Can't remove trojan

Discussion in 'malware problems & news' started by isaacbel, Jan 5, 2007.

Thread Status:
Not open for further replies.
  1. isaacbel

    isaacbel Registered Member

    Joined:
    Jan 5, 2007
    Posts:
    1
    Hi can u help me out with following malware,
    i even can´t remove with kaspersky
    Trojan-Proxy.Win32.VB.t

    after removing i still have the try of hidden launch
    thnx
     
    Last edited by a moderator: Jan 5, 2007
  2. ASpace

    ASpace Guest

  3. fcukdat

    fcukdat Registered Member

    Joined:
    Feb 20, 2005
    Posts:
    569
    Location:
    England,UK
  4. dawgg

    dawgg Registered Member

    Joined:
    Jun 18, 2006
    Posts:
    817
    1) you may want to try SystemRestore to restore to a point before you were infected
    And/Or
    2) disable System Restore then scan with the programs suggested above in SafeMode. Make sure the programs are updated before you scan
     
  5. Togg

    Togg Registered Member

    Joined:
    Jun 24, 2003
    Posts:
    177
    If the previous posts didn't help, you could always try the 30 day trial of Trojan Remover; http://www.simplysup.com/

    If you do try it, be sure to run the built in updater before you run it. Also, you should be aware that the first 'Scan' option only checks well known launching places for trojans. If you know where your trojan is 'hiding' you should set up a specific scan of that program/file.
     
  6. Ice_Czar

    Ice_Czar Registered Member

    Joined:
    May 21, 2002
    Posts:
    696
    Location:
    Boulder Colorado
    or
    definitely or :D

    XP systemrestore is nothing but a safe haven for malware and a largely pointless exercise for anyone above the totally clueless, employ a clone\image strategy instead of a known secure state, with data relocated or forwarded (aps data storage locations) to a dedicated partition. Then a "real" recovery is just minutes away. Not that investigating what happened doesnt hold value or just the fun of beating the infection, but these days knowing youve got it all is problematic


    to the OP
    using safemode to prevent it from bootstrapping into memory or using a HIPS to disrupt it from doing the same might enable you to locate it all with good manual removal instructions for the specific varient your looking at. But there is alot of money behind malware these days and some nasty tricks (see last link above). Some of the filenames may be randomized. Worse they may also be in the alternative data streams. If thats the case it can defeat automated removal and you wait for specific manual removal instructions. Trojans generally come in several parts and failure to get it all just allows reinfection, they also can hide from various scanners and rootkit detectors in constant war of detection vs infection.

    Consider a backup strategy like mentioned above if timeliness is important
    and increase the depth of your defense
     
Loading...
Thread Status:
Not open for further replies.