Windows 10: I've been dealing with a interesting Trojan virus

Discus and support I've been dealing with a interesting Trojan virus in AntiVirus, Firewalls and System Security to solve the problem; Lets just say I have been dealing with quite the virus that wont get removed no matter what. It disabled quite a lot of features on windows such as... Discussion in 'AntiVirus, Firewalls and System Security' started by jackneedshelpwithcomp, Apr 23, 2019.

  1. I've been dealing with a interesting Trojan virus


    Lets just say I have been dealing with quite the virus that wont get removed no matter what. It disabled quite a lot of features on windows such as Online protection on both windows defender and Malware bytes, blocks me from reinstalling windows, and it did block me from using windows defender altogether at first but I found a fix. It Would really be great if anyone can fix it. This is from a download if you really need to know to fix it.

    Below me is what was scanned.

    Malwarebytes

    www.malwarebytes.com



    -Log Details-

    Scan Date: 4/23/19

    Scan Time: 7:33 PM

    Log File: 9caf4cc0-6628-11e9-8e81-000000000000.json



    -Software Information-

    Version: 3.7.1.2839

    Components Version: 1.0.563

    Update Package Version: 1.0.10302

    License: Free



    -System Information-

    OS: Windows 10 (Build 17134.648)

    CPU: x64

    File System: NTFS

    User: DESKTOP-9GK09J9\awesomepokemaster



    -Scan Summary-

    Scan Type: Threat Scan

    Scan Initiated By: Manual

    Result: Completed

    Objects Scanned: 439167

    Threats Detected: 21

    Threats Quarantined: 0

    Time Elapsed: 8 min, 16 sec



    -Scan Options-

    Memory: Enabled

    Startup: Enabled

    Filesystem: Enabled

    Archives: Enabled

    Rootkits: Enabled

    Heuristics: Enabled

    PUP: Detect

    PUM: Detect



    -Scan Details-

    Process: 0

    (No malicious items detected)



    Module: 0

    (No malicious items detected)



    Registry Key: 4

    Adware.Wajam.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZDY4NDFiOGY1YThjYT, No Action By User, [4884], [580236],1.0.10302

    Adware.Wajam.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, No Action By User, [4884], [-1],0.0.0

    Trojan.Yelloader, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINDOWSMANAGEMENTSERVICE, No Action By User, [2732], [552318],1.0.10302

    PUP.Optional.JetMedia, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NATIVEDESKTOPMEDIASERVICE, No Action By User, [4027], [506357],1.0.10302



    Registry Value: 8

    Adware.Wajam.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZDY4NDFiOGY1YThjYT|IMAGEPATH, No Action By User, [4884], [580236],1.0.10302

    Adware.Wajam.Generic, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No Action By User, [4884], [-1],0.0.0

    Adware.Wajam.Generic, HKU\S-1-5-21-3514438651-1852965482-2251626450-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No Action By User, [4884], [-1],0.0.0

    Adware.Wajam.Generic, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, No Action By User, [4884], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\INTERFACES\{07685614-1cd3-4696-968b-4f1fcf740b1f}|NAMESERVER, No Action By User, [7387], [260227],1.0.10302

    Trojan.Yelloader, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINDOWSMANAGEMENTSERVICE|IMAGEPATH, No Action By User, [2732], [552318],1.0.10302

    PUP.Optional.JetMedia, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NATIVEDESKTOPMEDIASERVICE|IMAGEPATH, No Action By User, [4027], [506357],1.0.10302

    Adware.NetAdapter, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{D9F5C86E-C7AE-4BFF-B661-F918382BD108}, No Action By User, [1029], [509082],1.0.10302



    Registry Data: 8

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, No Action By User, [7387], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, No Action By User, [7387], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{07685614-1cd3-4696-968b-4f1fcf740b1f}|NameServer, No Action By User, [7387], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{07685614-1cd3-4696-968b-4f1fcf740b1f}|DhcpNameServer, No Action By User, [7387], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{1859b595-60ec-429b-9b0c-507bcd3cb514}|NameServer, No Action By User, [7387], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{43851f57-e499-45bf-aea8-8758afc7971b}|NameServer, No Action By User, [7387], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{4edb424a-d556-11e7-ab0f-806e6f6e6963}|NameServer, No Action By User, [7387], [-1],0.0.0

    Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{9ff14aad-2733-418d-9104-2a5af84e5548}|NameServer, No Action By User, [7387], [-1],0.0.0



    Data Stream: 0

    (No malicious items detected)



    Folder: 0

    (No malicious items detected)



    File: 1

    PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, No Action By User, [3684], [391431],1.0.10302



    Physical Sector: 0

    (No malicious items detected)



    WMI: 0

    (No malicious items detected)





    (end)

    :)
     
    jackneedshelpwithcomp, Apr 23, 2019
    #1
  2. Mel Tar Win User

    Rooted Malware, Virus, and Trojan Infection, Keylogger Trojan Malware

    Hi,

    Please click the link below and follow Stephen Boots' suggestion on how to remove Trojan virus on your computer:

    Let us know if you need further assistance.
     
    Mel Tar, Jun 28, 2019
    #2
  3. djbbenn Win User
    New Trojan that Demands a Ransom

    There is a new virus out there discovered by virus hunters known as "Cryzip". The Trojan encrypts your files and then demands a $300 ransom for the decryption password to get your files back. After encrypting the files, the virus leaves a nice step-by-step guide of how to go about paying the ransom off. It's supposedly spread through email Spam, and has successfully evaded anti-virus scanners.

    Source: eWeek
     
    djbbenn, Jun 28, 2019
    #3
  4. I've been dealing with a interesting Trojan virus

    Trojan virus

    Suggestion to read:
    Suggestions for asking a question on help forums


    Without knowing any details....:

    See the helpful links posted by

    quietman7 - MVP

    here


    Copy/paste of above post:

    Malware Removal Guides for Windows


    You can always supplement your anti-virus or get a second opinion by performing an

    Online Virus Scan
    ...

    ESET is one of the more effective online scanners.

    Stubborn Malware Removal Guides for Windows


    ==========================================================
     
    Jsssssssss, Jun 28, 2019
    #4
Thema:

I've been dealing with a interesting Trojan virus

Loading...
  1. I've been dealing with a interesting Trojan virus - Similar Threads - I've been dealing

  2. I've been dealing with crashing on my games and heavy programs.

    in Windows 10 Drivers and Hardware
    I've been dealing with crashing on my games and heavy programs.: I'm working with an i7-8700k, a 2080ti and an asus z370 prime II I've got the following errors as well: Problem Event Name: LiveKernelEvent Code: 141 Parameter 1: ffff8207044e9010 Parameter 2: fffff8078efc4148 Parameter 3: 0 Parameter 4: 2430 OS version: 10_0_18362...
  3. Memz Trojan Virus - HELP!

    in AntiVirus, Firewalls and System Security
    Memz Trojan Virus - HELP!: Hi All, My **** Son has allowed a so called "XBOX Friend" to use teamview on my sons laptop and watched, said friend, install Memz trojan viras and run it. I know what a ****, trusting someone he doesn't know........! I've said it all and he's very embarrassed! Its now...
  4. Virus/trojan

    in AntiVirus, Firewalls and System Security
    Virus/trojan: Hello, an hour ago (February/24/2019 3:54am EST) I had a accidental download and installment of a trojan or virus. I have had a virus problem before but NOT like this one to where I can't fix it my self. This download made the PC fully aware of it's being, and quarantined...
  5. YourPhone.exe is a Virus or Trojan?

    in AntiVirus, Firewalls and System Security
    YourPhone.exe is a Virus or Trojan?: Hi, I've seen this app (YourPhone.exe) running in the background using also my GPU. Is it normal? Berowsing the internet some websites say it is a virus, but I'm not sure it is true as in its info it has Microsoft copyright. Anybody else having this process in the...
  6. trojan virus

    in AntiVirus, Firewalls and System Security
    trojan virus: Hi my windows defender keeps updating me i have a Trojan in win32 folder named touluse.N!** forgotten the extension how do i remove it i have tried to find this so far without solution 1 unhiding files in explorer 2 looking it in resmon(resource manager) 3 looking for it...
  7. Virus, trojan, malware

    in AntiVirus, Firewalls and System Security
    Virus, trojan, malware: Hello, Dear Sir / Madam, please tell me what program I can check for virus, malware, trojans ect ... Thanks! Wait for response!. https://answers.microsoft.com/en-us/protect/forum/all/virus-trojan-malware/eedcf781-fa11-4dae-8931-a559c68842d0
  8. Virus,Malware, Trojan........

    in AntiVirus, Firewalls and System Security
    Virus,Malware, Trojan........: Hi everyone, my pc recently got infected with what I think is a virus and all folders in my drives including drive C(windows installed) have been HIDDEN. When I click on any of my drives the folder is empty. The only way I can access my files/folders is keying in the folder...
  9. Virus and Malware--- I've been Scammed

    in AntiVirus, Firewalls and System Security
    Virus and Malware--- I've been Scammed: I was recently given the number for myPhoneSupport.com thinking that it was a legitimate Microsoft help line. Unfortunately, I allowed them access to my computer and they added CyberLink YouCam and TrackOff Privacy Software and, of course, charged me $400.00. I have since...
  10. Trojan Virus

    in AntiVirus, Firewalls and System Security
    Trojan Virus: Hi. Recently I was sent three emails and one of them put a virus on my computer. I need to know how to get rid of it. The virus is this: Pcdrwi. exe. It is in my C drive, Program Files. I can see it on my Task Mgr. Which is how I discovered it, and has been there since...

Users found this page by searching for:

  1. pup.optional yelloader what is it