Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Spam Meldungen von Edge Benachrichtigung

Spam Meldungen von Edge Benachrichtigung


Plagegeister aller Art und deren Bekämpfung: Spam Meldungen von Edge Benachrichtigung

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 19.06.2023, 20:05   #1
Celteron
 
Spam Meldungen von Edge Benachrichtigung - Standard

Spam Meldungen von Edge Benachrichtigung


Guten Tag Trojaner Board,

seit heute kriege ich Benachrichtigungen vom Edge Browser über potentielle Bedrohungen und Werbung für Avira.
Ich habe im Edge Browser zunächst die Berechtigungen und Zugänge blockiert - es handelt sich um "yourstend.auzrewebsite". Danach kamen keine weiteren Benachrichtigungen ein, nun bin trotzdem unsicher ob sich noch weitere Bedrohungen auf meinem Laptop befinden und dieser nach Möglichkeit korrumpiert ist.
Vielleicht kann mir jemand von euch netterweise helfen, ich wäre sehr dankbar !
Für weitere Fragen oder Rückmeldungen bin ich jederzeit zur Verfügung.

Habe bereits AdwCleaner und RK drüber laufen lassen. Danach FRST. Die folgenden Logs sind weiter unten zu finden.

Mit freundlichen Grüßen
Celteron

AdwCleaner C00
Code:
ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build:    08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    06-19-2023
# Duration: 00:00:08
# OS:       Windows 10 (Build 19045.3086)
# Cleaned:  45
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files (x86)\Chip Digital GmbH
Deleted       C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted       C:\Users\Chantal\AppData\Local\DOWNLOADED INSTALLATIONS\{31AD8258-894C-48D5-8149-C47506092754}
Deleted       C:\Users\Chantal\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG
Deleted       C:\Users\Chantal\AppData\Roaming\DESKTOPICONAMAZON
Deleted       C:\Windows\Installer\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}

***** [ Files ] *****

Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Lavasoft\Web Companion
Deleted       HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted       HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\chip 1-click download service
Deleted       HKLM\Software\Classes\Installer\Features\DE9429122159FCC49A4DB945A3930DF7
Deleted       HKLM\Software\Classes\Installer\Features\E49AC3054380EEC4DA29AB71FAE408A9
Deleted       HKLM\Software\Classes\Installer\Products\DE9429122159FCC49A4DB945A3930DF7
Deleted       HKLM\Software\Classes\Installer\Products\E49AC3054380EEC4DA29AB71FAE408A9
Deleted       HKLM\Software\Classes\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E61B1AB66C44604797AC56F6BC3B0FF
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37A47D4566095BF44A2CA19FBDFA04A9
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B90A3D3F68EADC47B40D2D572B76E62
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\638EEBF8065E4B845AD5CAB77949D6CC
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\884DF2290FDFBE9408D20E763774932B
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F60B79E6444F2DE4EAC868B34B7EDADA
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FE90F95E2F75E9143B28CD4FD9C91A78
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DE9429122159FCC49A4DB945A3930DF7
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E49AC3054380EEC4DA29AB71FAE408A9
Deleted       HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{462d44f7-0f0f-45ff-b857-f52f2906e7e5}|DisplayIcon
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{462d44f7-0f0f-45ff-b857-f52f2906e7e5}|DisplayName
Deleted       HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{462d44f7-0f0f-45ff-b857-f52f2906e7e5}|UninstallString
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{219249ED-9512-4CCF-A9D4-9B543A39D07F}
Deleted       HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}
Deleted       HKLM\System\Setup\FirstBoot\Services\WCAssistantService
Deleted       HKLM\System\Setup\FirstBoot\Services\chip1click
Deleted       HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted       HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\azlyrics.com
Deleted       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\search.azlyrics.com
Deleted       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.azlyrics.com
Deleted       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\azlyrics.com
Deleted       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\search.azlyrics.com
Deleted       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.azlyrics.com
Deleted       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [43556 octets] - [19/06/2023 20:18:58]
AdwCleaner[S00].txt - [11707 octets] - [19/06/2023 20:20:32]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
AdwCleaner S00
Code:
ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build:    08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    06-19-2023
# Duration: 00:01:31
# OS:       Windows 10 (Build 19045.3086)
# Scanned:  32101
# Detected: 77


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Chip               C:\Program Files (x86)\Chip Digital GmbH
PUP.Optional.Chip               C:\Users\Chantal\AppData\Local\DOWNLOADED INSTALLATIONS\{31AD8258-894C-48D5-8149-C47506092754}
PUP.Optional.Chip               C:\Windows\Installer\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}
PUP.Optional.Legacy             C:\Users\Chantal\AppData\Roaming\DESKTOPICONAMAZON
PUP.Optional.WebCompanion       C:\ProgramData\Application Data\Lavasoft\Web Companion
PUP.Optional.WebCompanion       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
PUP.Optional.WebCompanion       C:\Users\Chantal\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG

***** [ Files ] *****

PUP.Optional.Booking            C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Adware.Heuristic            HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{462d44f7-0f0f-45ff-b857-f52f2906e7e5}|DisplayIcon
PUP.Adware.Heuristic            HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{462d44f7-0f0f-45ff-b857-f52f2906e7e5}|DisplayName
PUP.Adware.Heuristic            HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{462d44f7-0f0f-45ff-b857-f52f2906e7e5}|UninstallString
PUP.Optional.Chip               HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\chip 1-click download service
PUP.Optional.Chip               HKLM\Software\Classes\Installer\Features\E49AC3054380EEC4DA29AB71FAE408A9
PUP.Optional.Chip               HKLM\Software\Classes\Installer\Products\E49AC3054380EEC4DA29AB71FAE408A9
PUP.Optional.Chip               HKLM\Software\Classes\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E61B1AB66C44604797AC56F6BC3B0FF
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37A47D4566095BF44A2CA19FBDFA04A9
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B90A3D3F68EADC47B40D2D572B76E62
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\638EEBF8065E4B845AD5CAB77949D6CC
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\884DF2290FDFBE9408D20E763774932B
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F60B79E6444F2DE4EAC868B34B7EDADA
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FE90F95E2F75E9143B28CD4FD9C91A78
PUP.Optional.Chip               HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E49AC3054380EEC4DA29AB71FAE408A9
PUP.Optional.Chip               HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}
PUP.Optional.Chip               HKLM\System\Setup\FirstBoot\Services\chip1click
PUP.Optional.Conduit            HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.Conduit            HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
PUP.Optional.Legacy             HKLM\System\Setup\FirstBoot\Services\WCAssistantService
PUP.Optional.Legacy             HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\azlyrics.com
PUP.Optional.Legacy             HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\search.azlyrics.com
PUP.Optional.Legacy             HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.azlyrics.com
PUP.Optional.Legacy             HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\azlyrics.com
PUP.Optional.Legacy             HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\search.azlyrics.com
PUP.Optional.Legacy             HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.azlyrics.com
PUP.Optional.Vondos             HKLM\Software\Classes\Installer\Features\DE9429122159FCC49A4DB945A3930DF7
PUP.Optional.Vondos             HKLM\Software\Classes\Installer\Products\DE9429122159FCC49A4DB945A3930DF7
PUP.Optional.Vondos             HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DE9429122159FCC49A4DB945A3930DF7
PUP.Optional.Vondos             HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{219249ED-9512-4CCF-A9D4-9B543A39D07F}
PUP.Optional.WebCompanion       HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion       HKLM\Software\Wow6432Node\Lavasoft\Web Companion
PUP.Optional.WebCompanion       HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion       HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion       HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.HPRegistrationService   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP REGISTRATION SERVICE 
Preinstalled.HPRegistrationService   Folder   C:\ProgramData\HEWLETT-PACKARD\HP REGISTRATION SERVICE 
Preinstalled.HPRegistrationService   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D1E8F2D7-7794-4245-B286-87ED86C1893C} 
Preinstalled.HPSupportAssistant   Folder   C:\HP\SUPPORT 
Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK 
Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Folder   C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS 
Preinstalled.HPSupportAssistant   Folder   C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Folder   C:\Users\Chantal\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Folder   C:\Users\Chantal\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK 
Preinstalled.HPSupportAssistant   Registry   HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} 
Preinstalled.HPSupportAssistant   Registry   HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{335F9A62-FE4B-40CD-B4ED-BB4DE21DC95D} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{C0ABBA07-B636-47B8-B9E1-BB96D7CD4831} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} 
Preinstalled.HPSupportAssistant   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{E959FD01-BD01-4CC4-9BB8-4EBE8309BF37} 
Preinstalled.HPSupportAssistant   Registry   HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} 
Preinstalled.HPSupportAssistant   Registry   HKU\S-1-5-21-827383328-2660241748-3898587492-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} 
Preinstalled.HPWelcome   File   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Welcome.lnk 
Preinstalled.HPWelcome   Folder   C:\Program Files\HP\HP WELCOME 
Preinstalled.HPWelcome   Folder   C:\ProgramData\HP\HP WELCOME 
Preinstalled.HPWelcome   Folder   C:\Users\Chantal\AppData\Local\HP\HP WELCOME 
Preinstalled.HPWelcome   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\HPWelcome 
Preinstalled.SamsungSmartSwitch   File   C:\Users\Chantal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Smart Switch.lnk 
Preinstalled.SamsungSmartSwitch   Folder   C:\Program Files (x86)\SAMSUNG\SMART SWITCH PC 
Preinstalled.SamsungSmartSwitch   Folder   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAMSUNG\SMART SWITCH PC 
Preinstalled.SamsungSmartSwitch   Folder   C:\Users\Chantal\AppData\Roaming\SAMSUNG\SMART SWITCH PC 
Preinstalled.SamsungSmartSwitch   Folder   C:\Users\Internet\AppData\Roaming\SAMSUNG\SMART SWITCH PC 
Preinstalled.SamsungSmartSwitch   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7} 
Preinstalled.SamsungSmartSwitch   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7} 


AdwCleaner_Debug.log - [17542 octets] - [19/06/2023 20:18:58]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
RK
Code:
ATTFilter
Program            : RogueKiller Anti-Malware
Version            : 15.10.0.0
x64                : Yes
Program Date       : May 24 2023
Location           : C:\Users\Internet\Desktop\RogueKiller_portable64.exe
Premium            : No
Company            : Adlice Software
Website            : https://www.adlice.com/
Contact            : https://adlice.com/contact/
Website            : https://adlice.com/download/roguekiller/
Operating System   : Windows 10 (10.0.19045) 64-bit
64-bit OS          : Yes
Startup            : 0
WindowsPE          : No
User               : Chantal
User is Admin      : Yes
Date               : 2023/06/19 18:15:06
Type               : Removal
Aborted            : No
Scan Mode          : Standard
Duration           : 3272
Found items        : 15
Total scanned      : 82889
Signatures Version : 20230619_080829
Truesight Driver   : Yes
Updates Count      : 8

************************* Warnings *************************

************************* Removal *************************
[PUP.ChipDe (Potenziell bösartig)] chip 1-click installer.exe -- %programfiles(x86)%\Chip Digital GmbH\chip1click\chip 1-click installer.exe -> Beendet [Tree]
  [+] scan_what       : 1
  [+] vendors         : PUP.ChipDe
  [+] Name            : chip 1-click installer.exe
  [+] value           : %programfiles(x86)%\Chip Digital GmbH\chip1click\chip 1-click installer.exe
  [+] Type            : Process
  [+] file_hash       : 1B94AAA71618D4ECBA665130AE54EF38B17794157123675B24641DC85A379426
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 0
  [+] status          : 3
  [+] status_str      : Beendet [Tree]
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.WebCompanion|PUP.BundleInstaller (Potenziell bösartig)] Lavasoft.WCAssistant.WinService.exe [LAVASOFT SOFTWARE CANADA INC] -- %programfiles(x86)%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe -> Beendet [Tree]
  [+] scan_what       : 1
  [+] vendors         : PUP.WebCompanion|PUP.BundleInstaller
  [+] Name            : Lavasoft.WCAssistant.WinService.exe [LAVASOFT SOFTWARE CANADA INC]
  [+] value           : %programfiles(x86)%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
  [+] Type            : Process
  [+] file_hash       : A134B8CECAD3F5B245FF53FD17801CD10EC18CE97B0C1262C197B078925B543D
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 1
  [+] status          : 3
  [+] status_str      : Beendet [Tree]
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.ChipDe (Potenziell bösartig)] chip1click -- %programfiles(x86)%\Chip Digital GmbH\chip1click\chip 1-click installer.exe -> Gestoppt
  [+] scan_what       : 0
  [+] vendors         : PUP.ChipDe
  [+] Name            : chip1click
  [+] value           : %programfiles(x86)%\Chip Digital GmbH\chip1click\chip 1-click installer.exe
  [+] Type            : Service
  [+] file_hash       : 1B94AAA71618D4ECBA665130AE54EF38B17794157123675B24641DC85A379426
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 2
  [+] status          : 3
  [+] status_str      : Gestoppt
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.Gen0 (Potenziell bösartig)] WCAssistantService [LAVASOFT SOFTWARE CANADA INC] -- %programfiles(x86)%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe -> ERROR [6D]
  [+] scan_what       : 0
  [+] vendors         : PUP.Gen0
  [+] Name            : WCAssistantService [LAVASOFT SOFTWARE CANADA INC]
  [+] value           : %programfiles(x86)%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
  [+] Type            : Service
  [+] file_hash       : A134B8CECAD3F5B245FF53FD17801CD10EC18CE97B0C1262C197B078925B543D
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 3
  [+] status          : 4
  [+] status_str      : ERROR [6D]
  [+] removed         : No
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.Gen1 (Potenziell bösartig)] HKEY_USERS\.DEFAULT\Software\OCS --  -> Gelöscht
  [+] scan_what       : 2
  [+] vendors         : PUP.Gen1
  [+] Name            : HKEY_USERS\.DEFAULT\Software\OCS
  [+] Type            : Registry
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 4
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.Gen1 (Potenziell bösartig)] HKEY_USERS\S-1-5-21-827383328-2660241748-3898587492-1001\Software\OCS --  -> Gelöscht
  [+] scan_what       : 2
  [+] vendors         : PUP.Gen1
  [+] Name            : HKEY_USERS\S-1-5-21-827383328-2660241748-3898587492-1001\Software\OCS
  [+] Type            : Registry
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 5
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.Gen1 (Potenziell bösartig)] HKEY_USERS\S-1-5-18\Software\OCS --  -> Gelöscht
  [+] scan_what       : 2
  [+] vendors         : PUP.Gen1
  [+] Name            : HKEY_USERS\S-1-5-18\Software\OCS
  [+] Type            : Registry
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 6
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.WebCompanion|PUP.BundleInstaller (Potenziell bösartig)] HKEY_USERS\S-1-5-21-827383328-2660241748-3898587492-1001\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion -- [%programfiles(x86)%\Lavasoft\Web Companion\Application\WebCompanion.exe] -> Gelöscht
  [+] scan_what       : 1
  [+] vendors         : PUP.WebCompanion|PUP.BundleInstaller
  [+] Name            : HKEY_USERS\S-1-5-21-827383328-2660241748-3898587492-1001\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
  [+] value           : [%programfiles(x86)%\Lavasoft\Web Companion\Application\WebCompanion.exe]
  [+] Type            : Registry
  [+] file_hash       : C15BD6A976AD5929B356F283777F4915390DE6A59F58D859ADA5F60139B867B4
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 7
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.ChipDe (Potenziell bösartig)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\chip1click -- [%programfiles(x86)%\Chip Digital GmbH\chip1click\chip 1-click installer.exe] -> Gelöscht
  [+] scan_what       : 2
  [+] vendors         : PUP.ChipDe
  [+] Name            : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\chip1click
  [+] value           : [%programfiles(x86)%\Chip Digital GmbH\chip1click\chip 1-click installer.exe]
  [+] Type            : Registry
  [+] file_hash       : 1B94AAA71618D4ECBA665130AE54EF38B17794157123675B24641DC85A379426
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 8
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.Gen0 (Potenziell bösartig)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\WCAssistantService -- [%programfiles(x86)%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe] -> Gelöscht
  [+] scan_what       : 2
  [+] vendors         : PUP.Gen0
  [+] Name            : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\WCAssistantService
  [+] value           : [%programfiles(x86)%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe]
  [+] Type            : Registry
  [+] file_hash       : A134B8CECAD3F5B245FF53FD17801CD10EC18CE97B0C1262C197B078925B543D
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 9
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.WebCompanion|PUP.BundleInstaller (Potenziell bösartig)] Web Companion -- %APPDATA%\Lavasoft\Web Companion -> Gelöscht
  [+] scan_what       : 1
  [+] vendors         : PUP.WebCompanion|PUP.BundleInstaller
  [+] Name            : Web Companion
  [+] value           : %APPDATA%\Lavasoft\Web Companion
  [+] Type            : File/Folder
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 10
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.BundleInstaller (Potenziell bösartig)] Web Companion -- %programdata%\Lavasoft\Web Companion -> Gelöscht
  [+] scan_what       : 1
  [+] vendors         : PUP.BundleInstaller
  [+] Name            : Web Companion
  [+] value           : %programdata%\Lavasoft\Web Companion
  [+] Type            : File/Folder
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 11
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.ChipDe (Potenziell bösartig)] chip1click -- %programfiles(x86)%\Chip Digital GmbH\chip1click -> Gelöscht
  [+] scan_what       : 1
  [+] vendors         : PUP.ChipDe
  [+] Name            : chip1click
  [+] value           : %programfiles(x86)%\Chip Digital GmbH\chip1click
  [+] Type            : File/Folder
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 12
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[PUP.WebCompanion|PUP.BundleInstaller (Potenziell bösartig)] Web Companion -- %programfiles(x86)%\Lavasoft\Web Companion -> Gelöscht
  [+] scan_what       : 1
  [+] vendors         : PUP.WebCompanion|PUP.BundleInstaller
  [+] Name            : Web Companion
  [+] value           : %programfiles(x86)%\Lavasoft\Web Companion
  [+] Type            : File/Folder
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 3
  [+] id              : 13
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

[Adw.DownloadSponsor (Bösartig)] Calibre 32 Bit - CHIP-Installer.exe -- %SystemDrive%\Users\Internet\Downloads\Calibre 32 Bit - CHIP-Installer.exe -> Gelöscht
  [+] scan_what       : 1
  [+] vendors         : Adw.DownloadSponsor
  [+] Name            : Calibre 32 Bit - CHIP-Installer.exe
  [+] value           : %SystemDrive%\Users\Internet\Downloads\Calibre 32 Bit - CHIP-Installer.exe
  [+] Type            : File/Folder
  [+] file_hash       : B06D22658615DD7885AAAEACE4CE3F8BC1D8B0D0229A003EDDBE0C98CE4949AB
  [+] file_vtscore    : 0
  [+] file_vttotal    : 0
  [+] is_malicious    : Yes
  [+] detection_level : 2
  [+] id              : 14
  [+] status          : 3
  [+] status_str      : Gelöscht
  [+] removed         : Yes
  [+] status_choice   : 2
  [+] malpe_score     : 0

 

Themen zu Spam Meldungen von Edge Benachrichtigung
benachrichtigungen, blockiert, browser, detected, dll, error, explorer, failed, firefox, frage, helper, internet, internet explorer, laptop, malwarebytes, microsoft, registry, service.exe, software, spam, system, trojaner, trojaner board, werbung, windows, wmi


« Virus oder Trojaner eingefangen | Zur Sicherheit - beim Abbestellen eines unerwünschten Newsletters etwas eingefangen? »


Ähnliche Themen: Spam Meldungen von Edge Benachrichtigung


  1. Murofetweekly Virus, E-Mail Benachrichtigung durch Internetanbieter
    Log-Analyse und Auswertung - 06.11.2020 (16)
  2. Win10 - Spybot SnD deinstalliert, dennoch Benachrichtigung
    Alles rund um Windows - 18.09.2020 (13)
  3. spam - responsible for the spam process of spam follicles.
    Mülltonne - 11.11.2019 (0)
  4. Trojaner-Board Mail-Benachrichtigung führt auf russische Seie
    Alles rund um Mac OSX & Linux - 26.08.2019 (4)
  5. Google Chrome Benachrichtigung - vom Administrator erzwungen ?
    Log-Analyse und Auswertung - 13.04.2018 (31)
  6. AVG Antivirus Free- Wo ist der Scanbericht/Benachrichtigung/Archivierung?
    Antiviren-, Firewall- und andere Schutzprogramme - 21.10.2016 (11)
  7. Ungewünschte Spam-Fenster öffnen sich in Microsoft Edge
    Plagegeister aller Art und deren Bekämpfung - 09.10.2016 (8)
  8. Am 11.03.2015 Link in angeblicher Benachrichtigung von UPS angeklickt
    Plagegeister aller Art und deren Bekämpfung - 30.03.2015 (20)
  9. DHL Benachrichtigung geöffnet
    Log-Analyse und Auswertung - 09.03.2015 (20)
  10. Spy.Web.H auf Win 7 64 bit nach öffnen von Deutsche Post Benachrichtigung
    Plagegeister aller Art und deren Bekämpfung - 28.09.2011 (7)
  11. Online-Banking gehackt ? Benachrichtigung von der Bank
    Plagegeister aller Art und deren Bekämpfung - 29.01.2011 (6)
  12. Benachrichtigung über Mailversandbeschränkung der Telekom
    Log-Analyse und Auswertung - 06.08.2009 (30)
  13. WM-Ticket Benachrichtigung
    Plagegeister aller Art und deren Bekämpfung - 04.05.2005 (17)
  14. Benachrichtigung bei Antwort auf fremde Themen
    Lob, Kritik und Wünsche - 28.02.2003 (7)
  15. sms-Benachrichtigung bei E-mail-eingang
    Netzwerk und Hardware - 15.02.2003 (11)
  16. Outlook - Benachrichtigung bei Geburtstagen
    Alles rund um Windows - 24.01.2003 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Spam Meldungen von Edge Benachrichtigung - Guten Tag Trojaner Board, seit heute kriege ich Benachrichtigungen vom Edge Browser über potentielle Bedrohungen und Werbung für Avira. Ich habe im Edge Browser zunächst die Berechtigungen und Zugänge blockiert - Spam Meldungen von Edge Benachrichtigung...
Archiv
Du betrachtest: Spam Meldungen von Edge Benachrichtigung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132