Trojan.generic

Hi

I'm using KAV (6.0.2.621)

It detects the virus ( Sys.exe) : Trojan.generic

But couldn't reomve it !!

I can't open the task manager

the Folder Options disappeard too since i got that virus

any removal tool ?

plllz help !!

 

You seem to have a backdoor trojan, but it is odd that KAV could not remove it.

http://www.processlibrary.com/directory/files/sys/

Try one of the free online scanners in my signature to see if they might help. There is a program called Trojan remover, but not sure of its effectiveness (it's not free).

http://www.simplysup.com/

 

Send the file to newvirus@kaspersky.com in a password protected archive.

In the description, add a short description of what the virus done and what happened (original post) along with the archive's password.

Also post in the Kaspersky forum where you may receive additional help http://forum.kaspersky.com/index.php? (under the Virus related issues) sub-forum.

You can also contact kaspersky support: http://support.kaspersky.ru/helpdesk.html?LANG=en
and select "submit a request" and then select "virus disinfection" and your product and follow the steps from there. also add the file (in a archive) with the request if possible.

 

Sys.exe seems to be a process belonging to Backdoor.ICR Trojan. Check this link http://www.liutilities.com/products/wintaskspro/processlibrary/sys/. There is also a possibility that it is compressed or packed that's why KAV detects it as a Trojan.Generic. Why don't you send a sample file to Norman Sandbox to know what it does?

PS: Some packed files can't be analyzed by the Sandbox. An example is Peetles. And would you mind posting the result of the Sandbox and analysis of KAV. Thanks!

Goodluck,
thanatos