Malware removal and "US Tech Support Framework"

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by vrr, Jul 28, 2013.

  1. vrr

    vrr Private E-2

    Hello,
    I have been removing malware from my friend's computer. I think I have removed most of it except for "US Tech Support Framework". It shows up in Control Panel and wants to run a program when I want to uninstall it. So I searched the internet and found this thread at MajorGeeks.com.

    Before I begin to delete more things. I thought it might be a good idea to have someone with more knowledge take a look at the log files. I went through all the steps at the READ & RUN ME FIRST thread and generated the following log files.

    Will someone please take a look at these files and recommend the next step?

    Thanks! :)
     

    Attached Files:

    Last edited: Jul 28, 2013
  2. vrr

    vrr Private E-2

    Update: "Extension 1.0"

    uuuuugh! :(

    OK, Chrome is now redirecting when I do a search. It was here before, but I had removed all the extensions in Chrome and all was good.

    But now it seems like it is back. After I had removed all the extensions there were none. Now there is one called "Extension 1.0"

    Would someone please provide some suggestions on how to approach this problem too?

    Thanks! :)

    Should this be it's own thread, or is it OK to leave it here?
     
    Last edited: Jul 28, 2013
  3. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Re run RogueKiller and under the registry tab or the scheduled tasks tab, see if you can locate:

    If so please have RK fix it. Let me know how you get on.

    Now rerun Hitman and have it delete Potential Unwanted Programs.

    What's inside this folder?

    C:\ProgramData\22263b3a2c5f3138_c


    Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

    Make sure that you tell me if you receive a success message about adding the above
    to the registry. If you do not get a success message, it definitely did not work.


    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. (Right click and run as admin if using Vista, Windows7 or Win8) Then attach the new C:\MGlogs.zip file that will be created by running this.

    Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now!
     
  4. vrr

    vrr Private E-2

    Hello Kestrel13!,

    I did all the items and all went well.

    DETAILS:
    1. I reran RogueKiller and deleted
    2. I reran Hitman and deleted unwanted programs, about 50 items, none were flagged as a threat.
    3. C:\ProgramData\22263b3a2c5f3138_c is not a folder.
      It is a file of zero bytes. Created on Saturday, ‎July ‎27, ‎2013, ‏‎6:24:41 PM.
      Should I delete this file?
    4. I ran fixME.reg, and it was a success.
    5. I ran GetLogs.bat and have attached it to this post.

    ==========================================

    FYI
    A. US Tech Support Framework is still in the Control Panel
    B. "Extension 1.0" is still listed in the Google Chrome Extension



    Thanks for the assistance! :)
     

    Attached Files:

  5. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Yes, if you do not know what it is.

    Use Revo Uninstaller to be rid of it.

    If after uninstallation, it still shows up in Chrome, let me know.
     
  6. vrr

    vrr Private E-2

    OK, all seems good except for
    1. I removed the extension successfully. I get a "Boo... You have no extensions :-("
    2. I exit Chrome.
    3. Restart Chrome.
    4. And the extension is back.
     
  7. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Uninstall Chrome then and let me know how things are after you reinstall.
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds