|
|
| Adware.Bouncer SpyBouncer
|
|
Adware.Bouncer - SpyBouncer - remove
Method of infection: SpyBouncer is downloaded and installed by the user.
Advertising: SpyBouncer engages in aggressive advertising for its products
HijackThis
O4 - HKLM\..\Run: [Bouncer RunStartup] C:\Programme\Bouncer\liveupdate.exe 110
O16 - DPF: {7D40ADF2-AD68-4959-ACEC-DA96BF5E6EB7} (SpyBouncer.SBDownloader) - spywareremover.spybouncer.com/downloader.ocx
Avenger
registry keys to delete:
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bouncer RunStartup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B8654183-8384-4A84-A22E-CA5A0BC35DCD}
HKEY_LOCAL_MACHINE\SOFTWARE\SRC
HKEY_LOCAL_MACHINE\Software\Chilkat Software, Inc.
Files to delete:
C:\Dokumente und Einstellungen\%Username%\Startmenü\SpyBouncer.lnk
C:\Dokumente und Einstellungen\All Users\Startmenü\SpyBouncer.lnk
Folders to delete:
C:\Programme\Bouncer
C:\Dokumente und Einstellungen\%Username%\Startmenü\Programme\SpyBouncer
C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\SpyBouncer
|
lösche das Backup vom Avenger unter C:\Avenger\backup.zip + leere den Papierkorb
C:\Programme\Bouncer -> Adware.Bouncer
C:\Programme\Bouncer\ADB.dll -> Adware.Bouncer
C:\Programme\Bouncer\BDB.dll -> Adware.Bouncer
C:\Programme\Bouncer\Bouncer.exe -> Adware.Bouncer
C:\Programme\Bouncer\LiveUpdate.exe -> Adware.Bouncer
C:\Programme\Bouncer\Logs -> Adware.Bouncer
C:\Programme\Bouncer\SBB.dll -> Adware.Bouncer
C:\Programme\Bouncer\chilkatZip.dll -> Adware.Bouncer
C:\Programme\Bouncer\delQueue.exe -> Adware.Bouncer
C:\Programme\Bouncer\delmod.dll -> Adware.Bouncer
C:\Programme\Bouncer\help -> Adware.Bouncer
C:\Programme\Bouncer\help\aboutspyware.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\backup1.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\backup2.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\bullet-arrow.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\hbackup.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\hcontact.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\help_main.html -> Adware.Bouncer
C:\Programme\Bouncer\help\help_mnu.html -> Adware.Bouncer
C:\Programme\Bouncer\help\helpscanner.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\hkeys.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\hlogs.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\hmonitor.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\hoptions.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\hupdates.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\index.html -> Adware.Bouncer
C:\Programme\Bouncer\help\live1.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\live2.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\mon1.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\mon2.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\options.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\pophelp.htm -> Adware.Bouncer
C:\Programme\Bouncer\help\scan.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\scanresults.gif -> Adware.Bouncer
C:\Programme\Bouncer\help\tips.txt -> Adware.Bouncer
C:\Programme\Bouncer\help\viewlogs.gif -> Adware.Bouncer
C:\Programme\Bouncer\options.cfg -> Adware.Bouncer
C:\Programme\Bouncer\requeue.dll -> Adware.Bouncer
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B8654183-8384-4A84-A22E-CA5A0BC35DCD} -> Adware.Bouncer
%ProgramFiles%\Bouncer
C:\Documents and Settings\All Users\Start Menu\Programs\SpyBouncer\SpyBouncer Help.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\SpyBouncer\SpyBouncer LiveUpdate.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\SpyBouncer\SpyBouncer.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\SpyBouncer\Uninstall.lnk
C:\Documents and Settings\All Users\Start Menu\SpyBouncer.lnk
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bouncer RunStartup]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="liveupdate"
"hkey"="HKLM"
"command"="C:\\Programme\\Bouncer\\liveupdate.exe 110"
"inimapping"="0"
http://www.symantec.com.pr/avcenter/venc/data/pf/spybouncer.html
|
|
