A Digital Age Deserves A Digital Leader

Downloader.Trojan how do i remove it?

Downloader.Trojan how do i remove it?

Postby How_Does_ This_ Thing_ Wo » Mon Dec 05, 2005 8:10 pm

Ok, i tried to search for this first before i had to ask, but i cannot seem to find it anywhere.

My son has been using the computer today, he recent came and told me that norton found a virus, the virus being Downloader.trojan

I know almost nothing about computers. So i had Norton do a scan and it could not remove it. So right now i am at a loss on how to deal with this.

Could anyone led a helping hand?
I wish this machine ran right....
PRO New Member
Posts: 7
Joined: Mon Dec 05, 2005 8:05 pm
Location: Iowa

Postby Neuromancer » Mon Dec 05, 2005 8:15 pm

Try these steps from Symantec :)
For specific removal instructions we would need a virus name. As I believe downloader.trojan is just a species..



Disable System Restore (Windows Me/XP).
Update the virus definitions.
Restart the computer in Safe mode or VGA mode.
Run a full system scan and delete all the files detected as Downloader.Trojan.
Edit the registry and look for references to the Trojan.
Image

"The spirit of resistance to government is so valuable on certain occasions, that I wish it to be always kept alive. It will often be exercised when wrong, but better so than not to be exercised at all. I like a little rebellion now and then. It is like a storm in the atmosphere."--Thomas Jefferson
PRO GOLD
User avatar
Posts: 5756
Joined: Sun Mar 28, 2004 5:19 am
Location: West Virginia

Postby Absolute-Zero » Mon Dec 05, 2005 8:19 pm

There's in depth instructions on how to remove this particulare probelm on Symantec's website.

Here is the link.

Basically, you need to switch off the System Restore function, restart the computer in Safe Mode, run Norton AntiVirus and let it remove ALL files it identifies as Downloader.Trojan, noting the names of the files first, check the following Windows Registry sections

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run


using regedit for the files you wrote down in the previous step and then re-start the machine.

There are instructions on the Symantec page on how to carry out the above steps and more information about this particular beasty.
Image
PROfessional Member
User avatar
Posts: 2495
Joined: Sat Jun 26, 2004 2:46 pm
Location: Forever blowing bubbles...
Real Name: Dan

Postby How_Does_ This_ Thing_ Wo » Mon Dec 05, 2005 8:26 pm

i read the directions...but...they made no sense to me what so ever...

in terms i'd undestand how do i shut off the system restore?
I wish this machine ran right....
PRO New Member
Posts: 7
Joined: Mon Dec 05, 2005 8:05 pm
Location: Iowa

Postby e to the x » Mon Dec 05, 2005 8:30 pm

Are you running Windows XP?
Image
~Main Rig~
Phenom II X6
GA-870a-UD3
8 GB Corsair DDR3-1333
eVGA 9800GT
WD Black 500 GB
WD Black 1 TB
WD Green 1 TB
Seagate 250 GB
W7 x64
~Audio Stream Rig~
Athlon XP 2000+
MSI Motherboard
1 GB DDR-400
SoundBlaster Audigy2
160 GB HDD
WinXP
PROfessional Member
User avatar
Posts: 3098
Joined: Mon Oct 18, 2004 5:55 pm
Location: Long Island, NY

Postby Absolute-Zero » Mon Dec 05, 2005 8:34 pm

Symantec wrote:To turn off Windows XP System Restore

1. Click the Start button.
2. Right-click My Computer, and then click Properties.
3. On the System Restore tab, check Turn off System Restore or Turn off System Restore on all drives
Image
4. Click Apply. The following message appears:
Image
5. This deletes all existing restore points. Click Yes to do this.
6. Click OK.

To turn on Windows XP System Restore

1. Follow the steps in the previous section, but in step 3, uncheck Turn off System Restore or Turn off System Restore on all drives. Then click OK.
2. Create new System Restore points.


<img src="http://www.pro-networks.org/forum/images/smiles/source.jpg"> Symantec
Last edited by Absolute-Zero on Mon Dec 05, 2005 8:49 pm, edited 1 time in total.
Image
PROfessional Member
User avatar
Posts: 2495
Joined: Sat Jun 26, 2004 2:46 pm
Location: Forever blowing bubbles...
Real Name: Dan

Postby How_Does_ This_ Thing_ Wo » Mon Dec 05, 2005 8:41 pm

Ok, i just did that now what?
I wish this machine ran right....
PRO New Member
Posts: 7
Joined: Mon Dec 05, 2005 8:05 pm
Location: Iowa

Postby e to the x » Mon Dec 05, 2005 8:44 pm

Reboot in safemode as the symantec site instructs you to do.

Start pressing F8 at start-up.
Image
~Main Rig~
Phenom II X6
GA-870a-UD3
8 GB Corsair DDR3-1333
eVGA 9800GT
WD Black 500 GB
WD Black 1 TB
WD Green 1 TB
Seagate 250 GB
W7 x64
~Audio Stream Rig~
Athlon XP 2000+
MSI Motherboard
1 GB DDR-400
SoundBlaster Audigy2
160 GB HDD
WinXP
PROfessional Member
User avatar
Posts: 3098
Joined: Mon Oct 18, 2004 5:55 pm
Location: Long Island, NY

Postby Absolute-Zero » Mon Dec 05, 2005 8:46 pm

Okay, now you need to restart you computer in 'Safe Mode'.

You do this by restarting the machine but, before it starts to load Windows, you need to press the f8 key. The easiest way to do this is, just after the machine has gone through it's Power On Self Test (the black screen with all the white writing on) keeping pressing f8 until the menu comes up

This wil bring you up a list of Advanced options, one of which will say Safe Mode, select that one, press Enter and Windows should start.

It will probably pop-up with a box telling you you're runnning in Safe Mode, that's fine, just click Okay.

If you don't manage to get into the menu, just restart the machine and try again.
Image
PROfessional Member
User avatar
Posts: 2495
Joined: Sat Jun 26, 2004 2:46 pm
Location: Forever blowing bubbles...
Real Name: Dan

Postby How_Does_ This_ Thing_ Wo » Mon Dec 05, 2005 8:57 pm

ok i can get it into safemode and i did a norton check and it found nothing.
I wish this machine ran right....
PRO New Member
Posts: 7
Joined: Mon Dec 05, 2005 8:05 pm
Location: Iowa

Next

Return to Security & Virus

Who is online

Users browsing this forum: No registered users and 0 guests

cron
cron