Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

I think I need help with ransomware [Solved]

Started by mx842 , Dec 05 2023 11:29 AM

  • This topic is locked This topic is locked

#61
mx842
Posted 12 December 2023 - 02:44 PM

mx842

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

Screenshot (11).png

 

ehis is what I'm getting now


  • 0

Advertisements

#62
mx842
Posted 12 December 2023 - 02:55 PM

mx842

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts
# Run at 12/12/2023 3:47:56 PM
# KpRm (Kernel-panik) version 2.15.0
# Run by Lin from C:\Users\Lin\Downloads
# Computer Name: DESKTOP-TB9AP1R
# OS: Windows 10 X64 (19045) (10.0.19045.3758) 
# Number of passes: 1
 
- Checked options -
 
    ~ Registry Backup
    ~ Delete Tools
    ~ Restore System Settings
    ~ UAC Restore
    ~ Delete Restore Points
    ~ Create Restore Point
    ~ Delete Quarantines
 
- Create Registry Backup -
 
   ~ [OK] Hive C:\Windows\System32\config\SOFTWARE backed up
   ~ [OK] Hive C:\Users\Lin\NTUSER.dat backed up
 
     [OK] Registry Backup: C:\KPRM\backup\2023-12-12-15-47-56
 
- Delete Tools -
 
 
  ## AdwCleaner
     [OK] C:\Users\Lin\Downloads\AdwCleaner.exe deleted
     [OK] C:\AdwCleaner deleted
 
  ## ESET Online Scanner
     [OK] C:\Users\Lin\Desktop\ESET Online Scanner.lnk deleted
     [OK] C:\Users\Lin\Downloads\esetonlinescanner (1).exe deleted
     [OK] C:\Users\Lin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk deleted
     [OK] C:\Users\Lin\AppData\Local\ESET\ESETOnlineScanner deleted
 
  ## FRST
     [OK] C:\Users\Lin\Desktop\Addition.txt deleted
     [OK] C:\Users\Lin\Desktop\Fixlog.txt deleted
     [OK] C:\Users\Lin\Desktop\FRST-OlderVersion deleted
     [OK] C:\Users\Lin\Desktop\FRST.txt deleted
     [OK] C:\Users\Lin\Desktop\FRST64.exe deleted
     [OK] C:\Users\Lin\Downloads\Addition (1).txt deleted
     [OK] C:\Users\Lin\Downloads\Addition.txt deleted
     [OK] C:\Users\Lin\Downloads\Fixlog (1).txt deleted
     [OK] C:\Users\Lin\Downloads\Fixlog.txt deleted
     [OK] C:\Users\Lin\Downloads\FRST (1).txt deleted
     [OK] C:\Users\Lin\Downloads\FRST-OlderVersion deleted
     [OK] C:\Users\Lin\Downloads\FRST.txt deleted
     [OK] C:\FRST deleted
 
- Restore System Settings -
 
     [OK] Reset WinSock
     [OK] FLUSHDNS
     [OK] Hide Hidden file.
     [OK] Show Extensions for known file types
     [OK] Hide protected operating system files
 
- Restore UAC -
 
     [OK] Set EnableLUA with default (1) value
     [OK] Set ConsentPromptBehaviorAdmin with default (5) value
     [OK] Set ConsentPromptBehaviorUser with default (3) value
     [OK] Set EnableInstallerDetection with default (0) value
     [OK] Set EnableSecureUIAPaths with default (1) value
     [OK] Set EnableUIADesktopToggle with default (0) value
     [OK] Set EnableVirtualization with default (1) value
     [OK] Set FilterAdministratorToken with default (0) value
     [OK] Set PromptOnSecureDesktop with default (1) value
     [OK] Set ValidateAdminCodeSignatures with default (0) value
 
- Clear Restore Points -
 
   ~ [OK] RP named Scheduled Checkpoint created at 12/04/2023 19:15:34 deleted
   ~ [OK] RP named Windows Modules Installer created at 12/06/2023 14:25:21 deleted
     [OK] All system restore points have been successfully deleted
 
- Create Restore Point -
 
     [OK] System Restore Point created
 
- Display System Restore Point -
 
   ~ [I] RP named KpRm created at 12/12/2023 20:48:37
 
-- KPRM finished in 75.01s --

  • 0

#63
DR M
Posted 12 December 2023 - 02:58 PM

DR M

    The Grecian Geek

  • Malware Removal
  • 4,122 posts

OK! You did it!

We reached the end of this process, and your computer is now clean!   :prop: 


Now your computer is clean, here are some final tips about your computer's security from now on:

Some of the following, are from Klein's (2005) article, So how did I get infected in the first place. Since then, the article has been reproduced or linked to in dozens of locations. As a result, many malware experts have continued updating it, to include current operating systems and software program information. My source is Security Garden, and I marked for you the following:

1. Keep your Windows updated!
It is important always to keep current with the latest security fixes from Microsoft. This can patch many of the security holes through which attackers can infect your computer.

2. Update 3rd Party Software Programs
Third Party software programs have long been targets for malware creators. It has been stated that "Adobe’s Reader and Flash and all versions of Java are together responsible for a total of 66 percent of the vulnerabilities in Windows systems exploited by malware.'' It's important to keep everything updated.

3. Update the browsers you use
Many malware infections install themselves by exploiting security holes in the Internet browser that you use. So... Keep them updated.

4. Be careful about what you download and what you open!

  • Many "freeware" programs come with an enormous amount of bundled spyware that will slow down your system, spawn pop-up advertisements, or just plain crash your browser or even Windows itself. Watch for pre-checked options such as toolbars that are not essential to the operation of the installed software.
  • Peer-to-peer (P2P) programs like Kazaa, BearShare, Imesh, Warez P2P, and others, allow the creation of a network enabling people to connect with other users and upload or download material in a fast efficient manner. BUT even if the P2P software you are using is "clean", a large percentage of the files served on the P2P network are likely to be infected.
  • Cracked or pirated programs are not only illegal, but also can make your computer a malware target. Have this in mind.
  • Do not open any files without being certain of what they are!

5. Avoid questionable web sites!
Visit web sites that are trustworthy and reputable. Many disreputable sites will attempt to install malware on your system through "drive-by" exploits just by visiting the site in your browser. Lyrics sites, free software sites (especially ones that target young children), cracked software sites, and pornography sites are some of the worst offenders. Also, never give out personal information of any sort online or click "OK" to a pop-up unless it is signed by a reputable company and you know what it is.

6. Registry cleaners/driver boosters/system optimizers
I do not recommend registry cleaners, system optimizers, driver boosters and the like. It is your computer and certainly your choice. However, please consider that modifying registry keys incorrectly can cause Windows instability, or make Windows unbootable. With registry cleaner and system optimization software programs, the potential is ever present to cause more problems than they claim to fix. Do note, however, that Microsoft does not support the use of registry cleaners. See Microsoft support policy for the use of registry cleaning utilities.

7. PC means personal computer!
Don't give access to your computer to friends or family who appear to be clueless about what they are doing.

8. Back-up your work!
Make back-ups of your personal files frequently. You never know when you'll have to reformat and start from scratch. You can always reformat and reinstall programs, but you cannot replace your data if you haven't made backups.

9. Must-Have Software
An anti-virus and an anti-spyware program is a necessity for the security of your computer. Be sure that you keep them updated, and that real time protection is enabled. You have now the built-in Windows antivirus, Windows Defender. Together with Malwarebytes, if you run it occasionally, depending on how often you use your computer, can keep you safe.

Happy safe computing. ZZZQehw.gif


I'm glad I was able to help you.


  • 0

#64
mx842
Posted 12 December 2023 - 03:37 PM

mx842

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

Ok, I was going to ask about additional spyware, anti-virus, and key logger programs.

1 If they are recommended what's best to use.

2 What about Firefox? Is what I have now all that I need?

3 Also search engines someone recommended DuckDuckGo as a better search engine or should I just stay with Edge.

4 As I mentioned before I think I know the link I used to get that Trogen and as far as I knew it was a safe site but how do you know for sure in the future? That download file is still in my downloads folder so how could I check it to see if it was the one that did the job on me? 

 

I have a machine with Linux Mint on it would I be better advised to use that for what I'm searching and buying over the net? And finally Thank you so much for all your help. Do you accept donations yourself or just do it to the site? I don't have much, but I don't mind sharing what I can.


  • 0

#65
DR M
Posted 12 December 2023 - 04:00 PM

DR M

    The Grecian Geek

  • Malware Removal
  • 4,122 posts

Let's see if I can answer to your questions.

 

1. Recommendation about anti-virus, anti-spyware programs: see my last point 9 above.

 

 

An anti-virus and an anti-spyware program is a necessity for the security of your computer. Be sure that you keep them updated, and that real time protection is enabled. You have now the built-in Windows antivirus, Windows Defender. Together with Malwarebytes, if you run it occasionally, depending on how often you use your computer, can keep you safe.

 

You don't need anything else if you have in mind all the previous points (1-8).

 

 

2. Firefox

 

I didn't understand what you mean. 

 

 

3. DuckDuckGo

 

This is a search engine. Edge is a browser. You can use DuckDuckGo in any browser you have.

 

 

4. Dangerous link

 

To get a trojan, you clicked on a link to download something or see something. It's not just the visit to the site which gave you the malware. Again, read points 4 and 5 above. You can delete the questionable file from your Downloads folder, and of course, do not consider to install it!

 

 

5. Linux

 

It's up to you what you want to use. You are safe when using any OS, but only when you are clever. Meaning, taking in mind points 1-9 in my "final lecture" post.

 

 

 

And finally Thank you so much for all your help. Do you accept donations yourself or just do it to the site? I don't have much, but I don't mind sharing what I can.

 

My assistance is completely free, and you are most definitely very welcome. However, if you would like to "buy me a coffee", you can do that via my site (see my signature below).


  • 0

#66
DR M
Posted 14 December 2023 - 10:02 AM

DR M

    The Grecian Geek

  • Malware Removal
  • 4,122 posts
As this issue appears to be resolved, I'm closing this topic.
 
If you need it reopened, please send me a personal message (Hoover with the mouse on my profile name and choose Send message).
 
I'm glad I was able to help you. 

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP