Pups

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by ManWarBear, Nov 29, 2018.

  1. ManWarBear

    ManWarBear Private First Class

    All scans detected unwanted programs.
     

    Attached Files:

    ManWarBear, Nov 29, 2018
    #1
  2. ManWarBear

    ManWarBear Private First Class

    Sorry, I didn't have time to post a proper message with this earlier in the morning. I'm not sure which detections that I sould remove with RK. Any help would be greatly appreciated. Thank you.
     
    ManWarBear, Nov 29, 2018
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please rerun Hitman and remove this item:
    Potential Unwanted Programs _________________________________________________

    HKLM\SOFTWARE\Reimage\ (ReimageRepair)

    Then rerun RogueKiller and remove these items:
    ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
    >>>>>> O101 - Clsid
    [PUP.Gen0 (Potentially Malicious)] (X64) HKEY_CLASSES_ROOT\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484} -- N/A -> Found
    [PUP.Gen0 (Potentially Malicious)] (X64) HKEY_CLASSES_ROOT\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB} -- N/A -> Found
    >>>>>> XX - Software
    [PUP.Reimage|PUP.Gen1 (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\Software\Reimage -- N/A -> Found
    [PUP.Reimage|PUP.Gen1 (Potentially Malicious)] (X64) HKEY_USERS\S-1-5-21-745247706-1955576132-408695703-1001\Software\Reimage -- N/A -> Found
    [PUP.Reimage|PUP.Gen1 (Potentially Malicious)] (X86) HKEY_USERS\S-1-5-21-745247706-1955576132-408695703-1001\Software\Reimage -- N/A -> Found

    ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
    [PUP.Gen0 (Potentially Malicious)] (file) Reimage.ini -- C:\Windows\Reimage.ini -> Found

    Reboot and rescan with both as well as with ADWCleaner and attach the new logs.
     
    TimW, Nov 29, 2018
    #3
  4. ManWarBear

    ManWarBear Private First Class

    There were no detections with any of the rescans. Even though ADWCleaner didn't detect anything, it offered to make a repair. "You may optionally want to run a Basic Repair which will reset Winsock and other settings to their default values." I allowed it to do this, and then I couldn't boot up windows any longer. I had to do a system restore and then rescan with everything, remove all detections, reboot again and then rescan a final time. It's all sorted now, and everything is clean.
     
    ManWarBear, Nov 30, 2018
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Good to know.
    If you are not having any other malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware.
    2. Re-enable your Disk Emulation software with Defogger if you had disabled it in step 4 of the READ & RUN ME.
    3. Go to add/remove programs and uninstall HijackThis. If you don't see it or it will not uninstall, don't worry about it. Just move on to the next step.
    4. If running Vista, Win 7 or Win 8, it is time to make sure you have re-enabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Now go to the C:\MGtools folder and find the MGclean.bat file. Double click ( if running Vista, Win7, or Win 8 or 10 Right Click and Run As Administrator ) on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    6. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    7. After doing the above, you should work thru the below link:
     
    TimW, Nov 30, 2018
    #5
    ManWarBear likes this.
  6. ManWarBear

    ManWarBear Private First Class

    Thank you very much for your help.
     
    ManWarBear, Nov 30, 2018
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are most welcome. Safe surfing. :)
     
    TimW, Nov 30, 2018
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds