Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Trojan


  • Please log in to reply
2 replies to this topic

#1 vbcrayon

vbcrayon

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:29 AM

Posted 10 April 2017 - 04:05 PM

Mates,
Today a client called me saying that he wasn't able to access his files on the server. By TeamViewer I was able to identify that the directories were hidden and in their place a shortcut was created to fire an executable. My antivirus identified it as 'Artemis! 4DF4B0ADAEBE' and deleted it (theoretically). I passed Malwarebytes and it confirmed that there was no more virus in the system. Then I erased all the shortcuts and unhide all the folders. However, when I went to open the files, they were all corrupted (or encrypted, I don't know). Is there a way to get them back? I'm attaching a file as an example.
 
OS.: Windows Server 2003 R2
AV: Viruscan Enterprise 8.8 Patch 6

Example file:

https://we.tl/Zi83PADICq

Thanks,


BC AdBot (Login to Remove)

 


#2 ultraelf

ultraelf

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:29 AM

Posted 11 April 2017 - 07:26 AM

Artemis! 4DF4B0ADAEBE

 

Ask this question here

https://community.mcafee.com/community/security/malware_discussion/artemis

 

hope it help 



#3 vbcrayon

vbcrayon
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:29 AM

Posted 11 April 2017 - 06:19 PM

Artemis! 4DF4B0ADAEBE

 

Ask this question here

https://community.mcafee.com/community/security/malware_discussion/artemis

 

hope it help 

Thanks.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users