• Announcements

    • Marcos

      Filecoder.Crysis updated to decode .dharma files   03/01/2017

      We are happy to announce you that we have updated the Filecoder.Crysis decoder to support decryption of files with the .wallet and .onion extensions. The decoder is downloadable from https://download.eset.com/com/eset/tools/decryptors/crysis/latest/esetcrysisdecryptor.exe.
Guest Dan

Please help it is very important.

8 posts in this topic

hello.

my NOD32 is popping up a notification about a dangerous file: C:/programdata/Windows Service Manager0/apijacjxv.exe

now i cant find that folder and my settings are on show hidden files and folders.

the antivirus sends the file into quarantine and the pop up message keeps on popping up.

this is my working pc and its very important for me to fix it.

please take a few minutes to help.

Okq4SSP.png

Share this post


Link to post
Share on other sites

Hello,

 

have you already run an In-Depth-Scan of your whole system (NOT Smart-Scan, but User-defined)? If not, please do so to find the source of the infections...

Share this post


Link to post
Share on other sites

It's malware written in Autoit. It registers in the HKLM/SOFTWARE/Microsoft/Windows/CurrentVersion/Run/Windows Service Manager key and HKCU/SOFTWARE/Microsoft/Windows/CurrentVersion/Run/Windows Service Manager with the path C:\ProgramData\Windows Service Manager0\xsytzecrn.exe. (The file name seems to be random.)

According to the alert, there was no error while cleaning. Try restarting the computer to make sure the malware does not load.

 

The malware will be renamed to Win32/Neurevt.A as of the next update.

Share this post


Link to post
Share on other sites

Hello,

 

have you already run an In-Depth-Scan of your whole system (NOT Smart-Scan, but User-defined)? If not, please do so to find the source of the infections...

 Do you mean a custom scan?

Share this post


Link to post
Share on other sites

 

Hello,

 

have you already run an In-Depth-Scan of your whole system (NOT Smart-Scan, but User-defined)? If not, please do so to find the source of the infections...

 Do you mean a custom scan?

 

 

I believe that is what tommy sugested - when you go to scan/custom scan You can select profiles and there is deep scan - try this one, or You can try to use scan in safe mode, but remember to disable system restore before this :)

Share this post


Link to post
Share on other sites

Exactly, thanks Bart - I have a different language version installed - my fault - sorry! ;)

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.