My Emsisoft Emergency Log

[N3]

I did a full "Emsisoft Emergency" scan for the first time. It detected five suspicious files. The first three are considered "no risk". The next two are questionable? Below is the log....

Emsisoft Emergency Kit - Version 9.0
Last update: 2/9/2015 1:05:00 PM
User account: N3-PC\N3

Scan settings:

Scan type: Full Scan
Objects: Rootkits, Memory, Traces, C:\, Q:\

Detect PUPs: On
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start: 2/9/2015 1:06:33 PM
C:\Users\N3\AppData\Local\SlimWare Utilities Inc\DriverUpdate detected: Application.InstallDrive (A)
C:\Users\Public\Documents\Downloaded Installers\{CF516344-84E1-4420-BDAD-52E13F32D07E} detected: Application.InstallDrive (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\SLIMWARE UTILITIES, INC.\DRIVERAPP detected: Application.InstallDrive (A)
Value: HKEY_USERS\S-1-5-21-3450983300-2090305916-611037370-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR detected: Setting.DisableTaskMgr (A)
Value: HKEY_USERS\S-1-5-21-3450983300-2090305916-611037370-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS detected: Setting.DisableRegistryTools (A)

Scanned 192028
Found 5

Scan end: 2/9/2015 1:26:30 PM
Scan time: 0:19:57

 

[donetao]

Hi! @N3 ! A good way is to check them out with Virus Total to see if others find them malicious!!
https://www.virustotal.com/

 

[Rich-M]

From the Emsisoft Forums it appears these are "policies that enabled sometimes makes Malware removal more difficult to remove and are perfectly safe to remove", N3.
http://support.emsisoft.com/topic/13694-disabletaskmgr-and-disableregistrytools/

This software is way ahead of the conventionals folks we have been using, part of why I am trying to make you all question what you are doing right now as things are changing out there.

 

[starbuck]

This is why SlimWare Utilities is shown up:

The setup for the Slimware 'PC optimization' product may present the user with unwanted offers or may be installed as part of a bundled offer. The program is a setup application that uses the Windows MSI installer.

So the bottom line is.... if you installed it, it's OK.
If not... remove it.
As for the other 2 lines.... Rich already answered this.

One of the reviews on the Emsisoft Emergency Kit page, says it just right...

In the right hands, Emsisoft Free Emergency Kit can bring powerful tools to bear on a wide range of PC troubles.

With some of these programs... if you are not fully aware of what the report is saying... then it's not really a tool for you.
Just because a tool is 'out there' ... doesn't mean you have to run it.
In other words....
If you are comfortable with a scanners results, then fine.
If not... only run it under supervision.