V9 Trojan removal?

Discussion in 'malware problems & news' started by rfresh, Sep 21, 2012.

Thread Status:
Not open for further replies.
  1. rfresh

    rfresh Registered Member

    I've got the v9 trojan...is there a tool I can use to remove it? I've tried several anti-virus and trojan removal tools (AVG, MalwareBytes) and none can detect it.

  2. AlexC

    AlexC Registered Member

    Maybe this helps?
    Last edited by a moderator: Sep 22, 2012
  3. rfresh

    rfresh Registered Member

    I did see that page when I was googling around but I didn't have any of the files listed like this one:

    %AppData%[trojan name]toolbardtx.ini

    Nothing with *toolbar*

    I also have doubts about what they are saying to delete in the registry.

    The end of this page says to call them for help (for a fee) if you can't remove it yourself...I just think the whole page is bogus.

    There must be some removal tool that will get rid of v9.
  4. JRViejo

    JRViejo Global Moderator

    rfresh, first, welcome to Wilders!

    Perhaps reviewing If you are currently infected and seeking dedicated help in any of the listed sites, could be your best bet.
    FYI. Wilders stopped providing one-on-one help, as per Policy, awhile ago.
  5. CloneRanger

    CloneRanger Registered Member

    @ rfresh

    Is it this ?

    If so i would try that. Afterwards use HitManPro to check etc http://www.surfright.nl
  6. ComputerSaysNo

    ComputerSaysNo Registered Member

    Kaspersky removal tool and Rescue CD should also be considered. I also trust Dr Web so maybe use that first then if that doesn't work download the listed tools.
  7. rfresh

    rfresh Registered Member

    >You can also use their web unblocker http://vms.drweb.com/mbrlock16 keygen

    I ran this URL and it is asking for some kind of kddkey. What is that?

    HitManPro did not find v9 on my system.
  8. CloneRanger

    CloneRanger Registered Member

    In one of the links i gave you http://deletemalware.blogspot.co.uk/2011/10/how-to-remove-antivirus-xp-hard-disk.html it shows text of what the malware pop up would show you.

    In there would be your HardDisk serial key, for eg as in the link

    HDDKey: 01FC70011070FB07

    Everybodys "should" be different. So you would enter YOUR key into http://vms.drweb.com/mbrlock16 keygen & get an unblock code to then type into the malware's entry box.

    If you havn't seen ANY message box on your comp, then you either havn't got that malware, or it's a different version.

    How do you know you are infected with it, or something ?
  9. rfresh

    rfresh Registered Member

    I see...I don't have any window popping up asking for a key. The v9 trojan I have is the one that forces their v9.com search page into your browser no matter what you do. You can't use google or bing or any other search engine. v9 forces you to use their page because it is loaded with links which will further infect your machine if you click on them.
  10. CloneRanger

    CloneRanger Registered Member

    Have you tried doing a System Restore to before you Know you were infected ? Might be worth a go ;)

    Plus don't forget those HELP forums that JRViejo linked you to :thumb:
  11. hogndog

    hogndog Registered Member

    I'm thinking you should go see these folks at Geeks To Go they have experts there trained to remove that poison.. :)


  12. rfresh

    rfresh Registered Member

    I went through the geekstogo.com link on how to remove viruses and Trojans. A lot of work and a lot of programs to down load and install, etc. I never did see the v9.com string appear but one of those 5 or 6 tools must have found it and removed it because it appears to be gone from my browser search page.

    So much thanks to everyone for helping me.
  13. CloneRanger

    CloneRanger Registered Member

    @ rfresh

    Glad you got it sorted :thumb: It might now be a good idea, to beef up your defences ;) Lots of nice solutions on here :thumb:
  14. hogndog

    hogndog Registered Member

    Your quite welcome.. just be careful out there.. :thumb:

Thread Status:
Not open for further replies.