Hoy quise instalar un programa y se me instaló un virus “thegoodcaster” que no hace más que abrirme ventanas de publi en el navegador. No soy capaz de desinstalarlo porque no se donde se encuentra, ya que no aparece en programas instalados. Usé Malware y CCleaner pero no he conseguido nada. Agradecería ayuda. Gracias
Realiza los siguientes pasos, , sin cambiar el orden
1) * Siguiendo su manual, lo instalas y ejecutas. Cuando termine, elimina todo lo que encuentre.
• Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware , revisa en detalle el manual, para que sepas usarlo y configurarlo. Te doy las instrucciones de esta versión 4.0:
Malwarebytes Versión 4
-
Presiona clic en “Use Malewarebytes Free” (Usar Malewarebyte gratis).
-
Pulsa en el botón “Open Malewarebytes Free”.
- Presiona el botón “Scan” (Escaneo).
Una vez finalizado el escaneo aparecerá la siguiente pantalla:
-
Pulsa en “View report” (Ver informe).
-
Luego presionar el botón “Export” (Exportar). Elijes “Text file” (fichero de texto). Elijes un nombre y guardas ese archivo en el escritorio…
2) Descarga Adwcleaner en el escritorio.
-
Desactiva tu antivirus
Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad. -
Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
-
Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.
-
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
-
Si no encuentra nada, pulsamos “Omitir Reparación”
-
El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"
Puedes mirar su manual >> Manual de Adwcleaner
3) Descarga Ccleaner
Instalalo y ejecútalo. En la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador. Clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad.
Pega los reportes de Malwarebytes, AdwCleaner y comentas como va el problema.
Hola. En principio Malewarebytes y Ccleaner ya los había ejecutado antes de escribirte, así que en el segundo análisis no arrojaron ninguna alerta. En la primera vez que lo hice, sí. Sin embargo Adwcleaner sí que encontró alguna cosa a eliminar. Te envío los reportes: Adwcleaner Reporte Limpieza:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-11-2019
# Duration: 00:00:04
# OS: Windows 7 Professional
# Cleaned: 18
# Failed: 2
***** [ Services ] *****
Deleted EventSvc
***** [ Folders ] *****
Deleted C:\Program Files (x86)\ProxyGate
Deleted C:\Users\Pc\AppData\Local\slimware utilities inc
Deleted C:\Users\Pc\Documents\PC Speed Maximizer
Deleted C:\Users\Public\Documents\Downloaded Installers
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\SlimWare Utilities Inc
Deleted HKCU\Software\Vittalia
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
Deleted HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
Deleted HKLM\Software\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Deleted HKLM\Software\Wow6432Node\SLIMWARE UTILITIES, INC.
Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted HKLM\Software\Wow6432Node\WIFIService
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\EventSvc
Deleted HKU\.DEFAULT\Software\ByteFence
Deleted HKU\S-1-5-18\Software\ByteFence
***** [ Chromium (and derivatives) ] *****
Not Deleted Search Manager
Not Deleted Search Manager
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [38192 octets] - [11/11/2019 20:28:55]
AdwCleaner[S00].txt - [2795 octets] - [11/11/2019 20:30:16]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Reporte Análisis:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 11-11-2019
# Duration: 00:00:14
# OS: Windows 7 Professional
# Scanned: 35182
# Detected: 20
***** [ Services ] *****
Adware.Tuto4PC EventSvc
***** [ Folders ] *****
PUP.Optional.Legacy C:\Users\Public\Documents\Downloaded Installers
PUP.Optional.PCSpeedMaximizer C:\Users\Pc\Documents\PC Speed Maximizer
PUP.Optional.ProxyGate C:\Program Files (x86)\ProxyGate
PUP.Optional.SlimCleanerPlus C:\Users\Pc\AppData\Local\slimware utilities inc
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
Adware.ICLoader HKLM\Software\Wow6432Node\WIFIService
Adware.Tuto4PC HKLM\System\CurrentControlSet\Services\EventLog\Application\EventSvc
PUP.Optional.ByteFence HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
PUP.Optional.ByteFence HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
PUP.Optional.ByteFence HKU\.DEFAULT\Software\ByteFence
PUP.Optional.ByteFence HKU\S-1-5-18\Software\ByteFence
PUP.Optional.InstallCore HKCU\Software\csastats
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
PUP.Optional.SlimCleanerPlus HKCU\Software\SlimWare Utilities Inc
PUP.Optional.SlimCleanerPlus HKLM\Software\Wow6432Node\SLIMWARE UTILITIES, INC.
PUP.Optional.SlimCleanerPlus HKLM\Software\Wow6432Node\SlimWare Utilities Inc
PUP.Optional.Vittalia HKCU\Software\Vittalia
***** [ Chromium (and derivatives) ] *****
PUP.Optional.SearchManager Search Manager
PUP.Optional.SearchManager Search Manager
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner_Debug.log - [7839 octets] - [11/11/2019 20:28:55]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Reporte depuración:
2019-11-11 19:28:55 : <INFO> [Application] AdwCleaner 7 . 4 . 2 launched
2019-11-11 19:28:55 : <INFO> [AdwUpgrade] Checking application updates
2019-11-11 19:28:55 : <WARNING> Type conversion already registered from type QPair<QByteArray,QByteArray> to type QtMetaTypePrivate::QPairVariantInterfaceImpl
2019-11-11 19:28:57 : <INFO> [SslCert] Issued by ("DigiCert SHA2 High Assurance Server CA")
2019-11-11 19:28:57 : <INFO> [SslCert] Issued to ("*.malwarebytes.com")
2019-11-11 19:28:57 : <INFO> [SslCert] Locality Name ("Santa Clara")
2019-11-11 19:28:57 : <INFO> [SslCert] Organization ("Malwarebytes Inc")
2019-11-11 19:28:57 : <INFO> [SslCert] Certificate EffectiveDate: "lun oct 2 00:00:00 2017 GMT"
2019-11-11 19:28:57 : <INFO> [SslCert] Certificate ExpirationDate: "mar oct 6 12:00:00 2020 GMT"
2019-11-11 19:28:57 : <INFO> [SslCert] ALPN: None
2019-11-11 19:28:57 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:28:57 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:28:57 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:28:57 : <INFO> [Telemetry] Status code: QVariant(int, 200)
2019-11-11 19:29:48 : <INFO> [Button clicked] Close EULA
2019-11-11 19:29:54 : <INFO> [Application] AdwCleaner 7 . 4 . 2 launched
2019-11-11 19:29:55 : <INFO> [Telemetry] Sending hello
ication updates
2019-11-11 19:29:56 : <INFO> [SslCert] Issued by ("DigiCert SHA2 High Assurance Server CA")
2019-11-11 19:29:56 : <INFO> [SslCert] Issued to ("*.malwarebytes.com")
2019-11-11 19:29:56 : <INFO> [SslCert] Locality Name ("Santa Clara")
2019-11-11 19:29:56 : <INFO> [SslCert] Organization ("Malwarebytes Inc")
2019-11-11 19:29:56 : <INFO> [SslCert] Certificate EffectiveDate: "lun oct 2 00:00:00 2017 GMT"
2019-11-11 19:29:56 : <INFO> [SslCert] Certificate ExpirationDate: "mar oct 6 12:00:00 2020 GMT"
2019-11-11 19:29:56 : <INFO> [SslCert] ALPN: None
2019-11-11 19:29:56 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:29:56 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:29:56 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:29:56 : <INFO> [Telemetry] Status code: QVariant(int, 200)
2019-11-11 19:29:58 : <INFO> [Button clicked] EULA agreed
2019-11-11 19:30:01 : <INFO> [Button clicked] Scan
2019-11-11 19:30:01 : <INFO> [Scan] Started
2019-11-11 19:30:01 : <INFO> [Database] Downloading database
2019-11-11 19:30:02 : <INFO> [Database] Checking integrity
2019-11-11 19:30:02 : <INFO> [Database] Found 2588 families
2019-11-11 19:30:02 : <INFO> [Database] Database v "2019-10-21.1"
2019-11-11 19:30:02 : <INFO> [Loading paths] Local paths loaded
2019-11-11 19:30:02 : <INFO> [Loading paths] Chrome paths loaded
2019-11-11 19:30:02 : <INFO> [Loading paths] User Keys loaded
2019-11-11 19:30:02 : <INFO> [Module initialized] "File"
2019-11-11 19:30:02 : <INFO> [Module initialized] "Folder"
2019-11-11 19:30:02 : <INFO> [Module initialized] "RegistryKey"
2019-11-11 19:30:02 : <INFO> [Module initialized] "RegistryValue"
2019-11-11 19:30:03 : <INFO> [Module initialized] "TaskName"
2019-11-11 19:30:03 : <INFO> [Module initialized] "Service"
2019-11-11 19:30:04 : <INFO> [Module initialized] "Winlogon"
2019-11-11 19:30:07 : <INFO> [Module initialized] "URL"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegAppInit"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegClasses"
2019-11-11 19:30:07 : <INFO> [Module initialized] "DNS"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegFirewallPolicy"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegGuid"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegIEElevationPolicy"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegOther"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegProductID"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegSoftware"
2019-11-11 19:30:07 : <INFO> [Module initialized] "RegStartup"
2019-11-11 19:30:07 : <INFO> [Module initialized] "WMI"
2019-11-11 19:30:07 : <INFO> [Module initialized] "ChromiumExt"
2019-11-11 19:30:07 : <INFO> [Module initialized] "FirefoxExt"
2019-11-11 19:30:07 : <INFO> [Module initialize] Scan Browser
2019-11-11 19:30:07 : <INFO> [Module initialize] Scan Browser FF
2019-11-11 19:30:07 : <INFO> [Module initialize] FF start pages loaded
2019-11-11 19:30:07 : <INFO> [Module initialize] FF search providers loaded
2019-11-11 19:30:07 : <INFO> [Module initialize] FF plugin list loaded
2019-11-11 19:30:07 : <INFO> [Scan] Exclusions loaded
2019-11-11 19:30:08 : <INFO> [Scan] Item detected: "PUP.Optional.Legacy" , "C:\\Users\\Public\\Documents\\Downloaded Installers" [ "Folder" ]
2019-11-11 19:30:09 : <INFO> [Scan] Item detected: "PUP.Optional.Legacy" , "HKLM\\Software\\Classes\\Interface\\{3408AC0D-510E-4808-8F7B-6B70B1F88534}" [ "Registry" ]
2019-11-11 19:30:09 : <INFO> [Scan] Item detected: "PUP.Optional.Legacy" , "HKLM\\Software\\Wow6432Node\\\\Classes\\Interface\\{3408AC0D-510E-4808-8F7B-6B70B1F88534}" [ "Registry" ]
2019-11-11 19:30:10 : <INFO> [Scan] Item detected: "PUP.Optional.PCSpeedMaximizer" , "C:\\Users\\Pc\\Documents\\PC Speed Maximizer" [ "Folder" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.SlimCleanerPlus" , "C:\\Users\\Pc\\AppData\\Local\\slimware utilities inc" [ "Folder" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.SlimCleanerPlus" , "HKLM\\Software\\Wow6432Node\\SlimWare Utilities Inc" [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.SlimCleanerPlus" , "HKCU\\Software\\SlimWare Utilities Inc" [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.SlimCleanerPlus" , "HKLM\\Software\\Wow6432Node\\SLIMWARE UTILITIES, INC." [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.ByteFence" , "HKLM\\SYSTEM\\CurrentControlSet\\Services\\EventLog\\Reason\\ReasonByteFence" [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.ByteFence" , "HKLM\\SOFTWARE\\Microsoft\\RADAR\\HeapLeakDetection\\DiagnosedApplications\\ByteFence.exe" [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.ByteFence" , "HKU\\.DEFAULT\\Software\\ByteFence" [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "PUP.Optional.ByteFence" , "HKU\\S-1-5-18\\Software\\ByteFence" [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "Adware.Tuto4PC" , "EventSvc" [ "Service" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "Adware.Tuto4PC" , "HKLM\\System\\CurrentControlSet\\Services\\EventLog\\Application\\EventSvc" [ "Registry" ]
2019-11-11 19:30:11 : <INFO> [Scan] Item detected: "Adware.ICLoader" , "HKLM\\Software\\Wow6432Node\\WIFIService" [ "Registry" ]
2019-11-11 19:30:13 : <INFO> [Scan] Item detected: "PUP.Optional.SearchManager" , "Search Manager" [ "Chromium" ]
2019-11-11 19:30:13 : <INFO> [Scan] Item detected: "PUP.Optional.SearchManager" , "Search Manager" [ "Chromium" ]
2019-11-11 19:30:13 : <INFO> [Scan] Item detected: "PUP.Optional.ProxyGate" , "C:\\Program Files (x86)\\ProxyGate" [ "Folder" ]
2019-11-11 19:30:13 : <INFO> [Scan] Item detected: "PUP.Optional.Vittalia" , "HKCU\\Software\\Vittalia" [ "Registry" ]
2019-11-11 19:30:14 : <INFO> [Scan] Item detected: "PUP.Optional.InstallCore" , "HKCU\\Software\\csastats" [ "Registry" ]
2019-11-11 19:30:16 : <INFO> [Telemetry] Sending to Influx
2019-11-11 19:30:17 : <INFO> [SslCert] Issued by ("Let's Encrypt Authority X3")
2019-11-11 19:30:17 : <INFO> [SslCert] Issued to ("telemetry-02.adwc.mb.fr33tux.org")
2019-11-11 19:30:17 : <INFO> [SslCert] Locality Name ()
2019-11-11 19:30:17 : <INFO> [SslCert] Organization ()
2019-11-11 19:30:17 : <INFO> [SslCert] Certificate EffectiveDate: "jue oct 17 14:50:26 2019 GMT"
2019-11-11 19:30:17 : <INFO> [SslCert] Certificate ExpirationDate: "mié ene 15 14:50:26 2020 GMT"
2019-11-11 19:30:17 : <INFO> [SslCert] ALPN: Yes
2019-11-11 19:30:17 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:30:17 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:30:17 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:30:17 : <INFO> [Telemetry] Status code: QVariant(int, 204)
2019-11-11 19:30:17 : <INFO> [Telemetry] Sending to DSE
2019-11-11 19:30:17 : <INFO> [SslCert] Issued by ("DigiCert SHA2 High Assurance Server CA")
2019-11-11 19:30:17 : <INFO> [SslCert] Issued to ("*.malwarebytes.com")
2019-11-11 19:30:17 : <INFO> [SslCert] Locality Name ("San Jose")
2019-11-11 19:30:17 : <INFO> [SslCert] Organization ("Malwarebytes Inc.")
2019-11-11 19:30:17 : <INFO> [SslCert] Certificate EffectiveDate: "jue feb 22 00:00:00 2018 GMT"
2019-11-11 19:30:17 : <INFO> [SslCert] Certificate ExpirationDate: "mié abr 22 12:00:00 2020 GMT"
2019-11-11 19:30:17 : <INFO> [SslCert] ALPN: Yes
2019-11-11 19:30:17 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:30:17 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:30:17 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:30:17 : <INFO> [Telemetry] Status code: QVariant(int, 201)
2019-11-11 19:30:17 : <INFO> [Scan] Finished
2019-11-11 19:31:03 : <INFO> [Button clicked] Clean & repair
2019-11-11 19:31:09 : <INFO> [Button clicked] Dialog button clicked [ 2 ]
2019-11-11 19:31:09 : <INFO> [Cleaning] Started
2019-11-11 19:31:09 : <WARNING> [Cleaning] Unable to Open process - "[System Process]" 0
2019-11-11 19:31:09 : <WARNING> [Cleaning] Unable to Open process - "System" 0
2019-11-11 19:31:09 : <INFO> [Quarantine] Session folder: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109"
2019-11-11 19:31:10 : <INFO> [Cleaning] Processing: "PUP.Optional.Legacy" , "C:\\Users\\Public\\Documents\\Downloaded Installers" [ "Folder" ]
2019-11-11 19:31:10 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\1"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\1\\Downloaded Installers"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\1\\Downloaded Installers\\{746AB259-6474-4111-8966-1C62F9A6E063}"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] ObjectsProcessed = 1
2019-11-11 19:31:10 : <INFO> [Cleaning] Quarantined: "PUP.Optional.Legacy" , "C:\\Users\\Public\\Documents\\Downloaded Installers" [ "Folder" ]
2019-11-11 19:31:10 : <INFO> [Cleaning] Processing: "PUP.Optional.Legacy" , "HKLM\\Software\\Classes\\Interface\\{3408AC0D-510E-4808-8F7B-6B70B1F88534}" [ "Registry" ]
2019-11-11 19:31:10 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] ObjectsProcessed = 2
2019-11-11 19:31:10 : <INFO> [Cleaning] Quarantined: "PUP.Optional.Legacy" , "HKLM\\Software\\Classes\\Interface\\{3408AC0D-510E-4808-8F7B-6B70B1F88534}" [ "Registry" ]
2019-11-11 19:31:10 : <INFO> [Cleaning] Processing: "PUP.Optional.Legacy" , "HKLM\\Software\\Wow6432Node\\\\Classes\\Interface\\{3408AC0D-510E-4808-8F7B-6B70B1F88534}" [ "Registry" ]
2019-11-11 19:31:10 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] ObjectsProcessed = 3
2019-11-11 19:31:10 : <INFO> [Cleaning] Quarantined: "PUP.Optional.Legacy" , "HKLM\\Software\\Wow6432Node\\\\Classes\\Interface\\{3408AC0D-510E-4808-8F7B-6B70B1F88534}" [ "Registry" ]
2019-11-11 19:31:10 : <INFO> [Cleaning] Processing: "PUP.Optional.PCSpeedMaximizer" , "C:\\Users\\Pc\\Documents\\PC Speed Maximizer" [ "Folder" ]
2019-11-11 19:31:10 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\4"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\4\\PC Speed Maximizer"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:10 : <DEBUG> [Cleaning] ObjectsProcessed = 4
2019-11-11 19:31:10 : <INFO> [Cleaning] Quarantined: "PUP.Optional.PCSpeedMaximizer" , "C:\\Users\\Pc\\Documents\\PC Speed Maximizer" [ "Folder" ]
2019-11-11 19:31:10 : <INFO> [Cleaning] Processing: "PUP.Optional.SlimCleanerPlus" , "C:\\Users\\Pc\\AppData\\Local\\slimware utilities inc" [ "Folder" ]
2019-11-11 19:31:10 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\acpi"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\acpi\\genuineintel_-_intel64"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\gencdrom"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\gendisk"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\generic_hid_device"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\hdaudio"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\hdaudio\\func_01"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\hid_device_system_keyboard"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\internal_ide_channel"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\cc_0101"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\cc_0403"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_10de&dev_0638"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_10ec&dev_8167"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_1106&dev_3044"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_244e"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3408"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3409"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_340a"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_340e"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a16"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a34"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a35"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a36"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a37"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a38"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a39"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a3a"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a3c"
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:10 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a40"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\pci\\ven_8086&dev_3a48"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\blbdrive"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\compositebus"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\mssmbios"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\rdpbus"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\rdp_mou"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\swenum"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\umbus"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\vdrvroot"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\root\\volmgr"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\storage"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\storage\\volume"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\umb"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\umb\\umbus"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\usb"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\usb\\class_08&subclass_06&prot_50"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\usb\\composite"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\usb\\root_hub"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\5\\slimware utilities inc\\SlimDrivers\\Backups\\20170214T161058837185\\usb\\root_hub20"
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] ObjectsProcessed = 5
2019-11-11 19:31:11 : <INFO> [Cleaning] Quarantined: "PUP.Optional.SlimCleanerPlus" , "C:\\Users\\Pc\\AppData\\Local\\slimware utilities inc" [ "Folder" ]
2019-11-11 19:31:11 : <INFO> [Cleaning] Processing: "PUP.Optional.SlimCleanerPlus" , "HKLM\\Software\\Wow6432Node\\SlimWare Utilities Inc" [ "Registry" ]
2019-11-11 19:31:11 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] ObjectsProcessed = 6
2019-11-11 19:31:11 : <INFO> [Cleaning] Quarantined: "PUP.Optional.SlimCleanerPlus" , "HKLM\\Software\\Wow6432Node\\SlimWare Utilities Inc" [ "Registry" ]
2019-11-11 19:31:11 : <INFO> [Cleaning] Processing: "PUP.Optional.SlimCleanerPlus" , "HKCU\\Software\\SlimWare Utilities Inc" [ "Registry" ]
2019-11-11 19:31:11 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] ObjectsProcessed = 7
2019-11-11 19:31:11 : <INFO> [Cleaning] Quarantined: "PUP.Optional.SlimCleanerPlus" , "HKCU\\Software\\SlimWare Utilities Inc" [ "Registry" ]
2019-11-11 19:31:11 : <INFO> [Cleaning] Processing: "PUP.Optional.SlimCleanerPlus" , "HKLM\\Software\\Wow6432Node\\SLIMWARE UTILITIES, INC." [ "Registry" ]
2019-11-11 19:31:11 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] ObjectsProcessed = 8
2019-11-11 19:31:11 : <INFO> [Cleaning] Quarantined: "PUP.Optional.SlimCleanerPlus" , "HKLM\\Software\\Wow6432Node\\SLIMWARE UTILITIES, INC." [ "Registry" ]
2019-11-11 19:31:11 : <INFO> [Cleaning] Processing: "PUP.Optional.ByteFence" , "HKLM\\SYSTEM\\CurrentControlSet\\Services\\EventLog\\Reason\\ReasonByteFence" [ "Registry" ]
2019-11-11 19:31:11 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] ObjectsProcessed = 9
2019-11-11 19:31:11 : <INFO> [Cleaning] Quarantined: "PUP.Optional.ByteFence" , "HKLM\\SYSTEM\\CurrentControlSet\\Services\\EventLog\\Reason\\ReasonByteFence" [ "Registry" ]
2019-11-11 19:31:11 : <INFO> [Cleaning] Processing: "PUP.Optional.ByteFence" , "HKLM\\SOFTWARE\\Microsoft\\RADAR\\HeapLeakDetection\\DiagnosedApplications\\ByteFence.exe" [ "Registry" ]
2019-11-11 19:31:11 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:11 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] ObjectsProcessed = 10
2019-11-11 19:31:12 : <INFO> [Cleaning] Quarantined: "PUP.Optional.ByteFence" , "HKLM\\SOFTWARE\\Microsoft\\RADAR\\HeapLeakDetection\\DiagnosedApplications\\ByteFence.exe" [ "Registry" ]
2019-11-11 19:31:12 : <INFO> [Cleaning] Processing: "PUP.Optional.ByteFence" , "HKU\\.DEFAULT\\Software\\ByteFence" [ "Registry" ]
2019-11-11 19:31:12 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] ObjectsProcessed = 11
2019-11-11 19:31:12 : <INFO> [Cleaning] Quarantined: "PUP.Optional.ByteFence" , "HKU\\.DEFAULT\\Software\\ByteFence" [ "Registry" ]
2019-11-11 19:31:12 : <INFO> [Cleaning] Processing: "PUP.Optional.ByteFence" , "HKU\\S-1-5-18\\Software\\ByteFence" [ "Registry" ]
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] ObjectsProcessed = 12
2019-11-11 19:31:12 : <INFO> [Cleaning] Quarantined: "PUP.Optional.ByteFence" , "HKU\\S-1-5-18\\Software\\ByteFence" [ "Registry" ]
2019-11-11 19:31:12 : <INFO> [Cleaning] Processing: "Adware.Tuto4PC" , "EventSvc" [ "Service" ]
2019-11-11 19:31:12 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] ObjectsProcessed = 13
2019-11-11 19:31:12 : <INFO> [Cleaning] Quarantined: "Adware.Tuto4PC" , "EventSvc" [ "Service" ]
2019-11-11 19:31:12 : <INFO> [Cleaning] Processing: "Adware.Tuto4PC" , "HKLM\\System\\CurrentControlSet\\Services\\EventLog\\Application\\EventSvc" [ "Registry" ]
2019-11-11 19:31:12 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] ObjectsProcessed = 14
2019-11-11 19:31:12 : <INFO> [Cleaning] Quarantined: "Adware.Tuto4PC" , "HKLM\\System\\CurrentControlSet\\Services\\EventLog\\Application\\EventSvc" [ "Registry" ]
2019-11-11 19:31:12 : <INFO> [Cleaning] Processing: "Adware.ICLoader" , "HKLM\\Software\\Wow6432Node\\WIFIService" [ "Registry" ]
2019-11-11 19:31:12 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:12 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] ObjectsProcessed = 15
2019-11-11 19:31:13 : <INFO> [Cleaning] Quarantined: "Adware.ICLoader" , "HKLM\\Software\\Wow6432Node\\WIFIService" [ "Registry" ]
2019-11-11 19:31:13 : <INFO> [Cleaning] Processing: "PUP.Optional.SearchManager" , "Search Manager" [ "Chromium" ]
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Quarantine failed.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] ObjectsProcessed = 16
2019-11-11 19:31:13 : <WARNING> [Cleaning] Failed to quarantine: "PUP.Optional.SearchManager" , "Search Manager" [ "Chromium" ]
2019-11-11 19:31:13 : <INFO> [Cleaning] Processing: "PUP.Optional.SearchManager" , "Search Manager" [ "Chromium" ]
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Quarantine failed.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] ObjectsProcessed = 17
2019-11-11 19:31:13 : <WARNING> [Cleaning] Failed to quarantine: "PUP.Optional.SearchManager" , "Search Manager" [ "Chromium" ]
2019-11-11 19:31:13 : <INFO> [Cleaning] Processing: "PUP.Optional.ProxyGate" , "C:\\Program Files (x86)\\ProxyGate" [ "Folder" ]
2019-11-11 19:31:13 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:13 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\15"
2019-11-11 19:31:13 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\15\\ProxyGate"
2019-11-11 19:31:13 : <DEBUG> [recurseProcessNameHashes]: "C:\\AdwCleaner\\Quarantine\\v1\\20191111.203109\\15\\ProxyGate\\ocx"
2019-11-11 19:31:13 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:13 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:13 : <DEBUG> [recurseProcessNameHashes]: Done.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] ObjectsProcessed = 18
2019-11-11 19:31:13 : <INFO> [Cleaning] Quarantined: "PUP.Optional.ProxyGate" , "C:\\Program Files (x86)\\ProxyGate" [ "Folder" ]
2019-11-11 19:31:13 : <INFO> [Cleaning] Processing: "PUP.Optional.Vittalia" , "HKCU\\Software\\Vittalia" [ "Registry" ]
2019-11-11 19:31:13 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] ObjectsProcessed = 19
2019-11-11 19:31:13 : <INFO> [Cleaning] Quarantined: "PUP.Optional.Vittalia" , "HKCU\\Software\\Vittalia" [ "Registry" ]
2019-11-11 19:31:13 : <INFO> [Cleaning] Processing: "PUP.Optional.InstallCore" , "HKCU\\Software\\csastats" [ "Registry" ]
2019-11-11 19:31:13 : <DEBUG> [Quarantine] Created quarantine record.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Cleaned the item.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] Updated quarantine index file.
2019-11-11 19:31:13 : <DEBUG> [Cleaning] ObjectsProcessed = 20
2019-11-11 19:31:13 : <INFO> [Cleaning] Quarantined: "PUP.Optional.InstallCore" , "HKCU\\Software\\csastats" [ "Registry" ]
2019-11-11 19:31:13 : <INFO> [Engine Additional Action] "Delete Tracing Keys"
2019-11-11 19:31:14 : <INFO> [Engine Additional Action] "Reset Winsock"
2019-11-11 19:31:14 : <INFO> [Telemetry] Sending to Influx
2019-11-11 19:31:14 : <INFO> [SslCert] Issued by ("Let's Encrypt Authority X3")
2019-11-11 19:31:14 : <INFO> [SslCert] Issued to ("telemetry-02.adwc.mb.fr33tux.org")
2019-11-11 19:31:14 : <INFO> [SslCert] Locality Name ()
2019-11-11 19:31:14 : <INFO> [SslCert] Organization ()
2019-11-11 19:31:14 : <INFO> [SslCert] Certificate EffectiveDate: "jue oct 17 14:50:26 2019 GMT"
2019-11-11 19:31:14 : <INFO> [SslCert] Certificate ExpirationDate: "mié ene 15 14:50:26 2020 GMT"
2019-11-11 19:31:14 : <INFO> [SslCert] ALPN: Yes
2019-11-11 19:31:14 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:31:14 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:31:14 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:31:14 : <INFO> [Telemetry] Status code: QVariant(int, 204)
2019-11-11 19:31:14 : <INFO> [Telemetry] Sending to DSE
2019-11-11 19:31:15 : <INFO> [SslCert] Issued by ("DigiCert SHA2 High Assurance Server CA")
2019-11-11 19:31:15 : <INFO> [SslCert] Issued to ("*.malwarebytes.com")
2019-11-11 19:31:15 : <INFO> [SslCert] Locality Name ("San Jose")
2019-11-11 19:31:15 : <INFO> [SslCert] Organization ("Malwarebytes Inc.")
2019-11-11 19:31:15 : <INFO> [SslCert] Certificate EffectiveDate: "jue feb 22 00:00:00 2018 GMT"
2019-11-11 19:31:15 : <INFO> [SslCert] Certificate ExpirationDate: "mié abr 22 12:00:00 2020 GMT"
2019-11-11 19:31:15 : <INFO> [SslCert] ALPN: Yes
2019-11-11 19:31:15 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:31:15 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:31:15 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:31:15 : <INFO> [Telemetry] Status code: QVariant(int, 201)
2019-11-11 19:31:15 : <INFO> [Cleaning] Finished
2019-11-11 19:31:26 : <INFO> [Button clicked] Dialog button clicked [ 6 ]
2019-11-11 19:31:27 : <INFO> [Application] Closing AdwCleaner
2019-11-11 19:34:04 : <INFO> [Application] AdwCleaner 7 . 4 . 2 launched
2019-11-11 19:34:37 : <INFO> [MBBanner] Checking Iris
2019-11-11 19:34:37 : <INFO> [IRIS] Making request
2019-11-11 19:34:37 : <INFO> [AdwUpgrade] Checking application updates
2019-11-11 19:34:37 : <INFO> [Telemetry] Sending hello
2019-11-11 19:34:39 : <INFO> [SslCert] Issued by ("DigiCert SHA2 High Assurance Server CA")
2019-11-11 19:34:39 : <INFO> [SslCert] Issued to ("*.malwarebytes.com")
2019-11-11 19:34:39 : <INFO> [SslCert] Locality Name ("Santa Clara")
2019-11-11 19:34:39 : <INFO> [SslCert] Organization ("Malwarebytes Inc")
2019-11-11 19:34:39 : <INFO> [SslCert] Certificate EffectiveDate: "lun oct 2 00:00:00 2017 GMT"
2019-11-11 19:34:39 : <INFO> [SslCert] Certificate ExpirationDate: "mar oct 6 12:00:00 2020 GMT"
2019-11-11 19:34:39 : <INFO> [SslCert] ALPN: None
2019-11-11 19:34:39 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:34:39 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:34:39 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:34:39 : <INFO> [SslCert] Issued by ("DigiCert SHA2 High Assurance Server CA")
2019-11-11 19:34:39 : <INFO> [SslCert] Issued to ("*.malwarebytes.com")
2019-11-11 19:34:39 : <INFO> [SslCert] Locality Name ("Santa Clara")
2019-11-11 19:34:39 : <INFO> [SslCert] Organization ("Malwarebytes Inc")
2019-11-11 19:34:39 : <INFO> [SslCert] Certificate EffectiveDate: "lun oct 2 00:00:00 2017 GMT"
2019-11-11 19:34:39 : <INFO> [SslCert] Certificate ExpirationDate: "mar oct 6 12:00:00 2020 GMT"
2019-11-11 19:34:39 : <INFO> [SslCert] ALPN: None
2019-11-11 19:34:39 : <INFO> [SslCert] Cipher: "ECDHE-RSA-AES256-GCM-SHA384"
2019-11-11 19:34:39 : <INFO> [SslCert] KXE: "ECDH"
2019-11-11 19:34:39 : <INFO> [SslCert] Protocol: "TLSv1.2"
2019-11-11 19:34:39 : <INFO> [Telemetry] Status code: QVariant(int, 200)
2019-11-11 19:34:39 : <WARNING> [File Downloader] Error downloading ( QNetworkReply::NetworkError(ContentNotFoundError) )
2019-11-11 19:34:39 : <INFO> [IRIS] Failed
2019-11-11 19:34:40 : <INFO> [Button clicked] Log files menu item
Reporte Malwarebytes:
Malwarebytes Anti-Malware
www.malwarebytes.org
Fecha del Análisis: 11/11/2019
Tiempo de Análisis: 20:02:11
Archivo de registro: Análisis Malwarebytes.txt
Administrador: Si
Versión: 2.01.6.1022
Base de datos de Malwares: v2019.11.11.05
Base de datos de rootkits: v2019.11.11.05
Licencia: Premium
Protección contra el Malware: Activado
Protección de Webs Maliciosas: Activado
Autoprotección: Desactivado
SO: Windows 7 Service Pack 1
CPU: x64
Archivos del Sistema: NTFS
Usuario: Pc
Tipo de Análisis: Análisis Estándar
Resultado: Completado
Objetos Analizados: 226990
Tiempo Transcurrido: 23 min, 2 seg
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Activado
PUM: Activado
Procesos: 0
(Sin elementos maliciosos detectados)
Modulos: 0
(Sin elementos maliciosos detectados)
Llaves del Registro: 0
(Sin elementos maliciosos detectados)
Valores del Registro: 0
(Sin elementos maliciosos detectados)
Datos del Registro: 0
(Sin elementos maliciosos detectados)
Carpetas: 0
(Sin elementos maliciosos detectados)
Archivo: 0
(Sin elementos maliciosos detectados)
Sectores Físicos: 0
(Sin elementos maliciosos detectados)
(end)
Ahora mismo no hay rastro del programa que me abría publi en los navegadores. No me dejaba instalar Chrome de nuevo y el ordenador no se dejaba apagar. Ahora mismo conseguí volver a instalar Chrome, no hay rastro de “thegoodcaster” y el PC se apaga correctamente. Gracias!!
Tú versión de Malwarebytes es más vieja que los dinosaurios…
estás usando la versión 2 cuando ya salió la 3 hace muchísimo tiempo y la cuatro recién…
veo que tienes licencia premium por lo tanto si tu licencia es de las de que eran de por vida original puedes actualizar a las nuevas versiones sin problemas.
deberías descargar la nueva versión desde el enlace que te di instalarla sobre la que tienes.
Luego realizar un nuevo análisis y me pegas los resultados.
si no funcionase correctamente la nueva versión instalada sobre la versión 2 desinstala la versión 2 completamente y después reinstalas la nueva versión
Ok. El problema lo he resuelto correctamente. Con respecto a actualizarlo, ya si eso lo haré en caso necesario. Puedes cerrar el hilo. Muchas gracias por tu ayuda! Un saludo
Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.