# ------------------------------- # Malwarebytes AdwCleaner 8.4.2.0 # ------------------------------- # Build: 03-04-2024 # Database: 2024-03-04.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 05-23-2024 # Duration: 00:00:08 # OS: Windows 11 (Build 22631.3593) # Scanned: 32097 # Detected: 48 ***** [ Services ] ***** PUP.Optional.Legacy WCAssistantService ***** [ Folders ] ***** PUP.Optional.Fake.OpenOfficeUpdater C:\Users\jmkle\AppData\Roaming\OpenOffice Updater PUP.Optional.StartFenster C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startfenster PUP.Optional.StartFenster C:\Users\jmkle\AppData\Local\Startfenster PUP.Optional.StartFenster C:\Users\jmkle\AppData\Roaming\GIMP Updater PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion PUP.Optional.WebCompanion C:\ProgramData\Lavasoft\Web Companion PUP.Optional.WebCompanion C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion ***** [ Files ] ***** PUP.Optional.StartFenster.ShrtCln C:\ProgramData\Microsoft\Windows\Start Menu\Startfenster.lnk PUP.Optional.StartFenster.ShrtCln C:\Users\jmkle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Startfenster.lnk PUP.Optional.StartFenster.ShrtCln C:\Users\jmkle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Startfenster.lnk ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** PUP.Optional.StartFenster C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk PUP.Optional.StartFenster C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk PUP.Optional.StartFenster C:\Users\Public\Desktop\Firefox.lnk PUP.Optional.StartFenster C:\Users\Public\Desktop\Microsoft Edge.lnk PUP.Optional.StartFenster C:\Users\jmkle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk PUP.Optional.StartFenster C:\Users\jmkle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk PUP.Optional.StartFenster C:\Users\jmkle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox.lnk PUP.Optional.StartFenster C:\Users\jmkle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** PUP.Optional.Fake.OpenOfficeUpdater HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|OpenOffice Updater PUP.Optional.Fake.OpenOfficeUpdater HKCU\Software\Microsoft\Windows\CurrentVersion\Run|OpenOffice Updater PUP.Optional.Fake.OpenOfficeUpdater HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\OpenOffice Updater PUP.Optional.Fake.OpenOfficeUpdater HKCU\Software\OpenOffice Updater PUP.Optional.StartFenster HKCU\Software\GIMP Updater PUP.Optional.StartFenster HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|GIMP Updater PUP.Optional.StartFenster HKCU\Software\Microsoft\Windows\CurrentVersion\Run|GIMP Updater PUP.Optional.StartFenster HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\GIMP Updater PUP.Optional.StartFenster HKCU\Software\Startfenster PUP.Optional.StartFenster HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Startfenster PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion PUP.Optional.WebCompanion HKLM\Software\Wow6432Node\Lavasoft\Web Companion ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries found. ***** [ Chromium URLs ] ***** PUP.Optional.StartFenster Startfenster PUP.Optional.StartFenster https://www.startfenster.de/ ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. ***** [ Hosts File Entries ] ***** No malicious hosts file entries found. ***** [ Preinstalled Software ] ***** Preinstalled.LenovoHotkeyManager Folder C:\Program Files\LENOVO\HOTKEY Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER Preinstalled.LenovoIMController Folder C:\Users\jmkle\AppData\Local\LENOVO\IMCONTROLLER Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1 Preinstalled.LenovoPowerManager Folder C:\Windows\SysWOW64\LENOVO\POWERMGR Preinstalled.LenovoPowerManager Folder C:\Windows\System32\LENOVO\POWERMGR Preinstalled.LenovoServiceBridge Folder C:\Users\jmkle\AppData\Local\PROGRAMS\LENOVO\LENOVO SERVICE BRIDGE Preinstalled.LenovoServiceBridge Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1 Preinstalled.LenovoUpdate Folder C:\Program Files (x86)\LENOVO\SYSTEM UPDATE Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{03C6CC92-68F2-4961-9A73-CAECA350BD08} Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TVSU_is1 AdwCleaner[S00].txt - [5647 octets] - [22/05/2024 14:30:03] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########