Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Emisoft Emergency Kit found maleware?

06 May 2015   #1
Article 86

Windows 7 Professional 64-bit v6.1.7601 SP1 Build 7601 (upgrade from Home Premium)
 
 
Emisoft Emergency Kit found maleware?

I just ran EEK (freeware) and it reports 4 items. Should I quarantine them, remove them, or just tag them as "allowed".

1) Application.AdTool (A) says "No Risk"
2) Application.Win32.WSearch (A) says "No Risk"
3) Setting.DisableTaskMgr (A) suggests nothing
4) Setting.DisableRegistryTools (A) suggests nothing

I searched the Emisoft site for these and there is nothing about them ... figures. I have no other virus programs running when I scan. Norton 360 is the only tool that I normally leave active and it finds nothing. I also ran Windows Defender and it reports nothing. With EEK, I have seen #1 and #2 before and I just left them alone as it claims "No Risk". Why would they flag something in a scan if it wasn't a problem? #3 and #4 are new and have me worried. One other thing, I run CCleaner Free regularly and clean purportedly problem registry items. It shows no registry issues. Could this be related? Is EEK worthwhile? Are these false positives? EEK did find a MBR rootkit years ago that others did not, so I kept it. Any help/suggestions are greatly appreciated.
- Art


My System SpecsSystem Spec
.
07 May 2015   #2
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

Any reference to AdTool is suspicious at the least. A Google search reveals 1 & 2 to be adware. Also, it appears your registry tools & task manager have been disabled, a trick employed by adware/malware.

D/L & run AdwCleaner. Next, to rule out the possibility of rootkits, D/L & run TDSSkiller & RKill.

NOTE: When running TDSSKiller, launch the program, click on the blue text "Change Parameters" & check the box marked "Detect TDLFS File system." Click OK & then run the scan.

Also recommended, after you run those tools, D/L & run Malwarebytes. The free version will work fine. Be sure to uncheck the "Start free trial of pro version" at the end of the installation & let it scan your system. Quarantine anything it finds.
My System SpecsSystem Spec
07 May 2015   #3
Article 86

Windows 7 Professional 64-bit v6.1.7601 SP1 Build 7601 (upgrade from Home Premium)
 
 

I followed your directions, but found that the RKill program is a DOS program, the first run of RKill did find some files that it did delete. Not knowing if I had run the program properly, I ran it again and unfortunately it had overwritten the original log file so I can't show you the original text file. The second text file shows that no files were found, so I again assume that all is well. I also ran AdwCleaner and TDSSKiller which reported nothing, and I then ran MalewareBytes (Free) and also found nothing.

I should add, I forgot to mention that I previously ran MalewareBytes before all of this and it reported nothing then too. At his point I assume that all is well. I have to say that this forum seems far better than the Windows Knowledge Base. The people here are very responsive and knowledgeable, and it makes me wonder what, if any, connection to Microsoft you have. If not, Microsoft should be paying you for your excellent support of their products. You guys and gals are great! Thank you so much.

- Art
My System SpecsSystem Spec
.

07 May 2015   #4
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

I forgot to add the following info, which is mentioned on the page about RKill. It should be run & then the system should be scanned with malware scanners without rebooting. That fact that it found something means there may be some kind of rouge process was running.

Quote:
As RKill only terminates a program's running process, and does not delete any files, after running it you should not reboot your computer as any malware processes that are configured to start automatically will just be started again. Instead, after running RKill you should immediately scan your computer using some sort of anti-malware or anti-virus program so that the infections can be properly removed.
Just to be sure, run RKill, do not reboot, & then scan with Malwarebytes, TDSSKiller & AdwCleaner again.
My System SpecsSystem Spec
07 May 2015   #5
Layback Bear

Windows 7 Pro. 64/SP-1
 
 

At the bottom of every page.

Quote:
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.
My System SpecsSystem Spec
07 May 2015   #6
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

Quote   Quote: Originally Posted by Article 86 View Post
The people here are very responsive and knowledgeable, and it makes me wonder what, if any, connection to Microsoft you have. If not, Microsoft should be paying you for your excellent support of their products. You guys and gals are great! Thank you so much.

- Art
Yes, there are great people in here always willing to help someone & also excellent tutorials that you can look at.

http://www.sevenforums.com/tutorials/
My System SpecsSystem Spec
Reply

 Emisoft Emergency Kit found maleware?




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Known (strange) error, probably maleware, not sure
Hi I just restarted my laptop (Dell Studio XPS L502 i7) and I received this strange error (check attachment screenshot) ... this is the first time I received this error and being honest .. I'm a bit worried .. is it some sort of virus/maleware or something similar? Please advise. Thanks...
System Security
DSL issues- could malware be at fault? Maleware I can't detect?
I've been having internet issues since roughly January, which started at night between midnight and 6 AM, but has become more frequent. I generally suspect an ISP issue, or maybe a modem going faulty(it's a Netopia modem my ISP gave me 6 years ago). I have a technician coming out Tuesday to check...
System Security
Security Suites - AV/Firewall/Maleware
I just got a new computer and it came with a trial of Norton Internet Security. I generally use Avast Free version and either the Windows Firewall or Comodo. Its been a while since I researched the different products and wondered what are some of the better integrated product suites? I see that...
System Security
EMERGENCY- Sony Vaio "Operating System Not Found" (friend's drive!)
My friend's hard drive in his Sony Vaio was riddled with viruses, malware, rootkits, you name it. I just had this hard drive in & out of my rig for the past couple days. I got it all set up fine, albeit with Win XP MCE, only installed my ethernet driver, and was all set to put it back in his...
Hardware & Devices
Anti spyware/maleware/virus boot disk?
A few months back when I was reading these forums I remember one of the experts here recommending a free program to do this. Can one of you tell me the link to get this kind of a thing so I can create a boot disk to do this kind of stuff for Windows that won't run?
System Security
Network Maleware/Spyware Scanners
Do any vendors offer the ability to scan for malware/spyware for a network of PC's? At the office we have about 35 PC and it would be nice to periodically scan them beyond the standard virus scans. Thanks,
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 14:57.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App