Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Nightmare with trojan removal


  • This topic is locked This topic is locked
5 replies to this topic

#1 EmmyG82

EmmyG82

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:02:41 PM

Posted 09 July 2018 - 01:58 AM

Hi,

​I am having nightmares with a virus on my laptop that windows defender detects but cannot remove.

 

 Trojan:Win32/Detrahere!reg


regkeyvalue:HKLM\SYSTEM\CurrentControlSet\Control\Network\\set_pt

 

Windows defender gets stuck halfway through removing.

 

I cannot download Farbar Recovery scan tool. I get a message saying:

                         "The publisher of FRST64_exe couldn't be verified"

 

 

Could someone please help with how I can remove this?

 

Thanks in advance!!!!Attached File  defender.PNG   31.21KB   0 downloads

 

 



BC AdBot (Login to Remove)

 


#2 polskamachina

polskamachina

  • Malware Response Team
  • 3,994 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:41 PM

Posted 11 July 2018 - 11:25 AM

Hi EmmyG82 :)
My name is polskamachina and I would like to :welcome: you to the Malware Removal Forum. I will be helping you with your malware issues.

What follows below are some ground rules for this forum.
 
I will reply as soon as possible (typically within 24-48 hours). In turn, I ask that you please respond within 72 hours. If you know you will be away longer than that, please let me know. I am in California at GMT-7 hours. If I do not respond to you within 48 hours, feel free to send me a private message.

Some points for you to keep in mind:

  • Do NOT run any tools unless instructed to do so.
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine. Running any additional tools may detect false positives, interfere with our tools, cause unforeseen damage, or system instability.
  • Do not attach logs or use code boxes, just copy and paste the text into your replies to me.
  • I cannot see your computer. Periodically update me on the condition of your computer, and provide as much detail as you can in every post.
  • Once things seem to be working again, please do not abandon the thread. I will give an "all-clean" message at the very end.
  • NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planned. You can put them on a CD/DVD, external drive or a flash drive, anywhere except on the computer.
  • NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. Please remember to copy the entire post so you do not miss any instructions.

Let's begin:

  • Please click on this link and follow the detailed directions starting at step :step6:
  • Download and run the Farbar Recovery Scan Tool also known as FRST
  • Copy and paste the logs, FRST.txt and Addition.txt into your next reply to me

Let me know if you have any questions.

 

polskamachina



#3 EmmyG82

EmmyG82
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:02:41 PM

Posted 14 July 2018 - 12:07 PM

Hi.
Thank you for your reply...
As I stated in my original post..

I cannot download Farbar Recovery scan tool. I get a message saying:

                         "The publisher of FRST64_exe couldn't be verified"

 



#4 polskamachina

polskamachina

  • Malware Response Team
  • 3,994 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:41 PM

Posted 14 July 2018 - 04:45 PM

Hi EmmyG82 :)

I cannot download Farbar Recovery scan tool. I get a message saying:

  "The publisher of FRST64_exe couldn't be verified"

Apologies for the oversight. Try the following workarounds:

  • Temporarily disable your anti-virus software and click on the download link again. Note that the file you should be downloading is FRST64.exe (or FRST.exe for 32-bit). There is no underscore character after the 64.

If you are still unable to download it, you will need to use another working computer and a flash drive.

  • Insert your flash drive into another computer
  • Click on the FRST64 download link
  • Save the file to your flash drive
  • Eject the flash drive from your other computer and insert into your infected computer
  • Copy FRST64.exe (or FRST.exe if you have the 32-bit version) from your flash drive to your desktop
  • Right-click FRST64.exe and select, Run as administrator
  • Click on Scan
  • Copy and paste FRST.txt and Addition.txt into your next reply to me

 

Let me know if you have any questions.

 

polskamachina



#5 polskamachina

polskamachina

  • Malware Response Team
  • 3,994 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:41 PM

Posted 18 July 2018 - 10:44 AM

Hi EmmyG82 :)

 

It's been a while since you've checked in. Did you need any more help with this? If not, this topic will be closed in 48 hours.
 
Please let me know if you have any questions.
 
polskamachina



#6 polskamachina

polskamachina

  • Malware Response Team
  • 3,994 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:41 PM

Posted 20 July 2018 - 11:46 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users