Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

regwork.exe

67 views
Skip to first unread message

Buffalo

unread,
May 16, 2012, 7:04:21 PM5/16/12
to
Anyone have a good idea on how to get rid of it?
A friend on mine has it. He is running Vista.
I have searched the Internet, but the suggestions vary.
I had him dl and install and update MBAM and run it, but regwork.exe still
persists.
I will have him update MBAM and then run a complete scan in SafeMode to see
if it persists.
Perhaps his RegWork is not malware after all.
Thanks,
Buffalo
PS: He runs Symantec and Windows Defender.


David H. Lipman

unread,
May 16, 2012, 7:34:25 PM5/16/12
to
From: "Buffalo" <Er...@nada.com.invalid>
It is real hard to go by just a name. It is insufficient information. A
file can be named anything.

--
Dave
Multi-AV Scanning Tool - http://multi-av.thespykiller.co.uk
http://www.pctipp.ch/downloads/dl/35905.asp

Buffalo

unread,
May 16, 2012, 7:58:17 PM5/16/12
to


David H. Lipman wrote:
> From: "Buffalo" <Er...@nada.com.invalid>
>
>> Anyone have a good idea on how to get rid of it?
>> A friend on mine has it. He is running Vista.
>> I have searched the Internet, but the suggestions vary.
>> I had him dl and install and update MBAM and run it, but regwork.exe
>> still persists.
>> I will have him update MBAM and then run a complete scan in SafeMode
>> to see
>> if it persists.
>> Perhaps his RegWork is not malware after all.
>> Thanks,
>> Buffalo
>> PS: He runs Symantec and Windows Defender.
>>
>
> It is real hard to go by just a name. It is insufficient
> information. A file can be named anything.

Thanks, I will try to get more info from him but I am not sure on what
questions to ask.
He only contacted me because his PC was sending out emails that he had
nothing to do with.
Amazingly, Comcast prevented me from receiving those emails and it just
contained a URL with some advertising on it.
I will find out more before I post again.
Thanks,
Buffalo


Virus Guy

unread,
May 16, 2012, 8:19:44 PM5/16/12
to
Buffalo wrote:

> Anyone have a good idea on how to get rid of it?
> A friend on mine has it.

Restart the system in DOS mode and do a file-find for regwork.exe and
delete it.

> He is running Vista.

Um, ya. Ok.

Put the computer in a box and place it at the curb the next time your
garbage is picked up.

Buffalo

unread,
May 16, 2012, 8:25:50 PM5/16/12
to
Deleting regwork.exe would not do it. A proper uninstall probably could.

Unfortunately he has to take his garbage to the dump himself, and, he just
can't stand the thought of parting with it. LOL
Buffalo


Virus Guy

unread,
May 16, 2012, 9:38:53 PM5/16/12
to
Buffalo wrote:

> > Restart the system in DOS mode and do a file-find for regwork.exe and
> > delete it.
> >
> >> He is running Vista.
>
> Deleting regwork.exe would not do it.

While vista is running - no, it probably wouldn't.

That's why I said to restart in DOS mode.

What's that you say?

Did you say that the supposedly better NT-line of Windoze doesn't have a
true command-line DOS-like interface?

Dustin

unread,
May 16, 2012, 11:16:25 PM5/16/12
to
Virus Guy <Vi...@Guy.com> wrote in news:4FB456AD...@Guy.com:

> Buffalo wrote:
>
>> > Restart the system in DOS mode and do a file-find for regwork.exe
and
>> > delete it.
>> >
>> >> He is running Vista.
>>
>> Deleting regwork.exe would not do it.
>
> While vista is running - no, it probably wouldn't.
>
> That's why I said to restart in DOS mode.

Umm..

> What's that you say?
>
> Did you say that the supposedly better NT-line of Windoze doesn't have
a
> true command-line DOS-like interface?

LOL! Of course it doesn't. DOS is emulated on an NT machine. An NT
machine actually has security. It's not a 32bit GUI shell riding along
side DOS, like win9x.

You use a PE disc. (An NT version of your DOS boot disk if you will).



--
Character is doing the right thing when nobody's looking. There are too
many people who think that the only thing that's right is to get by, and
the only thing that's wrong is to get caught. - J.C. Watts

FromTheRafters

unread,
May 17, 2012, 10:00:55 AM5/17/12
to
Yes, it (Vista) does.

Buffalo

unread,
May 17, 2012, 11:10:50 AM5/17/12
to
It would be better to uninstall the program than to just delete the .exe, as
you are well aware.
I just thought that someone here may have had experience with that
particular program.
Thanks
Buffalo


Buffalo

unread,
May 18, 2012, 10:33:06 AM5/18/12
to
Well, I had him uncheck regwork.exe in the msconfig and reboot. The program
did not restart and then I had him uninstall the program through the Control
Panel and all seems well. Perhaps, it was a legit program, but now his PC is
running faster, according to him. It might be that MBAM removed something
else that caused the speedup.
He even ran MBAM in Full Scan in Safe Mode and got rid of all it found (only
about 10 entries, most of them cookies) except for a few Symantec entries.

Thanks for the replies.
Buffalo


0 new messages