このフォーラムスレッドには解決策が必要です。
拍手0

Neshta Virus

Good day, I have a problem with the following virus (Neshta) on a server,

I have a problem with the following virus (Neshta) on a server, several infected . exe infected which I can not enter them to use them, Windows Defender detected them as viruses, and I have 4 functions for if I want to send them to quarantine, if I want to delete them, if I want to keep them in the system or if I want to clean the threat, as they are very important programs and files to work with the server, it would be a problem to be removed, my question is, is there any tool by McAfee to remove the virus from each executable that I have infected to reuse it without deleting the executable?

I send some screenshots of the detected elements, if any other information is required please comment me, waiting for your comments, thank you very much!

ファイルの添付: 

返信

拍手1 統計

Re: Neshta Virus

fwiw ~ 

[...]
Malwarebytes wants to quarantine but many are system files and would probably break the server if they went missing. Again, this is the lone server and domain controller. Most AV options want to take this approach. The timestamps on the files are from before the oldest backup so restoring those files won't help. (I don't think) So I find AVG makes a Neshta removal tool.  This seems to work. It finds and cleans the virus, then reboots PCs to clean any files it couldn't while the OS was running. I run this on the server. The scan completes but it doesn't prompt for the reboot. Not sure if this is because it's a server OS or what. I reboot, rescan w/ Malwarebytes, it gets more hits of files that were just cleaned. I figure it must be memory resident. I've tried several combinations, and I'm not ruling out false positives with Malwarebytes due to some of its registry results, but I can't leave the server in this state.
[...]

[...]

https://community.spiceworks.com/topic/2262222-server-hit-with-ransomware-now-neshta 

https://www.malwarebytes.com/blog/detections/virus-neshta

拍手0

Re: Neshta Virus

拍手0

Re: Neshta Virus