Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: registry cosole tool keeps asking for permission & maybe i got a virus


22 Aug 2012   #1

Microsoft Windows 7 Home Premium 32-bit
 
 
registry cosole tool keeps asking for permission & maybe i got a virus

as the tittle states the registry console tool keeps asking for permission after i say yes R no it pops right back up leaving the lil admin warning on my task bar & if im not mistaken i got a few processors that i never before seen such as OrgcjkK.exe & there's 2 of them
i did a google search for it but nothing appears in the search location of the file
C:\ProgramData\GiiidoC\OpgfddQ
is it safe to remove it from my pc


exe that registry console tool keeps asking for permission to open is C:\Windows\system32\reg
it wants to add to the registry

My System SpecsSystem Spec
.

22 Aug 2012   #2

Windows 7 Pro. 64/SP-1
 
 

I can't find anything Googling either. Could you do a search using Windows Explorer and learn more about it?
My System SpecsSystem Spec
22 Aug 2012   #3

Windows 7 Pro. 64/SP-1
 
 

I have just Googled OpgfddQ and got some gouble gob, Chinese looking. You could be infected.
This is some sort of German Giiido This Orgcjk wants you to buy a vacuum cleaner. Do you have some sort of shopping coupon add-on your browser?
I would start with a complete scan with your anti virus after updating. What anti virus do you use?
Let us know what is found.
My System SpecsSystem Spec
.


22 Aug 2012   #4

Microsoft Windows 7 Home Premium 32-bit
 
 

ok 2nd time scanning with Malwarebytes Anti-Malware pro & it found
Quote:
registry key sistemanet
i removed it but OrgcjkK.exe still remains & so does its location
yesterday i actually remember shutting down the process of this file WTxRMBi3.exe & as soon as i did that if im not mistaken it added u41PRHXwq8Z.exe also a image of

called u41PRHXwq8Z.exe
now i did a google search for that & nothing but i searched the description sdfsdfs & i found a lil info leading to virus's but nothing helpful so far

i scanned with Malwarebytes Anti-Malware
Quote:
2x 2nd time found that reg key
,avast & am running a scan with trojan remover now then ill run Windows Defender & checking almost every file created on the same day as that wtxrmbi3

Quote:
Do you have some sort of shopping coupon add-on your browser?
nope dont shop for too much online do most of that live
how do you know it wants me to buy a vacuum cleaner? LOL
My System SpecsSystem Spec
23 Aug 2012   #5

Windows 7 Ultimate x64
 
 

When you say you're using Windows Defender, is this what you mean: Windows Defender Offline
My System SpecsSystem Spec
23 Aug 2012   #6

Microsoft Windows 7 Home Premium 32-bit
 
 

no but i do have that & will use it if problem R problems cant be resolved without rebooting & selecting to boot from cd the one im using came with my install of Windows 7 i dont trust it to prevent most attacks so i got it disabled but still within my os
my scan with Trojan remover popped up some stuff rebooting now & ill see if it stops this from happening then check the file locations to see if still there

update: ok rebooted after TR found a few virus's & didnt remove the problem infact i think it made a few adjustments to my pc such as removing my pinned taskbar firefox icon & now im seeing consent.exe in task manager along with OrgcjkK.exe & adding another folder to my C:\ProgramData\
My System SpecsSystem Spec
23 Aug 2012   #7

Microsoft Windows 7 Home Premium 32-bit
 
 

man i should have just gone with my gut because i deleted the files with the os delete like i did with the FBI Moneypak a month ago
My System SpecsSystem Spec
23 Aug 2012   #8

Windows 7 Ultimate x64
 
 

Not sure what you mean by "TR".

The Windows Defender Offline app is a completely different animal than the installed Windows Defender. I think it's definitely worth trying as the OS and malware is not running when using it, and therefore cannot interfere (helps prevent malware from hiding itself). The online version is more like a generic antimalware app (not to be used in place of antivirus); the offline version is geared more towards identifying rootkits, viruses, as well as malware (more of an anti-everything).
My System SpecsSystem Spec
23 Aug 2012   #9

Windows 7 Pro. 64/SP-1
 
 

Orgcjk when Googled goes here.
Oreck

That picture reminds me of one of those things you are to try to find another picture inside that picture.
As F5ing has posted this is what I also recommend.
Windows Defender Offline

If it was my computer I would remove all the anti programs and install MSE.
Microsoft Security Essentials - Free Antivirus for Windows
This is another great program I and many others recommend.
http://www.malwarebytes.org/products/malwarebytes_free/
My System SpecsSystem Spec
24 Aug 2012   #10

Microsoft Windows 7 Home Premium 32-bit
 
 

Quote:
That picture reminds me of one of those things you are to try to find another picture inside that picture.
lol
Quote:
As F5ing has posted this is what I also recommend.
Windows Defender Offline
i plan it on soon but i think this virus is solved after i deleted all the files

already got it
My System SpecsSystem Spec
Reply

 registry cosole tool keeps asking for permission & maybe i got a virus




Thread Tools



Similar help and support threads for2: registry cosole tool keeps asking for permission & maybe i got a virus
Thread Forum
Solved New User created without my permission? Doesn't exist in registry. General Discussion
Registry problem after windows update and registry optimization tool Backup and Restore
Permission Research virus System Security
Registry Permission Group or usernames question Performance & Maintenance
Software to trace Folder & Registry permission details Software
Command line Registry Permission General Discussion
Registry permission error in Windows 7 64 bits BSOD Help and Support

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 03:26 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33