IT SEEMS TO BE ADW CLEANER DETECTED WRONG REGISTRY KEYS

DEAR ALL 

I FOUND SOME REGISTRY KEY USEFUL UPON SEARCH ON INTERNET, LIKE 

HKLM\SOFTWARE\Classes\CLSID\{1EFB6596-857C-11D1-B16A-00C0F0283628} ADW CLEANER HAS DETECTED THIS AS A THREAT, THE DETECTED THREATS ARE LISTED BELOW

-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{1EFB6596-857C-11D1-B16A-00C0F0283628} [-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{DD9DA666-8594-11D1-B16A-00C0F0283628} [-] ...

Re: False Postiive Registry entries

I would object to that, I'm 100% sure I don't have ProxyGate.

This is some of the matches that have Legit names in their descriptions, and the last changed date is the date that I installed my machine.

So it seems colleteral damage from the ProxyGate detection, I would not remove these keys!

 

HKCR\Wow6432Node\CLSID\{1EFB6596-857C-11D1-B16A-00C0F0283628} REG_SZ    Microsoft TabStrip Control...

Re: infecté sur chrome

Bonjour,

Je me permets de répondre à cette discussion : j'ai eu le même souci pas plus tard qu'hier soir. J'ai suivi le conseil donné par Chapi (arrêter la synchronisation), puis ai fait le scan avec ADWcleaner, ai nettoyé juste après, et là, il ne me détecte plus les logiciels malveillants (qui, par ailleurs, étaient passés de 1 à 8 sans que je ne comprenne quoique ce soit).

Mais je me posai...

Re: Some registry entries cannot be removed by AdwCleaner

Hello,

  1. Download *Malwarebytes* here: https://www.malwarebytes.com/mwb-download/thankyou/.
  2. Launch Malwarebytes from your desktop
  3. Click on the tab Settings -> Detection & Protection -> PUP/PUM and check "Treat these detections like malware".
  4. Tab Scan choose Threats scan, click on Start scan.
  5. If something is detected, choose to Quarantine everything. If it asks you to reboot the computer, do ...

Re: Infection par extension de Chrome

Bonjour,

Pouvez-vous partager le rapport de Nettoyage concernant cette détection ? Il se trouve ici: C:\AdwCleaner\AdwCleaner[Cxx].txt

Merci.

Cordialement.

Re: AdwCleamer wants to delete my whole Firefox profile folder

I created new firefox profile using Profile Manager, then I copied all files fromt the old profile to the new one. AdwCleaner did not detect any suspicious files in that new profile folder, so I guess I'm good?

Re: AdwCleamer wants to delete my whole Firefox profile folder

This element seems to be a FP caused by a generic detection.  

Sorry, but I don't think so.

There are  - only at the german TB forum - at least 50 topics with this ff profilename "41A66E7E5EE1".

Usually, every ff profilename is almost unique, 41A66E7E5EE1 isn't unique.

It is related to Yondoo browser hijacker, I've seen multiple topics with this variant.

 

my suggestion:

Check profiles.i...

Re: Menace Persistante après nettoyage

Bonjour, 

Apres un Malwarebyte aucune menace n'a ete detecte.

J'utilise depuis longtemps Malwarebytes antimalware pro

Re: AdwCleamer wants to delete my whole Firefox profile folder

Hello,

Sorry I was unclear. You can deselect the element "C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1" from the "Folders", and do a clean.

This element seems to be a FP caused by a generic detection.

Best regards,

Re: Menace Persistante après nettoyage

Merci. Pouvez faire ce qui suit ?

  • Téléchargez Malwarebytes Anti-Malware.
  • Installez-le en laissant les options par défaut (décochez juste à l'installation "Activer l'essai gratuit de MBAM Premium"), une icône sera créée sur le bureau et Malwarebytes démarrera.
  • Onglet "Analyse" choisissez "Analyse des Menaces", puis cliquez sur "Lancer l'analyse".
  • Si un élément est détecté, choisissez de tout...