Jump to content

Welcome to Geeks to Go
Geeks to Go Welcome
Create Account Login to Account
Photo

Removal instructions for Gargizer System Repair

- - - - - (877)-883-7061

  • Please log in to reply
No replies to this topic

#1
Metallica

Metallica

    Spyware Veteran

  • GeekU Moderator
  • 32,305 posts
Content is republished with permission from Malwarebytes.

What is Gargizer System Repair?

The Malwarebytes research team has determined that Gargizer System Repair is a "system optimizer". These so-called "system optimizers" use intentional false positives to convince users that their systems have problems. Then they try to sell you their software, claiming it will remove these problems.
More information can be found on our Malwarebytes Labs blog.

How do I know if I am infected with Gargizer System Repair?

This is how the main screen of the sytem optimizer looks:

main.png

You will find these icons in your taskbar, your startmenu, and on your desktop:

icons.png

and see this warning during install:

warning1.png

and this screen during "operations":

warning5.png

You may see this entry in your list of installed programs:

warning4.png

and this task in your list of Scheduled Tasks:

warning3.png

How did Gargizer System Repair get on my computer?

These so-called system optimizers use different methods of getting installed. This particular one was downloaded from their website:

website.png

after being promoted by a fake online scanner:

onlinescanner.png

How do I remove Gargizer System Repair?

Our program Malwarebytes can detect and remove this potentially unwanted application.
  • Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
Is there anything else I need to do to get rid of Gargizer System Repair?
  • No, Malwarebytes removes Gargizer System Repair completely.
  • This PUP creates a scheduled task. You can read here how to check for and, if necessary, remove Scheduled Tasks.
How would the full version of Malwarebytes help protect me?

We hope our application and this guide have helped you eradicate this system optimizer.

As you can see below the full version of Malwarebytes would have protected you against the Gargizer System Repair installer. It would have warned you before the application could install itself, giving you a chance to stop it before it became too late.

protection1.png


and we block access to their domain and the fake online scanners:

protection2.png


Technical details for experts

You may see these entries in FRST logs:

 (gargizer.com) C:\Program Files\Gargizer System Repair\PCDUI.exe
 C:\abtext.txt
 C:\Windows\System32\Tasks\Gargizer System Repair_Logon
 C:\Users\Public\Desktop\Gargizer System Repair.lnk
 C:\Users\{username}\AppData\Roaming\gargizer.com
 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gargizer System Repair
 C:\ProgramData\gargizer.com
 C:\Program Files\Gargizer System Repair

Gargizer System Repair (HKLM\...\4E0597B8-F201-4ECB-AC52-99BF3C77BA42_is1) (Version: 1.0.0.38471 - gargizer.com)
Task: {B41D674F-C66C-47AA-803F-D9202D1A2540} - System32\Tasks\Gargizer System Repair_Logon => C:\Program Files\Gargizer System Repair\PCDUI.exe [2017-12-09] (gargizer.com)
Alterations made by the installer:

File system details [View: All details] (Selection)
---------------------------------------------------
    In the existing folder C:
       Adds the file abtext.txt"="12/18/2017 9:30 AM, 2412 bytes, A
    Adds the folder C:\Program Files\Gargizer System Repair
       Adds the file AMPIEDecoder.dll"="12/9/2017 3:50 PM, 83656 bytes, A
       Adds the file HtmlRenderer.dll"="12/9/2017 3:50 PM, 228040 bytes, A
       Adds the file HtmlRenderer.WinForms.dll"="12/9/2017 3:50 PM, 66760 bytes, A
       Adds the file Interop.IWshRuntimeLibrary.dll"="12/9/2017 3:50 PM, 55496 bytes, A
       Adds the file Interop.WUApiLib.dll"="12/9/2017 3:50 PM, 92360 bytes, A
       Adds the file Microsoft.TeamFoundation.Common.dll"="12/9/2017 3:50 PM, 636616 bytes, A
       Adds the file Microsoft.Win32.TaskScheduler.dll"="12/9/2017 3:50 PM, 177352 bytes, A
       Adds the file NAudio.dll"="12/9/2017 3:50 PM, 477384 bytes, A
       Adds the file Newtonsoft.Json.dll"="12/9/2017 3:50 PM, 471752 bytes, A
       Adds the file PCDRes.dll"="12/9/2017 3:50 PM, 5780168 bytes, A
       Adds the file PCDUI.exe"="12/9/2017 3:50 PM, 3058376 bytes, A
       Adds the file PCDUI.exe.config"="12/9/2017 3:50 PM, 3702 bytes, A
       Adds the file System.Data.SQLite.DLL"="12/9/2017 3:50 PM, 297160 bytes, A
       Adds the file System.Data.SQLite.Linq.dll"="12/9/2017 3:50 PM, 202952 bytes, A
       Adds the file System.Threading.dll"="12/9/2017 3:50 PM, 386760 bytes, A
       Adds the file TAFactory.IconPack.dll"="12/9/2017 3:50 PM, 43208 bytes, A
       Adds the file TaskScheduler.dll"="12/9/2017 3:50 PM, 47304 bytes, A
       Adds the file unins000.dat"="12/18/2017 9:28 AM, 84821 bytes, A
       Adds the file unins000.exe"="12/18/2017 9:27 AM, 1258184 bytes, A
       Adds the file unins000.msg"="12/18/2017 9:28 AM, 22701 bytes, A
    Adds the folder C:\Program Files\Gargizer System Repair\langs
       Adds the file danish_apc_da.ini"="11/11/2017 1:46 PM, 45746 bytes, A
       Adds the file Dutch_apc_nl.ini"="11/11/2017 1:46 PM, 46324 bytes, A
       Adds the file english_apc_en.ini"="12/4/2017 1:05 PM, 81708 bytes, A
       Adds the file finish_apc_fi.ini"="11/11/2017 1:46 PM, 45986 bytes, A
       Adds the file French_apc_fr.ini"="12/4/2017 4:14 PM, 96414 bytes, A
       Adds the file german_apc_de.ini"="12/4/2017 4:14 PM, 93494 bytes, A
       Adds the file italian_apc_it.ini"="11/11/2017 1:42 PM, 48180 bytes, A
       Adds the file japanese_apc_ja.ini"="11/30/2017 8:20 PM, 62582 bytes, A
    Adds the folder C:\Program Files\Gargizer System Repair\x64
       Adds the file SQLite.Interop.dll"="5/7/2015 5:37 PM, 1175552 bytes, A
    Adds the folder C:\Program Files\Gargizer System Repair\x86
       Adds the file SQLite.Interop.dll"="5/7/2015 5:37 PM, 854528 bytes, A
    Adds the folder C:\ProgramData\gargizer.com\Gargizer System Repair
       Adds the file mpc.db"="11/27/2017 12:58 PM, 835584 bytes, A
    Adds the folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gargizer System Repair
       Adds the file Buy Gargizer System Repair.lnk"="12/18/2017 9:28 AM, 921 bytes, A
       Adds the file Gargizer System Repair.lnk"="12/18/2017 9:28 AM, 909 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\gargizer.com
    Adds the folder C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair
       Adds the file Errorlog.txt"="12/18/2017 9:32 AM, 29344 bytes, A
       Adds the file exlist.bin"="12/18/2017 9:30 AM, 258239 bytes, A
       Adds the file lastScanResult.bin"="12/18/2017 9:33 AM, 44770 bytes, A
       Adds the file notifier.xml"="12/18/2017 9:33 AM, 5145 bytes, A
       Adds the file param.ini"="12/18/2017 9:28 AM, 376 bytes, A
       Adds the file update.xml"="12/18/2017 9:33 AM, 12248 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog
       Adds the file Bookmark_Backup.xml"="12/18/2017 9:30 AM, 1248 bytes, A
       Adds the file Cache.xml"="12/18/2017 9:30 AM, 39127 bytes, A
       Adds the file Cookies.xml"="12/18/2017 9:30 AM, 5596 bytes, A
       Adds the file Dump_Files.xml"="12/18/2017 9:30 AM, 154 bytes, A
       Adds the file History.xml"="12/18/2017 9:30 AM, 1735 bytes, A
       Adds the file LogFilesActivityTrace.xml"="12/18/2017 9:30 AM, 513 bytes, A
       Adds the file OldPrefetch.xml"="12/18/2017 9:30 AM, 9192 bytes, A
       Adds the file Session.xml"="12/18/2017 9:30 AM, 2048 bytes, A
       Adds the file Temp_Internet_Files_Folder.xml"="12/18/2017 9:30 AM, 56182 bytes, A
       Adds the file TempFiles.xml"="12/18/2017 9:30 AM, 58527 bytes, A
       Adds the file ThumbnailCache.xml"="12/18/2017 9:30 AM, 936 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\smico
    In the existing folder C:\Users\{username}\Desktop
       Adds the file gargizersetup.exe"="12/14/2017 4:43 PM, 5540016 bytes, A
    In the existing folder C:\Users\Public\Desktop
       Adds the file Gargizer System Repair.lnk"="12/18/2017 9:28 AM, 891 bytes, A
    In the existing folder C:\Windows\System32\Tasks
       Adds the file Gargizer System Repair_Logon"="12/18/2017 9:28 AM, 3060 bytes, A

Registry details [View: All details] (Selection)
------------------------------------------------
    [HKEY_LOCAL_MACHINE\SOFTWARE\gargizer.com\Gargizer System Repair]
       "affiliateid"="REG_SZ", ""
       "affired"="REG_DWORD", 1
       "afterInstallUrl"="REG_SZ", "http://ins.gargizer.com/install/ggz/?"
       "btnid"="REG_SZ", ""
       "cbkpoff"="REG_DWORD", 1
       "country"="REG_SZ", ""
       "cta"="REG_DWORD", 0
       "delay"="REG_DWORD", 0
       "dlllist"="REG_SZ", "PSMACHINE_64.DLL,MSSPELLCHECKINGFACILITY.DLL"
       "EmailURL"="REG_SZ", "[email protected]"
       "expired"="REG_DWORD", 0
       "hdata"="REG_BINARY, ....................................................................................................................................................................................................................................................................................................................................................................................................................................
       "Installstring"="REG_SZ", "C:\Program Files\Gargizer System Repair"
       "isphone"="REG_DWORD", 0
       "issilent"="REG_DWORD", 0
       "LangCode"="REG_SZ", "en"
       "lcname"="REG_SZ", "Tech Live Connect"
       "lpid"="REG_SZ", ""
       "msl"="REG_DWORD", 1
       "ovoffdis"="REG_DWORD", 0
       "phone"="REG_SZ", "877-883-7061"
       "Phone_at"="REG_SZ", "(800)-180-0926"
       "Phone_au"="REG_SZ", "1800-764-389"
       "Phone_ch"="REG_SZ", "(800)-180-0926"
       "Phone_de"="REG_SZ", "(800)-180-0926"
       "Phone_fr"="REG_SZ", "(334)-88627945"
       "Phone_gb"="REG_SZ", "(800)-404-8430"
       "Phone_ja"="REG_SZ", "0120-993-506"
       "Phone_jp"="REG_SZ", "0120-993-506"
       "Phone_lu"="REG_SZ", "(800)-180-0926"
       "Phone_uk"="REG_SZ", "(800)-404-8430"
       "Phone_us"="REG_SZ", "(877)-883-7061"
       "playsound"="REG_DWORD", 1
       "prereg"="REG_DWORD", 0
       "PurchaseURL"="REG_SZ", "http://gargizer.esecureshoppe.com/ggz/price/?"
       "pxl"="REG_SZ", "WAD2233_WAD2187_RUNT"
       "referurl"="REG_SZ", ""
       "reg"="REG_DWORD", 0
       "RenewURL"="REG_SZ", "http://gargizer.esecureshoppe.com/ggz/renewal/?"
       "runcam"="REG_DWORD", 1
       "runpixel"="REG_DWORD", 1
       "runsrc"="REG_DWORD", 1
       "sendlogsurl"="REG_SZ", ""
       "showtn"="REG_DWORD", 0
       "supporturl"="REG_SZ", "http://www.gargizer.com/help/"
       "utm_campaign"="REG_SZ", "wadsphere"
       "utm_medium"="REG_SZ", ""
       "utm_pubid"="REG_SZ", "316e7265-5769-4b85-adc0-4e256c5c8ed1"
       "utm_source"="REG_SZ", "wadsphere"
       "WebURL"="REG_SZ", "http://www.gargizer.com/"
       "x-at"="REG_SZ", "vs128"
       "x-ccode"="REG_SZ", "nl"
       "x-context"="REG_SZ", "d2I3DGHR23DF6FCAH5HJTT7M"
       "x-datetime"="REG_SZ", "12-18-2017 08:28:29 AM"
       "x-fetch"="REG_SZ", "1"
       "x-ip"="REG_SZ", "163_158_232_234"
       "x-plt"="REG_SZ", ""
       "x-var1"="REG_SZ", ""
       "x-var2"="REG_SZ", ""
       "x-var3"="REG_SZ", ""
    [HKEY_LOCAL_MACHINE\SOFTWARE\ggz-pr]
       "affiliateid"="REG_SZ", ""
       "country"="REG_SZ", ""
       "efophone"="REG_SZ", "(855)-392-7237"
       "LangCode"="REG_SZ", "en"
       "phone"="REG_SZ", ""
       "pxl"="REG_SZ", "WAD2233_WAD2187_RUNT"
       "showefono"="REG_DWORD", 1
       "utm_campaign"="REG_SZ", "wadsphere"
       "utm_medium"="REG_SZ", ""
       "utm_pubid"="REG_SZ", ""
       "utm_source"="REG_SZ", "wadsphere"
       "x-at"="REG_SZ", ""
       "x-context"="REG_SZ", ""
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\4E0597B8-F201-4ECB-AC52-99BF3C77BA42_is1]
       "DisplayIcon"="REG_SZ", "C:\Program Files\Gargizer System Repair\PCDUI.exe"
       "DisplayName"="REG_SZ", "Gargizer System Repair"
       "DisplayVersion"="REG_SZ", "1.0.0.38471"
       "EstimatedSize"="REG_DWORD", 16440
       "Inno Setup: App Path"="REG_SZ", "C:\Program Files\Gargizer System Repair"
       "Inno Setup: Icon Group"="REG_SZ", "Gargizer System Repair"
       "Inno Setup: Language"="REG_SZ", "en"
       "Inno Setup: Setup Version"="REG_SZ", "5.5.5 (u)"
       "Inno Setup: User"="REG_SZ", "{username}"
       "InstallDate"="REG_SZ", "20171218"
       "InstallLocation"="REG_SZ", "C:\Program Files\Gargizer System Repair\"
       "MajorVersion"="REG_DWORD", 1
       "MinorVersion"="REG_DWORD", 0
       "NoModify"="REG_DWORD", 1
       "NoRepair"="REG_DWORD", 1
       "Publisher"="REG_SZ", "gargizer.com"
       "QuietUninstallString"="REG_SZ", ""C:\Program Files\Gargizer System Repair\unins000.exe" /SILENT"
       "UninstallString"="REG_SZ", ""C:\Program Files\Gargizer System Repair\unins000.exe""
    [HKEY_LOCAL_MACHINE\SOFTWARE\Z2FyZ2l6ZXIuY29t\R2FyZ2l6ZXIgU3lzdGVtIFJlcGFpcg==\ACT]
       "data"="REG_BINARY, ............................................................................................................................................................................................................................................................................................................................................
    [HKEY_CURRENT_USER\Software\gargizer.com\Gargizer System Repair]
       "affiliateid"="REG_SZ", ""
       "btnid"="REG_SZ", ""
       "Installstring"="REG_SZ", "C:\Program Files\Gargizer System Repair"
       "LangCode"="REG_SZ", "en"
       "lpid"="REG_SZ", ""
       "phone"="REG_SZ", "877-883-7061"
       "pxl"="REG_SZ", "WAD2233_WAD2187_RUNT"
       "referurl"="REG_SZ", ""
       "utm_campaign"="REG_SZ", "wadsphere"
       "utm_medium"="REG_SZ", ""
       "utm_pubid"="REG_SZ", "316e7265-5769-4b85-adc0-4e256c5c8ed1"
       "utm_source"="REG_SZ", "wadsphere"
       "x-at"="REG_SZ", "vs128"
       "x-context"="REG_SZ", "d2I3DGHR23DF6FCAH5HJTT7M"
       "x-datetime"="REG_SZ", "12-18-2017 08:28:29 AM"
       "x-fetch"="REG_SZ", "1"
       "x-ip"="REG_SZ", "163_158_232_234"
       "x-plt"="REG_SZ", ""
       "x-var1"="REG_SZ", ""
       "x-var2"="REG_SZ", ""
       "x-var3"="REG_SZ", ""
    [HKEY_CURRENT_USER\Software\gargizer.com\Gargizer System Repair\1.0.0.38471]

Malwarebytes log:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 12/18/17
Scan Time: 9:44 AM
Log File: a8e77922-e3cf-11e7-af1a-080027750297.json
Administrator: Yes

-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.236
Update Package Version: 1.0.3511
License: Premium

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: {computername}\{username}

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 244546
Threats Detected: 80
Threats Quarantined: 80
Time Elapsed: 2 min, 10 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 1
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\PCDUI.exe, Quarantined, [1423], [465970],1.0.3511

Module: 10
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\x64\SQLite.Interop.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Interop.IWshRuntimeLibrary.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Interop.WUApiLib.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Microsoft.TeamFoundation.Common.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Microsoft.Win32.TaskScheduler.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\NAudio.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\PCDUI.exe, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\System.Data.SQLite.DLL, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\System.Threading.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\TAFactory.IconPack.dll, Quarantined, [1423], [465970],1.0.3511

Registry Key: 7
PUP.Optional.Gargizer, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\4E0597B8-F201-4ECB-AC52-99BF3C77BA42_is1, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, HKCU\SOFTWARE\GARGIZER.COM\Gargizer System Repair, Quarantined, [1423], [465990],1.0.3511
PUP.Optional.Gargizer, HKLM\SOFTWARE\ggz-pr, Quarantined, [1423], [465989],1.0.3511
PUP.Optional.Gargizer, HKLM\SOFTWARE\Z2FyZ2l6ZXIuY29t, Quarantined, [1423], [465986],1.0.3511
PUP.Optional.Gargizer, HKLM\SOFTWARE\GARGIZER.COM\Gargizer System Repair, Quarantined, [1423], [465992],1.0.3511
PUP.Optional.Gargizer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B41D674F-C66C-47AA-803F-D9202D1A2540}, Quarantined, [1423], [465973],1.0.3511
PUP.Optional.Gargizer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Gargizer System Repair_Logon, Quarantined, [1423], [465977],1.0.3511

Registry Value: 1
PUP.Optional.Gargizer, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B41D674F-C66C-47AA-803F-D9202D1A2540}|PATH, Quarantined, [1423], [465973],1.0.3511

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 10
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\x64, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\x86, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\PROGRAM FILES\GARGIZER SYSTEM REPAIR, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\ProgramData\gargizer.com\Gargizer System Repair, Quarantined, [1423], [465995],1.0.3511
PUP.Optional.Gargizer, C:\PROGRAMDATA\GARGIZER.COM, Quarantined, [1423], [465995],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\smico, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\USERS\{username}\APPDATA\ROAMING\GARGIZER.COM, Quarantined, [1423], [465994],1.0.3511

File: 51
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\danish_apc_da.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\Dutch_apc_nl.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\english_apc_en.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\finish_apc_fi.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\French_apc_fr.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\german_apc_de.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\italian_apc_it.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\langs\japanese_apc_ja.ini, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\x64\SQLite.Interop.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\x86\SQLite.Interop.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\PCDRes.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\AMPIEDecoder.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\HtmlRenderer.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\HtmlRenderer.WinForms.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Interop.IWshRuntimeLibrary.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Interop.WUApiLib.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Microsoft.TeamFoundation.Common.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Microsoft.Win32.TaskScheduler.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\NAudio.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\Newtonsoft.Json.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\PCDUI.exe, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\PCDUI.exe.config, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\System.Data.SQLite.DLL, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\System.Data.SQLite.Linq.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\System.Threading.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\TAFactory.IconPack.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\TaskScheduler.dll, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\unins000.dat, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\unins000.exe, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\Program Files\Gargizer System Repair\unins000.msg, Quarantined, [1423], [465970],1.0.3511
PUP.Optional.Gargizer, C:\WINDOWS\SYSTEM32\TASKS\Gargizer System Repair_Logon, Quarantined, [1423], [465980],1.0.3511
PUP.Optional.Gargizer, C:\PROGRAMDATA\GARGIZER.COM\GARGIZER SYSTEM REPAIR\MPC.DB, Quarantined, [1423], [465995],1.0.3511
PUP.Optional.Gargizer, C:\USERS\PUBLIC\DESKTOP\GARGIZER SYSTEM REPAIR.LNK, Quarantined, [1423], [465998],1.0.3511
PUP.Optional.Gargizer, C:\USERS\{username}\APPDATA\ROAMING\GARGIZER.COM\GARGIZER SYSTEM REPAIR\PARAM.INI, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\Bookmark_Backup.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\Cache.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\Cookies.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\Dump_Files.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\History.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\LogFilesActivityTrace.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\OldPrefetch.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\Session.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\TempFiles.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\Temp_Internet_Files_Folder.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\junklog\ThumbnailCache.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\Errorlog.txt, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\exlist.bin, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\lastScanResult.bin, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\notifier.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\Users\{username}\AppData\Roaming\gargizer.com\Gargizer System Repair\update.xml, Quarantined, [1423], [465994],1.0.3511
PUP.Optional.Gargizer, C:\USERS\{username}\DESKTOP\GARGIZERSETUP.EXE, Quarantined, [1423], [467047],1.0.3511

Physical Sector: 0
(No malicious items detected)


(end)
As mentioned before the full version of Malwarebytes could have protected your computer against this threat.
We use different ways of protecting your computer(s):
  • Dynamically Blocks Malware Sites & Servers
  • Malware Execution Prevention
Save yourself the hassle and get protected.
  • 0

Advertisements






Also tagged with one or more of these keywords: (877)-883-7061

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

featured
Malware Removal How to Guides Windows 7 System Building Download Files Register welcome

Never used a forum? Learn how.