Jump to content

Windows Update malicious ?


prallo
 Share

Recommended Posts

  • Staff

Hello,

Can you search for `cmd.exe` from the windows menu, right click on it > Execute as Administrator.

Then, write the following in the black window and press enter:

regedit /e c:\prallo.reg "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\Update service"

Then, please attach the file C:\prallo.reg in your next answer.

Thanks!

Link to post
Share on other sites

Now I let AdwCleaner clean that entry and after a reboot the screen freezes after about 1 minute for about half a minute, then unfreezes and freezes again for about half a minute and so on.

Did a backup with Clonezilla before I let AdwCleaner clean the entry, so I will go back to that backup.

How do I get rid of that thing without freezing the screen again and again ?

 

Link to post
Share on other sites

After letting AdwCleaner clean the entry it looks like this:

Note that the Update service folder is gone, deleted by AdwCleaner ! And then of course the freezes as described above appear again. :(

Unbenannt2.thumb.PNG.bcd6492f1c1b5fa7aff4ede2ef0fbc2a.PNG

Edited by prallo
Link to post
Share on other sites

Here is the log after I cleaned the above 2 entries with AdwCleaner:

 

regedit /e c:\prallo.reg "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\Update service"

produced nothing because the update service "folder" is no longer there !

Can it be that these entries are not malicious ?

 

Oh, and after deleting these 2 entries the computer freezes every minute again !

 

AdwCleaner[S97].txt

Edited by prallo
Link to post
Share on other sites

  • Staff
1 hour ago, prallo said:

produced nothing because the update service "folder" is no longer there !

Can it be that these entries are not malicious ?

It doesn't show any longer because it's simply not here anymore.

1 hour ago, prallo said:

Oh, and after deleting these 2 entries the computer freezes every minute again !

Those freezes do not occur before the deletion of the Task "System\SystemCheck"? Do they persist after a reboot?

Link to post
Share on other sites

I just had an idea:

I downloaded the Windows 10 Home Iso from Microsoft, put it into the drive while in Windows and clicked setup.

Did a installation but kept the personal files and settings.

After I opened AdwCleaner and deleted these 2 entries.

After the reboot the computer didn´t freeze anymore !!!

Problem is solved but I don´t know why exactly it is O.K. now.

And as you can see in the attachment the Windows Update "folder" is not there but the computer is running fine.

Thanks for your help !

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.