Pareto Logic Driver Cure

From Jonsdocswiki
Jump to: navigation, search
Pareto Logic Driver Cure - Malware

This piece of malware runs on started for the infected user. It's likely that the software attempts to convince the user to purchase the program.



After the user logs in the Pareto Logic Driver Cure program runs (see screenshot top right)

How it runs

A registry key found at HKey_CURRENT_USER\Software\Microsoft\Windows\Current Version\Run causes the program to run on startup.


These instructions appear to work but the malware may have infected other parts of the system. Be sure to run a malware removal program (Ad-Aware, Microsoft Malicious Software Removal Tool) to confirm your system is clean.
  • Delete the executables from C:\program files\ParetoLogic .
  • Deleted the registry key in HKCU\Software\Microsoft\Windows\Current Version\Run that was causing the program to start.
  • Run anti-malware scans.

What doesn't work

Restoring the system to a previous restore point does not seem to cause this program to be removed.

Personal tools