Windows defender just detected another Severe Trojan which had not turned up so far. (Trojan:Win64/Rugmi!MTB) I think it is probably safest if I just format my PC I think. 
Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.
Trojan Attack with Wacatac & Znyonm
Started by
Xyneravyn
, Apr 15 2024 06:53 PM
-
This topic is locked
22 replies to this topic
#16
Xyneravyn
- Topic Starter
-
- Members
- 13 posts
- OFFLINE
- Local time:06:30 AM
Posted 17 April 2024 - 12:41 PM
Back to top
#17
Oh My!
-
- Malware Response Instructor
- 57,428 posts
- OFFLINE
Adware and Spyware and Malware
- Gender:Male
- Location:California
- Local time:09:30 PM
Posted 17 April 2024 - 01:32 PM
Yes, it is safest to reformat the drive and reinstall all software not included with the Operating System.
Gary
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
#18
Xyneravyn
- Topic Starter
-
- Members
- 13 posts
- OFFLINE
- Local time:06:30 AM
Posted 17 April 2024 - 02:09 PM
Okay, what about Backups? I have some relatively precious pdfs and photos I haven't backed up yet, but I heard files I backed up might be contaminated
#19
Oh My!
-
- Malware Response Instructor
- 57,428 posts
- OFFLINE
Adware and Spyware and Malware
- Gender:Male
- Location:California
- Local time:09:30 PM
Posted 17 April 2024 - 03:44 PM
I would recommend creating a backup image so that everything can be reversed if necessary.
Save all your data files (documents, pictures, photos, etc.) on an external drive. Following that, complete the below before reintroducing the files into your clean system.
===================================================
ESET Online Scanner with Attached External Drive
--------------------
Note: You can expect this process to take a long time, up to several hours or more.
Save all your data files (documents, pictures, photos, etc.) on an external drive. Following that, complete the below before reintroducing the files into your clean system.
===================================================
ESET Online Scanner with Attached External Drive
--------------------
Note: You can expect this process to take a long time, up to several hours or more.
- Download ESET Free Online Scanner - ONE-TIME SCAN and save it to your Desktop
- While holding down the Shift Key insert your USB drive
- Right click on esetonlinescanner_enu.exe and select Run as administrator
- Click Computer scan
- Click Custom Scan
- Place a check mark in every drive you wish to scan
- Click Save and continue
- Select Enable ESET to detect and quarantine potentially unwanted applications
- Click Start scan
- Once completed click View detailed results
- Review the list of detected items for things you don't want to remove (sometimes Potentially Unwanted Applications)
- If there entries you would like to keep click Restore cleaned files
- Place a check mark in each entry you would like to restore then click Restore files then confirm the action
- Click Finish
- Save scan log and save it to your Desktop as ESETScan.txt
- Click Continue then finally click Close
- Copy and paste the ESETScan.txt file contents in your reply
Gary
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
#20
Oh My!
-
- Malware Response Instructor
- 57,428 posts
- OFFLINE
Adware and Spyware and Malware
- Gender:Male
- Location:California
- Local time:09:30 PM
Posted 21 April 2024 - 08:18 AM
Is there anything else before I close the topic?
Gary
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
#21
Xyneravyn
- Topic Starter
-
- Members
- 13 posts
- OFFLINE
- Local time:06:30 AM
Posted 22 April 2024 - 07:55 AM
Thank you for all your help. I made a backup and formatted my PC. All seems to be working normally again. Last question, what about my local Nrtwork? A friend warned me that theoretically other devices from the Network might have been corrupted, though it is rather unlikely. Do you think formatting will have cleared up everything or do you think further steps might be necessary?
#22
Oh My!
-
- Malware Response Instructor
- 57,428 posts
- OFFLINE
Adware and Spyware and Malware
- Gender:Male
- Location:California
- Local time:09:30 PM
Posted 22 April 2024 - 08:57 AM
I think you are now in the clear.
Here is some additional information to consider.
===================================================
All Clean!
--------------
Your computer is now clean. Please consider this going forward.
Here is some additional information to consider.
===================================================
All Clean!
--------------
Your computer is now clean. Please consider this going forward.
- Have you Been Hacked? 10 Indicators That Say Yes
- So How did I get infected?
- How to Spot the Real Download Button on Websites
- Pirated Software is All Fun and Games Until Your Data is Stolen
- Do You Need Anti-Ransomware Software for Your PC?
- How Browser Extensions Turn Into Malware
- Why You Should Update All Your Software
- How Safe Are Password Managers?
- Whats the Best Way to Back Up My Computer?
- Why Is My Internet So Slow?
Gary
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
#23
Oh My!
-
- Malware Response Instructor
- 57,428 posts
- OFFLINE
Adware and Spyware and Malware
- Gender:Male
- Location:California
- Local time:09:30 PM
Posted Yesterday, 07:57 AM
It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Gary
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
Lord, to whom shall we go? You have the words of eternal life. We have come to believe and to know that you are the Holy One of God.
John 6:68-69
2 user(s) are reading this topic
0 members, 2 guests, 0 anonymous users
