exe" ==========
E:\Users\Finn\Downloads\ChromeStandaloneSetup_34.0.1847.116.exe => erfolgreich verschoben
E:\Users\Finn\Downloads\install_flashplayer15x32_mssa_aaa_aih.exe => erfolgreich verschoben
E:\Users\Finn\Downloads\LGPCSuiteIV_Setup.exe => erfolgreich verschoben
E:\Users\Finn\Downloads\LGPCSuite_Setup(1).exe => erfolgreich verschoben
E:\Users\Finn\Downloads\LGPCSuite_Setup(2).exe => erfolgreich verschoben
E:\Users\Finn\Downloads\LGPCSuite_Setup.exe => erfolgreich verschoben
========= Ende -> "E:\Users\Finn\Downloads\*.exe" ========
=========== "E:\Users\Finn.Katharina-PC\AppData\Local\*.tmp" ==========
nicht gefunden
========= Ende -> "E:\Users\Finn.Katharina-PC\AppData\Local\*.tmp" ========
"E:\ProgramData\{8f9f2fec-619d-08cb-8f9f-f2fec619bfb1}" => nicht gefunden
"C:\FRST\Quarantine" => erfolgreich entfernt
"C:\FRST" => wurde entsperrt
|
|
20.04.2020, 19:53
| #23 | |
| /// TB-Ausbilder | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Also die folgenden Ordner musst du evtl. noch per Hand löschen: E:\ProgramData\aLhTGOXHapr E:\ProgramData\{B7FE5F3D-E77C-8EBB-56FA-FE3986782DB7} E:\AdwCleaner Scheinbar hatte FRST da Zugriffsprobleme auf die Festplatte. Zitat:
Wenn er die Quarantäne anderer Tools scannt und basierend auf seiner Datenbank Schadsoftware findet, wird er anschlagen. Wenn du aber den Ordner E:\AdwCleaner per Hand entfernt hast, sollte das passen. Alles andere sollten wir entfernt haben. Wenn du das TBCleanUpTool ausgeführt hast, sollte so ziemlich alles an Tools weg sein. Gib Bescheid, wenn alles erledigt ist.  |
|
20.04.2020, 20:15
| #24 |
| | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. OK, habe die restlichen Verzeichnise gelöscht. Das Clean-Up Tool hat alles entfernt außer die Emisoft-Anwendung und den RogueKiller. Malwarebytes bleibt wie gehabt da, das soll ja auch so sein. Eine Frage noch, die Trojaner, die in Quarantäne verschoben wurden, können doch eigentlich komplett gelöscht werden oder? Da sollte doch nichts systemrelevantes dabei sein, würde ich jetzt mal denken (verbesser mich wenn ich falsch liege). Dann würde der Windows Defender vll auch nichts mehr anzeigen (Obwohl der anscheinend deaktiviert ist, während Malwarebytes aktiv ist). |
|
20.04.2020, 20:32
| #25 | ||
| /// TB-Ausbilder | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht.Zitat:
Dann poste mir bitte die genauen Pfade, wo sich bei dir EEK und RogueKiller befinden bzw. befunden haben. Dann kann ich mein Tool noch verbessern. Zitat:
Sobald du den Echtzeitschutz von Malwarebytes deaktivierst, sollte sich der Windows Defender selbst aktivieren (oder du machst es unter Einstellungen > Update und Sicherheit > Windows-Sicherheit). |
|
20.04.2020, 21:08
| #26 |
| | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. D:\Users\fkrap\Desktop\Virus\RougeKiller D:\Users\fkrap\Desktop\Virus\Emisoft Das wären die Dateipfade. In den Ordnern befinden sich dann die Anwendungen und logfiles. Windows-Defender konnte ich aktivieren =) Ich werde Malwarebytes ab jetzt ab und zu durchlaufen lassen. Wenn es für dich ok ist würde ich morgen einen letzten kompletten Durchlauf machen und auch die Dateien in Quarantäne löschen. Danach würde ich dir schreiben ob alles geklappt hat und natürlich eine Bewertung dalassen! |
|
21.04.2020, 08:51
| #27 |
| /// TB-Ausbilder | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Ok, danke. Gib Bescheid, wenn alles erledigt ist. |
|
21.04.2020, 13:22
| #28 |
| | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. So Scan ist fertig. Es wurden keine Bedrohungen gefunden!!  Jetzt erstmal ein großes Dankeschön! Du warst sehr freundlich und hast ohne groß zu reden klare, verständliche Anweisungen gegeben. Werde natürlich auch eine Bewertung dalassen. Falls das selbe Problem nochmal auftaucht weiß ich ja wo ich dich finde =) Wenn du willst, teste ich noch das Clean-UP Tool für dich. Schreib einfach wenn du es nochmal angepasst hat. Benötigen tu ich es jetzt selber aber nicht mehr. Damit wäre alles geregelt, du kannst das Thema bei dir rausnehmen. Dann wünsche ich dir noch alles Gute in unserem schönen Freistaat und bis hoffentlich nie wieder XD (du verstehst....) |
|
21.04.2020, 13:58
| #29 |
| /// TB-Ausbilder | Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. Danke für die gute Zusammenarbeit. Ich bin froh, dass wir helfen konnten Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema. Jeder andere bitte hier klicken und ein eigenes Thema erstellen. |
|
| Themen zu Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht. |
| administrator, adobe, adobe flash player, bonjour, browsermodifier, desktop, explorer, flash player, geforce, google, home, installation, internet, monitor, node.js, nvcontainer.exe, nvidia, ordner, programme, prozesse, realtek, registry, router, rundll, sigcheck, software, teamspeak, trojaner, windows, windowsapps |
![Windows 10: Trojaner [Trojan:Win32/Occamy.C] und Browsermodifier aufgetaucht.](iconimages/log-analyse-auswertung/windows-10-trojaner-trojan-win32-occamy-c-browsermodifier-aufgetaucht_ltr.gif)
Lesestoff:
Linear-Darstellung
