Windows Registration

Discussion in 'Malware Help (A Specialist Will Reply)' started by cobrajet431, Jun 12, 2006.

  1. cobrajet431

    cobrajet431 Private First Class

    Hi guys. My Zone Alarm just asked for permission to allow Windows Registration to access the internet. Said the file was SUCATREG.EXE (in caps). ZA details were skimpy. I googled it and only found a couple of relevant links, but they were for windows XP, and I have ME. I've had this PC for several months and was never asked this one before. I denied permission. Any info would be appreciated. Thanks.
     
    cobrajet431, Jun 12, 2006
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Sounds like this: http://www.sophos.com/virusinfo/analyses/w32magistra.html

    This can be a serious problem if you really have this infection. Here is a small quote from the above link:
    You should follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.
    • Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
    • Make sure you check version numbers and get all updates.
    • Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.
    • After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:
    • When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too (these scans are covered in steps 6 & 7 of the READ & RUN ME sticky)
      • Bitdefender
      • Panda Scan
      • HijackThis
    .
     
    Last edited: Jun 12, 2006
    chaslang, Jun 12, 2006
    #2
  3. cobrajet431

    cobrajet431 Private First Class

    Chaslang...I don't really think your post applies to me. I wasn't infected, as ZA questioned the action, and I said "deny." So there's no need for an HJT log. I just wondered if there would have been any harm.
     
    cobrajet431, Jun 12, 2006
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    That's not really true. If ZoneAlarm found the process trying to do something on your PC and to get access to the internet, there could be other things still present. Just blocking the process from having internet access does not remove it from your PC. Nor does it stop it from running.
     
    chaslang, Jun 13, 2006
    #4
  5. cobrajet431

    cobrajet431 Private First Class

    Thanks chas, I see your point. I have AVG, Ad-Aware SE, Spybot S&D, Superantispyware, and a-squared; all of which I update and run regularly. Right now I'm gonna run 'CleanUp4.5.1', update my protectors, and run my scans in safe mode. If there's a problem I'll be back. Thanks for the wake-up. Guess I wasn't thinking!
     
    cobrajet431, Jun 13, 2006
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay! But if you still have any problems, you will need to complete the procedure given in message number 2.
     
    chaslang, Jun 13, 2006
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds