Solved Trying to remove Generic.Trojan.DiscordStealer.B.D6426E8C

  • Hi there and welcome to PC Help Forum (PCHF), a more effective way to get the Tech Support you need!
    We have Experts in all areas of Tech, including Malware Removal, Crash Fixing and BSOD's , Microsoft Windows, Computer DIY and PC Hardware, Networking, Gaming, Tablets and iPads, General and Specific Software Support and so much more.

    Why not Click Here To Sign Up and start enjoying great FREE Tech Support.

    This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Welcome to our Community
Wanting to join the rest of our members? Feel free to sign up today.
Sign up
Status
Not open for further replies.
Send this file to virustotal.

c:\users\theph\desktop\prinjectorfree\prinjector.exe

This is what Bitdefnder is saying is a virus. I believe this is a false positive, but we will see what virustotal says, if you do not know what this file is delete it.
 
OK. While I look over the ZHP log, scan with bitdefender again to see if the issue is still present.
 
Yep its still there.

Its not really doing anything to my PC
Its just there and I wanna try and get rid of it without resetting my pc
 
Copy the content of the code box below.
Do not copy the word code!!!
Right Click FRST and run as Administrator.
Click Fix once (!) and wait. The program will create a log file (Fixlog.txt).
Attach it to your next message.

Code: 
Start::
CloseProcesses:
SystemRestore: On
CreateRestorePoint:
RemoveProxy:
VirusTotal: C:\Windows\Installer\Razer\Installer\1652838079gKQ1VdssRazerChromaBroadcasterSetup_v3.7.0531.051809.exe
VirusTotal: C:\Windows\Installer\Razer\Installer\1652838079gKQ1VdssRazerChromaBroadcasterSetup_v3.7.0531.051809.exe
VirusTotal: C:\Windows\Installer\Razer\Installer\1652838079gKQ1VdssRazerChromaBroadcasterSetup_v3.7.0531.051809.exe
VirusTotal: C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.13.0_x64__qmba6cd70vzyy\MyASUSUpdatedTask\PlugIn\UpdateMessenger.exe
VirusTotal: C:\Windows\Installer\Razer\Installer\1652838079gKQ1VdssRazerChromaBroadcasterSetup_v3.7.0531.051809.exe
VirusTotal: C:\Program Files\Cheat Engine 7.4\ceregreset.exe
VirusTotal: c:\users\theph\desktop\prinjectorfree\prinjector.exe
DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|ut
DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Salad
DeleteValue: HKEY_USERS\S-1-5-21-1958790192-829533772-2814255167-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|ut
DeleteValue: HKEY_USERS\S-1-5-21-1958790192-829533772-2814255167-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Salad
DeleteValue: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|THX22adHelper
DeleteValue: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|THX051cHelper
DeleteValue: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|LogMeIn Hamachi Ui 
DeleteValue: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|SunJavaUpdateSched 
DeleteKey: HKCU\SOFTWARE\05aa181a-e2c4-5231-ae02-02af49144086
DeleteKey: HKCU\SOFTWARE\ac231ef6-6414-5f8d-b36f-3b57705721dd
DeleteKey: HKU\S-1-5-21-1958790192-829533772-2814255167-1001\SOFTWARE\05aa181a-e2c4-5231-ae02-02af49144086
DeleteKey: HKU\S-1-5-21-1958790192-829533772-2814255167-1001\SOFTWARE\ac231ef6-6414-5f8d-b36f-3b57705721dd
C:\ProgramData\AnchorFree_Inc
C:\ProgramData\LogMeIn
C:\Users\theph\AppData\Local\7548048801bead4d93ddf6a662bae9cf
C:\Users\theph\AppData\Local\UT008
c:\users\theph\desktop\prinjectorfree\prinjector.exe
C:\ProgramData\DP45977C.lfl
C:\Windows\Temp\*.*
C:\WINDOWS\system32\*.tmp
C:\WINDOWS\syswow64\*.tmp
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state On
emptytemp:
Reboot:
End::
Remove malwarebytes with this tool.

Instructions in link.

support.malwarebytes.com

Uninstall and reinstall Malwarebytes using the Malwarebytes Support Tool

The Malwarebytes Support Tool troubleshoots, repairs, and resolves issues with Malwarebytes for Windows. If you're experiencing a technical issue with Malwarebytes for Windows, you can use the Malw...
support.malwarebytes.com support.malwarebytes.com

Save it to your desktop.
I suggest a full scan with Kaspersky.
Disable Defender/antivirus prior to scanning......
Download and run a full scan with the Kaspersky Virus Removal tool.
Accept the terms.
Click Change Parameters.
Select the System drive.
All volumes.
Click OK, start Scan.
Delete any detected items.
Report any detections here.




Capture.PNG
 
Still scanning atm...Theses are the only options what should I do?

zqV7OW4JM5.png
 
Last edited by a moderator:
Delete the second one the first one is what I removed, and is already in quarantine.

Well you can delete both, no harm and post the last fix log please.
 
Yep, Im thinking something is wrong with bitdefender, I am not seeing any malware nor did Kaspersky or Dr Web. Remove Bitdefender with Geek uninstaller and reboot reinstall it and scan again please. 🙂
 
Good deal, and if it is detected agian, please post a screen shot of the detection, and if the file path is also listed, please post a screen shot of that.
 
This is what shows up on Bitdefender.

ODScanLogViewIE_hGBg1y0xg4.png
 

Attachments

  • SKtpEWsBps.png
    SKtpEWsBps.png
    8.6 KB · Views: 6
  • 1672617628339.png
    1672617628339.png
    9.4 KB · Views: 6
This online scanner uses Bitdefender and Arcabit engines, it will remove anything detected and very good at doing so.

This is a scanner based out of Poland, so it is not in english.


Disable Bitdefender.
Download Arcabit Online scanner from the link below.
Save it to your desktop.
Right click. Run as administrator.
Click Rozpocznij skanowanie systemu which is Start a system scan
Allow it to complete, once finished click on the Usun zagrozenia which is Remove Threats.
Make sure and screen shot the detection.
Then exit out of the program.
 
We can run a few more checks, but I think bitdefender is wrong here.... Post fresh frst and addition.txt logs for me to review, I will check again to make certain I did not miss anything.
Along with these scans.

TdssKiller Scan.

Download TdssKiller from ====> Here.
Save to your desktop.
Right click and run as administrator.
Click Accept to the agreement.
Click on change parameters.
Make sure all items are ticked.
A reboot will be required.
Start the program again after reboot.
Click start scan.
If anything is detected click on report and copy the log.
Post it here.



ZHP cleaner Scan.


Please download Zhp Cleaner to your desktop. Right Click the icon and select run as administrator.
Once you have started the program, you will need to click the scanner button.
The program will close all open browsers!
Once the scan is completed, the you will want to click the Repair button.
At the end of the process you may be asked to reboot your machine.
After you reboot a report will open on your desktop.
Attach the report here in your next reply.

Download RogueKiller and install the program.
Once downloaded and installed, right click and run as admin.
Click the check for updates button.
Go to scan setting then slide the MalPE option right to activate.
Then go to scan, then start a full scan on your machine.
Then click report when the scan completes.
Under Share my report click on open then select text file.
Copy it and paste the results here.
Make sure you do not remove anything detected until I see the log please.
 
Status
Not open for further replies.
Top Bottom