Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

RAT remain after formatting [Closed]

rootkit

  • This topic is locked This topic is locked

#1
mimogg

mimogg

    Member

  • Member
  • PipPip
  • 14 posts

My is infected with RAT who remain after low level format.

I've tryed also to flash the BIOS.

What to do?


  • 0

Advertisements


#2
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,218 posts

Hello.
 
Welcome to GTG Forums.
 
What makes you think that you are still infected?
 
If you want us to check your computer for malware, please do the following:

Download Farbar Recovery Scan Tool and save it to your desktop. 

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

If your antivirus software detects the tool as malicious, it’s safe to allow FRST to run. It is a false-positive detection.

If English is not your primary language, right click on FRST.exe/FRST64.exe and rename to FRSTEnglish.exe/FRST64English.exe

  • Double-click the FRST icon to run the tool. When the tool opens click Yes to disclaimer.
  • Press Scan button and wait for a while.
  • The scanner will produced two logs on your Desktop: FRST.txt and Addition.txt.
  • Please attach the content of these two logs in your next reply.

(To attach the files, click on the More Reply Options at the bottom right of the reply area, and then choose Attach File)
 


  • 0

#3
mimogg

mimogg

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

What makes you think that you are still infected?

Someones is just playing with my computer.
 
-restart my pc
-eject my dvd writer
-close processes
-installs programs without I even notice
-stops my internet (so I have to re-install my Windows.)
-delete the Windows system files
-hide tray icons
-pc is so slower
 
Have the same sympthoms,before HDD formatting and seconds after i re-installed my Windows 10.
Here are the logs you requested :

Attached Files


  • 0

#4
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,218 posts

Hi, mimogg.
 
There are some errors related to the operating system's activation.
 
So, before we start, I would like you to do the following:

  • Press Windows icon on your Desktop, together with the letter R.
  • Type cmd, and press Ctrl + Shift + Enter to run Command Prompt as administrator.
  • Copy and paste the following command and press Enter:
slmgr /dli
  • After running the command, you will get a report. Please take a screenshot of what you got and attach it in your next reply. Here is an article where you can see how do you take a screenshot with the snipping tool, in case you need it.

  • 0

#5
mimogg

mimogg

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Here's the report :

Capture.png


Edited by mimogg, 22 January 2022 - 04:23 PM.

  • 0

#6
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,218 posts

Hello, mimogg.

 

The screenshots confirms that there is an issue with Windows activation.

 

How did  you get your Windows Home? Was the Home edition installed in your computer when you bought it? When you formatted the computer did you used the same edition the computer had before?


  • 0

#7
mimogg

mimogg

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Got  Windows 10 from official iso (Microsoft site).

And i do not own a activation key.

I used the same edition to re-install the OS,but the media was created from non infected pc.


Edited by mimogg, 23 January 2022 - 04:33 AM.

  • 0

#8
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,218 posts

That means the computer had installed Windows 10 Home when you bought it?

 

If yes,

  1. Press the Windows icon and the letter i on the keyboard.
  2. Choose Update & Security from the list.
  3. Select Activation in the left pane of the window.
  4. Click Troubleshoot.

Let me know what happened. 


  • 0

#9
mimogg

mimogg

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Nope,i don't had it installed when i bough the pc.

 

 

Capture2.png

 

I had to update non activated Windows to a newer version.

That's why i got this error.


Edited by mimogg, 23 January 2022 - 04:47 AM.

  • 0

#10
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,218 posts

You installed Windows without buying it. That means that you have to buy a licence so you can activate it on the computer. Otherwise you will have problems, soon or later.


  • 0

Advertisements


#11
mimogg

mimogg

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Yes,i know that.


  • 0

#12
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,218 posts

Having said that, unfortunately I can't provide assistance until you buy a genuine Windows 10 Home licence. 

 

When you do that, I will be glad to help you. 


  • 0

#13
mimogg

mimogg

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

I have a Windows 7 genuine key.

What about if i install Windows 7?


  • 0

#14
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,218 posts

If it is a genuine Retail key (not Volume one), you can use it to install Windows 7. Then, you can upgrade to 10. 


  • 0

#15
mimogg

mimogg

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Mhm i didn't knew that.

Ok i will do it.

When i'm ready will post again.


Edited by mimogg, 23 January 2022 - 05:01 AM.

  • 0






Similar Topics


Also tagged with one or more of these keywords: rootkit

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP