Win32:VBCrypt-CRS [Trj]

Second Eset scan29th August 2015, 12:25 am

Here are the results of the 2nd ESET scan. The one I think is the culprit is TrQ1Vb72t6b\LIXtKRzHJk.exe a variant of MSIL/Kryptik.DFE trojan
This was in the first report too.

Also, the operating memory one is new.

C:\Users\Cander\AppData\Local\Mozilla\Firefox\Profiles\y2lxpkce.default\cache2\entries\694600C9F5FF221CCA5A06855446A1FEC84EC66A a variant of Win32/Techsnab.E potentially unwanted application cleaned by deleting - quarantined
C:\Users\Cander\AppData\Roaming\TrQ1Vb72t6b\LIXtKRzHJk.exe a variant of MSIL/Kryptik.DFE trojan cleaned by deleting - quarantined
C:\Users\Cander\AppData\Roaming\uTorrent\updates\3.3.1_30003.exe a variant of Win32/AdkDLLWrapper.A potentially unwanted application cleaned by deleting - quarantined
C:\Users\Cander\Downloads\Photoshopdownloads\Adobe_Photoshop_CS6_Extended_[Full].exe a variant of Win32/Techsnab.E potentially unwanted application cleaned by deleting - quarantined
C:\Users\Cander\Downloads\Torrents\Adobe_Photoshop_CS6_Extended_Crack_.DLL_Files_32bit_64bit.exe a variant of Win32/Techsnab.E potentially unwanted application cleaned by deleting - quarantined
C:\Users\Cander\Downloads\Torrents\utorrent.exe a variant of Win32/AdkDLLWrapper.A potentially unwanted application cleaned by deleting - quarantined
Operating memory a variant of MSIL/Autorun.Spy.Agent.AU worm unable to clean

I will now run the MS Security Essentials and post back

MS Security Essentials29th August 2015, 3:15 am

Security essentials found nothing.

I will restart the machine and see if it returns.

All clear29th August 2015, 4:38 am

On restart, the warning of infection didn't pop up. Apparently the second ESET scan got rid of the problem. I ran ESET again and it came out clean. I am now running a full scan with the AVAST.

Thanks for your help on this. :lol2:

Re: Win32:VBCrypt-CRS [Trj]29th August 2015, 11:19 pm

Click Start> Computer> right click the C Drive and choose Properties> enter
Click Disk Cleanup from there.

Win32:VBCrypt-CRS [Trj] - Page 2 Diskcleanup2

Win32:VBCrypt-CRS [Trj] - Page 2 Diskcleanup2

Click OK on the Disk Cleanup Screen.
Click Yes on the Confirmation screen.

Win32:VBCrypt-CRS [Trj] - Page 2 Diskcleanup

This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
******************************************
This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:

Activate UAC (optional; some users prefer to keep it off)
Remove disinfection tools
Create Registry backup
Purge System Restore Points
Re-set system settings

Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.
**********************************************
I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!