Wondershare Issue & General Sweepout

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by garyt53, Dec 14, 2014.

Thread Status:
Not open for further replies.
  1. garyt53

    garyt53 Private E-2

    See short Wordfile....I have no symptoms yet but cannot remove this, even with the packaged install.exe and is not seen in CCleaner.

    Plus, I must have collected an array of sneaky stuff over the years since I only run Symantec NIS with mbam as a doublecheck, and according to industry evals, NIS is not the resource-hog it once was so a lotta stuff gets past it.

    gt

    Oh yeah....used my mbam with outdated GUI first, then ran your utilities, then updated mbam GUI and ran again and found something new....if that's important.
     

    Attached Files:

    garyt53, Dec 14, 2014
    #1
  2. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    You didn't attach the requested TDSSKiller log.

    Please download SystemLook from one of the links below and save it to your Desktop.
    Download Mirror #1
    Download Mirror #2
    • Double-click SystemLook.exe to run it.
    • Copy the content of the following codebox into the main textfield:
      Code:
      :filefind
Wondershare
:folderfind
Wondershare
:regfind
Wondershare
    • Click the Look button to start the scan.
    • When finished, a notepad window will open with the results of the scan. Please attach this log in your next reply.
    Note: The log can also be found on your Desktop entitled SystemLook.txt
     
    dr.moriarty, Dec 14, 2014
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    A suggestion if SystemLook does not help you locate the startup. Use AutoRuns.

    Download and run Autoruns and keep the Everything tab selected, then slowly scroll down thru the Image Path column. Do you see anything related to Wondershare startup showing up? If you do, you should be able to right click on it and select Delete to stop it from loading at startup.

    Then you should be able to delete any left over folders that you know of from it.
     
    chaslang, Dec 15, 2014
    #3
  4. garyt53

    garyt53 Private E-2

    Hi Guys !
    and Hi Doc -

    RE my TDSSK omission: Yeah….can’t tell my senior moments from my medicated moments anymore. Ha Well, with 80% of us and 20% of the cops on SSRIs, that just ain’t really that funny, huh.

    Hey, that Systemlook utility is pretty cool, cause on a “budget” (day to day survival) I don’t like to index stuff. Now all I gotta do is run this to find stuff (don’t often have to though). I like little stuff I know is safe (from guys like you). I know about autoruns but haven’t needed it in win7. I just use CCleaner to disable the mindless crap. Provided you my CCLeaner startup lineup, both current for this attention as well as my usual settings with stuff turned off.

    Ran autoruns looking for “wondershare” and found nothing there on “everything” tab.

    gt

    Beware UULAs these days. Learn to scan em fast-like cause with the bad examples lately it’s gettin pretty weird.

    Hey! Just discovered why I neglected the TDSSK logfile! Error says too big for your .txt limitations! I zipped it and at 90kb it still won't fly.

    Will try in subsequent post.
     

    Attached Files:

    garyt53, Dec 15, 2014
    #4
  5. garyt53

    garyt53 Private E-2

    as per lastline previous

    HA! It flys!
     

    Attached Files:

    garyt53, Dec 15, 2014
    #5
  6. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Everyone seeking our help in this forum IS bound by forum protocol and decorum; and is expected to conduct themselves accordingly. Failure to do so will result in their thread being locked and further requests for help refused.

    Please acknowledge that you understand the above before we proceed any further.
     
    Last edited: Dec 17, 2014
    dr.moriarty, Dec 16, 2014
    #6
  7. garyt53

    garyt53 Private E-2

    has anything i said violated your terms
     
    garyt53, Dec 17, 2014
    #7
  8. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Your age does not exempt you from being respectful of this forum, it's protocols, in post content and tone, and of the moderators who volunteer their skills in helping others.
     
    dr.moriarty, Dec 17, 2014
    #8
  9. garyt53

    garyt53 Private E-2

    OK....since I believe you actually think you had to say that - I mean, beyond fearing-for-your-job CYA.....I will close this thread, only because our time here is too short to perpetuate unnecessary agitation.
     
    garyt53, Dec 18, 2014
    #9
  10. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    You believe that your age gives you license to make rambling posts.. it doesn't - the very cause of your first thread being deleted.
    ;) I will close this thread.
     
    dr.moriarty, Dec 18, 2014
    #10
Thread Status:
Not open for further replies.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds