Jump to content

Search the Community

Showing results for tags 'trojan'.

More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes 3 Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






Found 169 results

  1. https://i.imgur.com/vmgKFmh.png I recently downloaded a few files, and I think my computer probably got infected because of those files as they weren't particularly from a source that I would trust. I did remove the files shown in the screenshot but I'm still paranoid concerning the data and security of my computer.
  2. I have a Z87-g45 gaming motherboard and I can't get it to boot to usb. My computer completely crashed after I ran hitman and malewarbytes. I ran both scans and each told me a restart was needed so I waited for both to finish since they both required a restart. Prob was not good idea since now my computer won't boot at all. Once I was prompted of a failed startup I chose to restart from last known good configuration. It just got hung on the starting Windows screen for over 3 hours. So I tried changing the bios to ufei instead of legacy+ufei and tried to see if that helped. It didn't. I've tried restoring bios to defaults to see if it helped it did not. Stuck on loading Windows screen. I took the battery out of the mother board and left it out for 5 mins and tried to start it. Same thing stuck on loading Windows. After trying to load to safe mode with network and without network and trying to load to command prompt and it all still getting stuck I decided to go purchase a new computer to try to get some recovery software to try to fix the problem. So my first choice of programs to try is Hiren. I downloaded Hiren and it was an iso file. So I formatted my usb thumbnail to Fat32 and used PowerISO to burn the Hiren ISO to the usb. (Using the create bootable usb option) after it was finished burning to the usb. I removed it from computer and put it into broken PC. Booted PC up and push F10 till I got to the bios. Changed boot priority to #1 uefi usb #2 usb. Saved changes and restarted. Went to stuck loading Windows screen. Power off, power on F10 changed bios from uefi+legacy to just uefi and booted usb first priority. Saved and rebooted. Went to stuck loading Windows screen. Figured I'd just try to see if command promp would work. Power off, power on F10 changed to default bios settings saved and restarted. Windows failed to load restart with command promp. Stuck on Windows loading screen but it finally worked and I was in command promp. Trying several commands to figure out what drive the usb was and looking on Google trying to find list of commands to use with command prompt. The computer automatically just restarted and I didn't even execute any command. Now unsure I can get to command prompt again. Tried rebooting again and again about 4 or 5 times and get stuck on Windows loading screen and no option of boot to command prompt. I can get to efi shell easily but don't think that's gonna help me with what I need. I honestly don't know what I should run off of hirens even if I do get it to run. I'll use to research Google as I go. My biggest problem is trying to get the usb to load then if someone would like to walk me to diagnose the problem id be forever grateful! Please help me. I've repaired computers that have crashed before but this is first time this computer with this motherboard has crashed and I just can't get it to do right and it's been killing many days just watching a stuck screen. Please! TY in advance!
  3. Hello. I clicked on a dodgy link and have been plagued with a Bitcoin miner. It disabled my security updates, my Windows updates, and my Antivirus software. I did a reset but kept my personal files as I had some projects I could not lose. I removed the BitCoinMiner.Trojan before resetting. I Have run scans with Avast, AVG, Malwarebytes, tdskiller, and gmer.exe. I have a popup that comes up every time I open chrome saying blocked trojan xmr.omine.org. Just want to get rid of this. I'd appreciate any info on how the analysis into the problem is conducted using these files so if this happens again I can try and do some analysis myself. I am interested in Security and malware analysis. Just was pretty stupid clicking something I knew was dodgy AF. Addition.txt FRST.txt Malwarescan.txt
  4. Windows defender detected a Skeeyah Trojan. I deleted it with Windows Defender then scan it with Malwarebytes and Windows Defender. Found no more Skeeyah. However, I am still worried that there might be some leftover Skeeyah. Is there any way to confirm the Skeeyah is gone?
  5. My device (Tecno W2) with Android 6.0 Marshmallow is infected with a trojan virus. The first symptom I noticed was that Chrome will just open a random webpage, even if I close it, it will open up again, so I had to disable Chrome. Then, other things started happening like sudden display of random images on the home screen, and the images are also downloaded and saved on the device. I did a factory reset, but the virus is still there, so I now know it's in the root file. After the factory reset, once I connect to the internet, it will install an app called Magic, and then start downloading those images, and displaying them, and also open Chrome again and again. I could have put up with these, but then the device started slowing down and becoming laggy, even restarting itself. I installed Malwarebytes and it always detect the virus and then uninstall the app 'Magic' and 'Settings', but then they will be installed again. So, the problem is removing the root infection in the device's system files, I searched and the only solution is for me to root the device and do some things, but I don't even know how to root the device and also how to remove the virus in the system files. Please help!
  6. Hi, this is my first time posting to these forums. I have seen a couple posts about this same issue, and I was wondering if you guys can help me as well. I have tried numerous antivirus and anti malware applications yet none of them seem to work. This virus also seems to prevent me from utilizing FRST while the internet is active. It will show up in task manager as “suspended”. The virus “setup.exe” is also present in task manager as “suspended”. Also, whenever I use Google Chrome to search up anything to do with anti malware, including this website, it will also be “suspended” in task manager. It is 2 am on the east coast and I really need to get some sleep. Please help me. I will probably be awake in 6 hours.
  7. Hi. I have no idea what I have downloaded, but I recently got a virus called setup.exe. It keeps on making my computer freeze and has pop up ads. It is really starting to frustrate me. My computer has never had one of these before. I ended up finding a way to delete the root file that was causing it by taking ownership, but it just comes back after a few seconds. My computer is very important at it has my school work and stuff like that on it. I would really appreciate the help Furthermore I try and get malwarebytes to scan the folder, but it doesnt detect it as a threat:( Please I really need help
  8. Hello! I have been fighting with this trojan for a while, my Firefox browser is infected I guess. I removed the only extension from it, the AdBlock Plus. Furthermore I already deleted PCCleaner folder from Program Files, Windows/nss folder and ITranslator folder from ProgramData. MalwareBytes still warns me about this trojan when I open firefox and I don't know what to do next. Here are the log files attached. ( Some rows are in hungarian, I don't know how to change language in this program. ) Thank you in advance for your help! FRST.txt Addition.txt
  9. I see some others who are affected by this trojan on here. Currently when I open chrome, it attempts to go to go.microsoft.com but then is redirected (appropriately) to blank tab. Most of the time if I click on any link, Malwarebytes alerts me that a trojan has been quarantined. FRST.txt Addition.txt Any help would be appreciated
  10. So i just have this weird detection were avast detects different .exe files. I cant open chrome because of this.
  11. can somebody please help me malwarebites says there is a trojan in this folder C:\Windows\SysWOW64\InstallShield in the setup.exe file and i can't remove the trojan or don't know how please help me???
  12. OneAnnoyedStudent

    cdn.immereeako.info trojan!

    The scans don't turn anything up but I'm getting notifications whenever I use Chrome FRST.txt Addition.txt Log.txt
  13. Hello, I download unverified program for Windows installation and I stared getting virous attacks (Trojan:Win64/Dynamer!ac and Trojan:Win64/Fuery.B!cl). What should I do? FRST.txt Addition.txt
  14. Every time I open my laptop, windows defender would notify me of a malware detection and I would remove the detected malware every time it notified. I would also run malwarebytes threat scan and it would detect a Backdoor.bot malware, which I would remove after the scan is finished. But it keeps appearing every time I open my laptop. Is there away to completely remove it? Please help, thanks. Addition.txt FRST.txt
  15. I installed Malwarebytes due to some suspicion that I was infected and ran it. Clearly there was something going on and Malwarebytes did some cleaning. After it was done, I keep getting this popup every 15 seconds, saying: Website blocked due to Trojan The IP it's trying to connect to is: The port keeps changing on every popup. Type is: Outbound Connection. Category: Trojan I even added an Outbound and Inbound firewall rule in Windows Defender Firewall blocking this IP address, but the popups wont stop. Is this something serious? I've seen many topics on this forum, but none of them have a solution. Help would be appreciated.
  16. Hi Malwarebytes Team, I need your help to remove Pop-up malware message "You are using outdated version of Chrome...." (Data on internet that is a NetSupport Manager RAT Trojan ?) I tried the following: 1. Malwarebytes (Updates: Current) 2. Google Help website “Remove unwanted programs (Windows, Mac)” 3. Kaspersky Total Security My Platform -Windows 10 -Chrome - Version 69.0.3497.100 (Official Build) (64-bit) Thank you, River
  17. any help with this?! Advanced report from Malwarebytes -Log Details- Protection Event Date: 11/15/18 Protection Event Time: 10:38 PM Log File: 2ab35018-e927-11e8-8370-d8cb8a5d0f39.json -Software Information- Version: Components Version: 1.0.482 Update Package Version: 1.0.7865 License: Premium -System Information- OS: Windows 10 (Build 17134.407) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Trojan Domain: cdn.immereeako.info IP Address: Port: [53393] Type: Outbound File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (end)
  18. After running Malwarebytes and Zemana programs I still have file identified as 'Trojan.BitCoinMiner' being quarantined on each successive scan after restarting the computer The file is identified as "mx_oc.dll" and is identified to be located at c\Program Files\Utilities\mx_oc.dll. Except is does not show up in Windows explored even when show "Hidden" is selected. How can this file be removed? Thanks Farbar scan results Attached FRST.txt Addition.txt
  19. Greetings all, I have tried deleting the quarantined files, I have also ran Adwcleaner on the most updated version and rebooted multiple times and it still appears in my new scans. I have checked my processes to look for anything out of the ordinary, I looked inside all of my HKEY folders to see if I could find anything in there or in System32, I also checked to see if there were any outside IPs connected in my hosts and there was not. Please help me in deleting this from my PC.
  20. Got the casper virus among others, can't get rid of it. Tried MWB, SpybotSD, avast!, avira, KaperskyTDSSKiller, CCCleaner...fried a new laptop doing some manual removals, using this old one that is known to be very infected. Lasting past system resets. In registry files, among others. Files the virus(es) hide in contain: _8wekyb3d8bbwe _kzf8qxf38zg5c _htrsf667h5kn2 _31bf3856as364e35 _b03f5f7f11d50a3a _6595b64144ccf1df _b77a5c561934e089 Presuming the next steps will be HijackThis, but I'm not too familiar and would still like to be able to troubleshoot - am wary about playing with Reg files after killing the new laptop [can't factory reset it at this point, need DBAN and Win Install]. Any pointers? Regards, Chris MWBnov3.txt FRST.txt Addition.txt Shortcut.txt
  21. Hello, I received this popup message repeatedly when accessing hotmail email website. I automatically scan with MWB and ran another scan after the popup. I have changed the hotmail password and downloaded and ran farbar recovery scan tool (after reading other blogs); results also attached. I am not bothered by the popup unless it means I should do something to remove the trojan. If it means just ignore it, malwarebytes has taken care of it, that's fine. I am not very computer savvy, so I am alarmed by the popups. If I need to "remove" the trojan from the laptop, please help me follow steps to do so. Thanks for your advice. Julie MWB 1062018 Addition.txt FRST MWB 10062018.txt
  22. I'm new here, I only bought the full version about a month ago. Lately (for the last few days) every single time I open a YouTube video I get multiple pop-ups saying that a trojan has been detected and popups blocked. For every video. Is this a real trojan or a false positive? I use Firefox, if that's important.
  23. So, I have a few threats that keep coming back no matter how many times I remove and restart (Even in safe mode.). It has also disabled my windows defender and I cannot re-enable it. How can I get rid of this, and fix my windows defender? Thank you. mwb.txt Addition.txt FRST.txt
  24. Also when I start Google Chrome a hidden window of cmd.exe opens. Need Help. Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 10/15/18 Protection Event Time: 7:07 PM Log File: 294d7374-d0a5-11e8-ba05-3497f67f55ba.json -Software Information- Version: Components Version: 1.0.463 Update Package Version: 1.0.7365 License: Trial -System Information- OS: Windows 10 (Build 17134.345) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , , Blocked, [-1], [-1],0.0.0 -Website Data- Category: Trojan Domain: pt-gmtdmp.mookie1.com IP Address: Port: [54416] Type: Outbound File: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (end)
  25. I have same problem is that any way to solve?

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.