Windows 10: I have a Trojan:MSIL/Redline.CBYZ!MTB

Discus and support I have a Trojan:MSIL/Redline.CBYZ!MTB in AntiVirus, Firewalls and System Security to solve the problem; This appeared in my protection history and I don't know how to address or resolve it.Initially the file appeared as Program:Win32/Wacapew.C1ml, so I... Discussion in 'AntiVirus, Firewalls and System Security' started by Joshua Badhan, Oct 19, 2024.

  1. JOSHUA BADHAN
    Joshua Badhan Win User

    I have a Trojan:MSIL/Redline.CBYZ!MTB


    This appeared in my protection history and I don't know how to address or resolve it.Initially the file appeared as Program:Win32/Wacapew.C1ml, so I booted safe mode, located afflicted files, removed them and cleared defender history and quarantine, then restarted my pc and ran a full scan, to which this appeared in my protection history.

    :)
     
    Joshua Badhan, Oct 19, 2024
    #1
  2. OYOO HABIB
    OYOO HABIB Win User

    (Trojan: MSIL/AgentTesla.BFV!MTB

    How do I remove this virus (Trojan: MSIL/AgentTesla.BFV!MTB) completely from my laptop?
     
    OYOO HABIB, Oct 19, 2024
    #2
  3. NEPPED
    Nepped Win User
    How to remove Trojan:MSIL/Redline.CBYZ!MTB ?

    Hello, community people

    On every windows startup, powershell is briefly opened then automatically closed. (I didn't see any script typed in) Then, window security detects Trojan:MSIL/Redline.CBYZ!MTB and then I select to remove it. After that, I have not found any other side effect yet.


    I have a Trojan:MSIL/Redline.CBYZ!MTB KdUJw16a6%2fHZnZCviSGcaMc32ZFa7QxQJj1Pms64lzlG0VL2%2fpYeQQHMV5MuXJFWuh2XyIKTqtFaHAf1NnSw3DiUc%3d.jpg

    Is there anyway to remove or stop this redline trojan from running powershell on startup?
    Here what i have tried in order to remove this trojan. (redline trojan wasn't found)

    • Microsoft Defender quick scan and offline scan
    • Full scan from Malwarebytes
    • Quick scan from HitmanPro, BitDefender, Emison emergency kit
    • iExplore (RKill) does not detect any running malware

    Thanks in advance
     
    Nepped, Oct 19, 2024
    #3
  4. TSKYBING
    TSKYBing Win User

    I have a Trojan:MSIL/Redline.CBYZ!MTB

    Trojan and Malware

    2/21/2022 5:28:49 AM

    Files scanned: 1217349

    Detected files: 43

    Cleaned files: 43

    Total scan time 06:50:37

    Scan status: Finished

    C:\$SysReset\AppxLogs\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\$SysReset\CloudImage\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\$SysReset\Logs\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\$SysReset\MDM\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\$SysReset\Scratch\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\$SysReset\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Aomei\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Boot\sm_da\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Boot\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\FRST\Quarantine\C\WINDOWS\system32\Tasks\Microsoft\Windows\PI\PI.xBAD PowerShell/Kryptik.D trojan cleaned by deleting



    C:\LDPlayer\LDPlayer4.0\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\LDPlayer\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\MobiMoverBackup\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\NVIDIA\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\OneDriveTemp\S-1-5-21-2131174034-2530422207-1368632259-1001\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\OneDriveTemp\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Program Files\Wondershare\Wondershare Filmora\WsAP-Filmora.dll a variant of Win64/HackTool.Crack.W potentially unsafe application cleaned by deleting



    C:\Program Files\Wondershare\Wondershare Filmora - Copy\WsAP-Filmora.dll a variant of Win64/HackTool.Crack.W potentially unsafe application cleaned by deleting



    C:\Program Files (x86)\****-GoldBerg\****\OnlineFix64.dll a variant of Win64/HackTool.Crack.AA potentially unsafe application cleaned by deleting



    C:\Riot Games\League of Legends\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Riot Games\Riot Client\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Riot Games\VALORANT\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Riot Games\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\SWSetup\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\temp\TxGameDownload\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\temp\{AA7C2609-F5C3-4F2D-85D0-97C700C016B3}\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\temp\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\text\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Users\TSKY\AppData\Local\VirtualStore\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Users\TSKY\Desktop\Ready.Or.Not.v17900.Early.Access\Ready Or Not\ReadyOrNot\Binaries\Win64\Custom.dll a variant of Win64/HackTool.Crack.AD potentially unsafe application cleaned by deleting



    C:\Users\TSKY\Desktop\Ready.Or.Not.v17900.Early.Access\Ready Or Not\ReadyOrNot\Binaries\Win64\OnlineFix64.dll a variant of Win64/HackTool.Crack.AA potentially unsafe application cleaned by deleting



    C:\Users\TSKY\Downloads\Ready_or_Not_Fix_Repair_Steam_V3_Generic\ReadyOrNot\Binaries\Win64\Custom.dll a variant of Win64/HackTool.Crack.AD potentially unsafe application cleaned by deleting



    C:\Users\TSKY\Downloads\Ready_or_Not_Fix_Repair_Steam_V3_Generic\ReadyOrNot\Binaries\Win64\OnlineFix64.dll a variant of Win64/HackTool.Crack.AA potentially unsafe application cleaned by deleting



    C:\Users\TSKY\Downloads\Windows 10_Digital_License\BIN\slc.dll Win32/HackTool.WinActivator.AL potentially unsafe application cleaned by deleting



    C:\Users\TSKY\Downloads\Windows 10_Digital_License\Windows 10 Digital License Activation Script.cmd Win32/HackTool.WinActivator.AI potentially unsafe application cleaned by deleting



    C:\Users\TSKY\Downloads\BrowserSetup_b0zz0i5.exe a variant of Win32/CryptoTab.A potentially unwanted application cleaned by deleting



    C:\Users\TSKY\Downloads\counter-strike-1-6.exe a variant of Win32/GameHack.ANF potentially unsafe application cleaned by deleting



    C:\Users\TSKY\Downloads\windows.cmd BAT/RiskWare.HackTool.WinActivator.A application cleaned by deleting



    C:\Users\TSKY\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Windows \System32\_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Windows \_readme.txt MSIL/Filecoder.ANG trojan deleted



    C:\Xamp Premium\_readme.txt MSIL/Filecoder.ANG trojan deleted



    D:\_readme.txt MSIL/Filecoder.ANG trojan deleted
     
    TSKYBing, Oct 19, 2024
    #4
Thema:

I have a Trojan:MSIL/Redline.CBYZ!MTB

Loading...

  1. I have a Trojan:MSIL/Redline.CBYZ!MTB - Similar Threads - Trojan MSIL Redline

  2. Trojan Win32/Raccoon.CCBM!MTB help

    in Windows 10 Gaming
    Trojan Win32/Raccoon.CCBM!MTB help: For pic somehow i cannot upload the screenshot here so i post in reddit insteadThe first one belowin the reddit comment told me to remove it and then second notificationin the pic is Remediation incomplete. So I try scanning it with Malwarebytes and it found nothing. What...

  3. Trojan Win32/Raccoon.CCBM!MTB help

    in Windows 10 Software and Apps
    Trojan Win32/Raccoon.CCBM!MTB help: For pic somehow i cannot upload the screenshot here so i post in reddit insteadThe first one belowin the reddit comment told me to remove it and then second notificationin the pic is Remediation incomplete. So I try scanning it with Malwarebytes and it found nothing. What...

  4. Trojan: MSIL/AgentTesla.BFV!MTB

    in Windows 10 Gaming
    Trojan: MSIL/AgentTesla.BFV!MTB: How do I remove this virus Trojan: MSIL/AgentTesla.BFV!MTB completely from my laptop? https://answers.microsoft.com/en-us/windows/forum/all/trojan-msilagentteslabfvmtb/82109471-4400-4531-a4fe-60238fbcfa81

  5. Trojan: MSIL/AgentTesla.BFV!MTB

    in Windows 10 Software and Apps
    Trojan: MSIL/AgentTesla.BFV!MTB: How do I remove this virus Trojan: MSIL/AgentTesla.BFV!MTB completely from my laptop? https://answers.microsoft.com/en-us/windows/forum/all/trojan-msilagentteslabfvmtb/82109471-4400-4531-a4fe-60238fbcfa81

  6. Trojan: Win32/LaplasClipper.D!MTB not able to remove

    in Windows 10 Gaming
    Trojan: Win32/LaplasClipper.D!MTB not able to remove: This threat shows up in my windows defender, it says threat level severe. When I click on actions ---> Remove ------> Start actions ------> It just runs a quick scan and doesn't remove it. I tried to remove it from quarantined threats and it gets removed there but when I go...

  7. Trojan: Win32/LaplasClipper.D!MTB not able to remove

    in Windows 10 Software and Apps
    Trojan: Win32/LaplasClipper.D!MTB not able to remove: This threat shows up in my windows defender, it says threat level severe. When I click on actions ---> Remove ------> Start actions ------> It just runs a quick scan and doesn't remove it. I tried to remove it from quarantined threats and it gets removed there but when I go...

  8. Windows defender : Trojan - Win32/Redline.CAH!MTB

    in Windows 10 Gaming
    Windows defender : Trojan - Win32/Redline.CAH!MTB: It shows up in microsoft defender and when I select remove from device it asks me to do quick scan. When the quick scan almost ends it gets stuck.What is this trojan? how to remove it please help...

  9. Windows defender : Trojan - Win32/Redline.CAH!MTB

    in Windows 10 Software and Apps
    Windows defender : Trojan - Win32/Redline.CAH!MTB: It shows up in microsoft defender and when I select remove from device it asks me to do quick scan. When the quick scan almost ends it gets stuck.What is this trojan? how to remove it please help...

  10. infected with trojan js/nemucod.SMQ!MTB

    in AntiVirus, Firewalls and System Security
    infected with trojan js/nemucod.SMQ!MTB: HiI recieved email with a click link that went to an unopened adobe that I then needed to login to openI didnt do this step.I called sender and was told it was a scam/virus. I scanned with Microsoft defender and it found and quarantined trojan: js/nemucod.SMQ!MTB. I then...