INSever.D_trojan

NOD32 detects trojan \A0015293.exe-Win32/TrojanDownloader.INService.D_trojan
and \A0015293.exe VPXv12_m2 - unpac error ...but does not offer anyway to remove it, it just says it's there, why won't it remove it or advise how to

 

Make sure Nod is set up as in post #5 in this thread:

https://www.wilderssecurity.com/showthread.php?t=21171

then try running Nod while in "Safe Mode".

Let us know how you go...

Cheers

 

Two possibilities:

1. When you ran the NOD on demand scanner, did you click the "scan" button or the "ckean" button? I think this is the way it goes: the scan button just scans and lets you know what's up...but it doesn't clean. Using the clean button will scan and allow an action, like clean, delete, etc. (You should also check your settings to see how you have the program set, what to do when it finds a virus, etc. For example, it can be set to clean automatically---which might be an ok choice, unless it's a uncommon false positive and a good file is zapped as a result---or offer action, etc.)

2. Ordinarily if NOD cannot delete a file it will tell you that it cannot delete it. If a trojan is running, for example, it likely must be shut down before NOD can delete it. Two ways to attempt that: a) if you can ID the malware's process in the task manager (in XP or W2K for example) you could shut the process down and then scan with NOD and remove it; or b) and probably easier to do: boot into safe mode and run a NOD scan from there and see if you can remove the malware.

But at this point I'm inclined to think that #1 is the main problem since you're apparently receiving no possible actions or reasons why it cannot be removed. Use the clean button in the on demand scanner and see what happens.

 

If the file in question is packed with an unknown runtime packer, you'll need to delete it manually. Before you do that, please submit it to samples@nod32.com