3 Replies Latest reply on Jul 9, 2014 9:33 PM by Hayton

    I was sent a file that I later found at had a ''jrat in it''

    bullseye4932

      I need some help figureing out how I delete them or whatever. I scanned it and it had no results.

       

       

       

       

       

      I was told by the person sent it was ''encrypted''
      I need help figureing out how to remove this or some further explaining of this subject

        • 1. Re: I was sent a file that I later found at had a ''jrat in it''
          catdaddy

          I assume you are referring to the "Java Runtime Analysis Toolkit"?

           

          I recommend that you run the Latest Stinger,Mcafee Rootkit Remover,followed up by running Malwarebytes (Free) Version only.

          All of these Superb (Free) Tools can be found below my Signature (Second Link)

           

          Please pay close attention to (How to use) in regards to Stinger/Rootkit Remover.

          You may want to run McAfee Getsusp as well. Kindly list your Email address under "Preferences" before scanning.

           

          Regards,

           

           

           

          Message was edited by: catdaddy on 7/9/14 6:56:41 PM EDT
          • 2. Re: I was sent a file that I later found at had a ''jrat in it''
            Peter M

            If all it was was "JRAT" then McAfee should be able to detect and remove it  anyway.  However there may be something else attached.  What symptoms are you seeing and what operating system and service pack is this?

             

            Have you thought of trying System Restore to go back to before it happened?

             

            If successful then temporarily disable System Restore to delete the infection.

             

            There are some other suggestion in the last link in my signature below.

            • 3. Re: I was sent a file that I later found at had a ''jrat in it''
              Hayton

              "JRAT" could be the Java Runtime Analysis Toolkit, but it could also refer to a Java Remote Access Trojan. The post did not make clear how the presence of this, whatever it is, became evident.

               

              Knowing the file name might help, but it would be better to upload the file to VirusTotal for checking by a range of antimalware products. All we know is that it was scanned, presumably by McAfee, and the scan found nothing.

               

              It's not possible to give any advice until we get some more information about the file.