This post is more than 5 years old
8 Posts
0
30360
Trojan Virus Removal
I have a Dell Inspron 620 approx 13 months old, running McAfee anti virus software.
I have 2 trojan viruses which are causing problems, one of which is to continually disable the firewall.
McAfee is detecting them but is unable to delete them.
I would appreciate any suggestions on the best way forward to deal with them. I have looked on the net and one suggestion was to run a complete scan in safe mode, which I have done. This did not detect the viruses so did not achieve anything.
I was wondering if setting the computer back to factory setting, as it was shipped to me may be the answer, but am not sure if it will detect the trojans.
I am running Windows 7.
The viruses are identified as : RDN/Generic BackDoor!sl
rdunnill
6 Professor
6 Professor
•
8.8K Posts
0
August 25th, 2013 02:00
Reinstalling Windows and rewriting the MBR is enough. The hard drive doesn't have to be formatted.
It may also help to run an offline AV scanner from removable media, as that will disable rootkit-type defenses.
Bugbatter
20.5K Posts
0
August 24th, 2013 08:00
Hi kennice,
I have been attempting to move your post to the Virus & Spyware forum, but since Dell's recent forum upgrade bug, I am unable to move topics.
In order to save time, here are your options:
1. Yes, you could go back to factory settings which would probably take care of the trojans. As long as you have good backups you may want to do that. Afterward, you will need to reinstall programs that you have added along with your personal documents, music, pictures, etc. since the system arrived to you from the factory.
2. Or you could post at a malware removal forum and have a trained analyst advise you one-on-one on how to remove the trojans. They use specialized tools for diagnosis and removal that are not included in your McAfee product. If you want to try that, my suggestion is to post the required DDS logs on the Malware Removal Forum at SpywareHammer and have the staff trained in malware removal walk you through the diagnostic logs and a cleanup. They do not use remote access but will advise you step-by-step on what you can do. Please do not attempt to run any additional scans, install software, or use any other tools until an analyst can advise you on the next step. Please use the same username there as you have here. Help is free, but you will need to register there and follow the posting instructions.The instructions will inform you of where to download DDS and how to run a scan to post the output information. Don't forget to check your email and click on the link they send you in order to confirm your registration.
eternalozzie
254 Posts
0
August 24th, 2013 10:00
back up your data ... format your hard drive ... do a complete new installation of windows 7 ... no matter what all the experts say about removal starting from scratch is the best way to be sure ... the fact that McAfee can't get them off of there means it's pretty clever trojan.
Bugbatter
20.5K Posts
0
August 24th, 2013 12:00
If the trojan has disabled the firewall (common nowadays) it may have also disabled Mcfee's removal ability (also common nowadays). The analyst at whatever malware removal forum you use will explain whether a reinstall of the operating system is needed. Just as you did here, ask for options and his professional opinion. If removal is simple he will let you know that as well. Getting a diagnosis, rather than acting on speculation is certainly worth it at this point. I would just do it in a timely manner so that more infection is not installed by the trojan.
kennice
8 Posts
0
August 30th, 2013 09:00
Bugbatter
20.5K Posts
0
September 24th, 2013 04:00
shafiulislam,
That's a commercial site, so you are in violation of Dell's Terms of Use. Spam is not allowed on these forums.