Search the Community
Showing results for tags 'backdoor'.
Found 4 results
Hey guys, Newbie here. I've run a Custom Scan on my machine because it was getting a bit slow and a Backdoor.Remcos was detected in the LIBCRYPTO-1_1.DLL file in an Intel Install folder (Scan report attached below, sorry, it's in French, I can provide translations if needed) . Have you ever had this file detected as a malware ? Is this a false positive ? Or has my machine really been infected by something ? I've quarantined then rebooted then deleted the file. I hope I won't suffer any consequences in the long-term.. What do you guys think about this ? Lichew. ------------------------------------------------------------------------------------------- -Détails du journal- Date de l'analyse: 27/03/2020 -Informations du logiciel- Version: 22.214.171.124 Version de composants: 1.0.823 Version de pack de mise à jour: 1.0.21452 Licence: Gratuit -Résumé de l'analyse- Type d'analyse: Analyse personnalisée Analyse lancée par: Manuel Résultat: Terminé Objets analysés: 610725 Menaces détectées: 2 Menaces mises en quarantaine: 2 Temps écoulé: 1 h, 53 min, 3 s -Options d'analyse- Mémoire: Activé Démarrage: Activé Système de fichiers: Activé Archives: Activé Rootkits: Activé Heuristique: Activé PUP: Détection PUM: Détection -Détails de l'analyse- Processus: 0 (Aucun élément malveillant détecté) Module: 0 (Aucun élément malveillant détecté) Clé du registre: 0 (Aucun élément malveillant détecté) Valeur du registre: 0 (Aucun élément malveillant détecté) Données du registre: 0 (Aucun élément malveillant détecté) Flux de données: 0 (Aucun élément malveillant détecté) Dossier: 0 (Aucun élément malveillant détecté) Fichier: 2 Adware.FusionCore, C:\$WINDOWS.~BT\NEWOS\USERS\UTILISATEUR\DOWNLOADS\FILEZILLA_126.96.36.199_WIN64_SPONSORED-SETUP.EXE, En quarantaine, 7449, 801535, 1.0.21452, , ame, Backdoor.Remcos, C:\PROGRAM FILES (X86)\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\ICLS\LIBCRYPTO-1_1.DLL, En quarantaine, 2105, 796212, 1.0.21452, , ame, Secteur physique: 0 (Aucun élément malveillant détecté) WMI: 0 (Aucun élément malveillant détecté) (end)
Hi. So I have this problem that i notice when i visit Fancentro.com (NSFW) i get redirected to patriarchia.ru Fancentro.com is the only webpage that I have noticed this redirect. There is no other page that is effected. I have scan my computer with Malwarebytes Premium Trial manytimes with no luck. So I downloaded windows on another computer and made a USB Windows installer. Then i formatted my windows drive and installed a clean copy from the flash drive. When the new windows is installed the problem goes away for a day or so. Then I notice that my computer freeze up or act strange. Then when I go to fancentro.com again the problem is back. So this virus, malware or what it is manage to comeback everytime. On my last reset I did not visit any unknown trusted webpages so could not have gotten it again from the same location. Please help me solve this. Cheers. Addition.txt FRST.txt Malewarebytes.txt
I am using the premium trial of malwarebytes for android. It found this trojan during a full scan and "successfully" removed it. However, this trojan constantly returns, as the real-time protection detects it every now and then. I have been running full scans over and over. Sometimes, it is clean; other times, I see android/backdoor.triada.n. I have located the folders, where the scanner detects the malware, and manually delete the folders; but whenever android/backdoor.triada.n resurfaces, those folder also comes back. Is this really malware? I do not even use the fire hd after a clean scan, but the malware eventually returns in detection.
I've been recently infected by downloading a sketchy application. As soon as I felt something was off I stopped it and ran Malwarebytes which deleted most of the viruses. There is two backdoor malware I cannot delete. I've also noticed after this event my computer has been freezing a little every 10sec or so... I believe this might be the cause of it. I came onto the forums to see if there was a solution to deleting the two unwanted malware. Addition.txt FRST.txt MalwareLog.txt