Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

possible rat or Dns Trojan? Maybe Ransomware????

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

possible rat or Dns Trojan? Maybe Ransomware????

Unread postby Beepboopbop1 » March 17th, 2017, 5:08 pm

Hey, my cpu first began to slow down and I thought nothing of it until my screen froze, mouse moved at will and the windows start bar and notification center opened and closed rapidly. I panicked and reset to default. I booted it back up and all seemed well... for about 5 seconds. I tried opening my c drive and got a pop up that bit decryptor had already decoded my C drive?? Ran GMER and nothing interesting so carried on like nothing happened. I am now locked out of certian files, popup says Location is not available access is denied. Ran Gmer and found a large ammount of registry errors. For example: Reg HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\AUO312C0_00_07DB_F4^CDE1255B436B35FA52A5085EE0C1FA3F@Timestamp 0xC3 0x0A 0x0E 0x02 ... and alot of "entry points in r data" as well as multiple instances of taskhost,runtime broker and explorer. Alot of the .crypt files seem off and napagent is causing problems. Anyway here is FarBar. Due to size the scans are both attatched. Character limit is surpassed even with only the first one copy pasted
You do not have the required permissions to view the files attached to this post.
Beepboopbop1
Active Member
 
Posts: 1
Joined: March 17th, 2017, 4:24 pm
Advertisement
Register to Remove

Re: possible rat or Dns Trojan? Maybe Ransomware????

Unread postby mAL_rEm018 » March 19th, 2017, 7:00 am

Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post a log in the Malware Removal forum and wait for help.

Failure to post replies within 3 days will result in this thread being closed.


Hello Beepboopbop1,

Welcome to Malware Removal! My name is mAL_rEm018, but feel free to call me mAL. I will be helping you with your malware related problems :)

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.


Because of this, I advise you to backup any personal files and folders before you start.

To make sure everything goes smoothly, I would like you to observe the following rules:
  • You must have Administrator rights, permissions for this computer.
  • Please reply to this thread. Do not start another topic.
  • Perform all actions in the order given.
  • If you don't know, stop and ask!
  • DO NOT run any other fix or removal tools unless instructed to do so!
  • Don't attempt to install any new software (other than those I ask you to) until your computer is clean.
  • DO NOT post for help at any other forum. Applying fixes from multiple help sites can cause problems.
  • I advise you to print the instructions if possible, since your internet connection might not be available during some of the fixes.
  • Absence of symptoms does not mean that everything is clear, therefore stick with this topic until I give you the "all clear".

I am currently reviewing your logs and will return as soon as possible, with additional instructions. In the meantime I would like you to read and get acquainted with the following topic: HOW TO GET HELP IN THIS FORUM - everyone must read this, where the conditions for receiving help here are explained.
User avatar
mAL_rEm018
Admin/Teacher
Admin/Teacher
 
Posts: 2689
Joined: November 11th, 2013, 6:26 pm
Location: Saint-Petersburg, Russia

Re: possible rat or Dns Trojan? Maybe Ransomware????

Unread postby Gary R » March 19th, 2017, 12:55 pm

Posting at multiple forums

You are already receiving help with this problem at another forum:
https://www.bleepingcomputer.com/forums/t/642153/possible-browser-redirect/#entry4200662

May I draw your attention to the ALL USERS OF THIS FORUM MUST READ THIS FIRST topic, which you should have read before posting for help.
See the section here where we tell you why this is not a good idea.


This topic is now closed
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 136 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware