Chinese Registry Entries In Hkey Current User

Discussion in 'Malware Help (A Specialist Will Reply)' started by p914, Mar 30, 2018.

  1. p914

    p914 Private E-2

    I just happened to be looking around and found these folders. All have the same subfolders. Is this unusual?
    HKEY_CURRENT_USER\Ⴟ⟰პႿE
    subfolders:
    Cache2
    Ext

    Another
    HKEY_CURRENT_USER\崈਼崈਼ନڼs

    Another
    HKEY_CURRENT_USER\潣⹭癡獡⹴污桰⹡畢杲牥䌮楬湥䅴摬湉潦匮䥗䍔彈佔䙟䕒E/

    Another
    HKEY_CURRENT_USER\潣⹭癡獡⹴灩⹭汃敩瑮慐慲敭整獲倮潲牧浡慌杮慵敧獉䍯摯eႈѠიѠი᪈ി␁蠀ॖॖॖॖॖॖॖॖॖॖॖॖॖॖॖॖᪿി╯蠀弈ၺ弈ၺ弈ၺā瑹捩⹳牰瑯⹯汢扯琮湵略⹰牔杩敧呲灹erat

    Another
    HKEY_CURRENT_USER\针ઌ퓨઒针ઌE
     
    p914, Mar 30, 2018
    #1
  2. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Yes
     
    dr.moriarty, Mar 30, 2018
    #2
  3. p914

    p914 Private E-2

    Will deleting help or is there a more comprehensive method?
     
    p914, Mar 30, 2018
    #3
  4. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    dr.moriarty, Mar 30, 2018
    #4
  5. p914

    p914 Private E-2

    Not getting any alerts from the scans from Malwarebytes, CCleaner, Rogue Killer
     
    p914, Mar 30, 2018
    #5
  6. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    Hitman Pro ?

    or -
    Please go here: https://www.zemana.com/Download
    Scroll all the way to the bottom of the page and at the bottom of column 2 you will find FREE AntiMalware. Click on it and download Zemana to your Desktop and run it. After the appl auto-updates, click on Scan. After it's finished, click on the icon that looks like Cell phone strength bars. High-light the report (by date log was produced) and click on the "Open Report" icon. (looks like a folder). That notepad.txt can then be copied/pasted into another .txt doc and saved. Upload that log, please.
     
    dr.moriarty, Mar 30, 2018
    #6
  7. p914

    p914 Private E-2

    Nothing in Hitman Pro either
     
    p914, Mar 30, 2018
    #7
  8. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    They are very unusual registry keys not found in an internet search. I would make a registry backup first, then delete them.
     
    dr.moriarty, Mar 30, 2018
    #8
  9. p914

    p914 Private E-2

    Here's Zemana text. Nothing unusual there.
     

    Attached Files:

    p914, Mar 30, 2018
    #9
  10. dr.moriarty

    dr.moriarty Malware Super Sleuth Staff Member

    I think you're otherwise clean from malware. :)
     
    dr.moriarty, Mar 30, 2018
    #10
    p914 likes this.
  11. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Do you perhaps have Chinese as an installed language?
     
    TimW, Mar 30, 2018
    #11
  12. p914

    p914 Private E-2

    Not that I know of.
     
    p914, Mar 30, 2018
    #12
  13. p914

    p914 Private E-2

    Backed up the reg and deleted them. We'll see how it goes.
     
    p914, Mar 30, 2018
    #13

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds