4 Replies Latest reply on Dec 7, 2010 4:46 AM by Peacekeeper

    TDSS.d!mem trojan removed???

      Hello!

       

      First of all, a disclaimer: I apologize for my poor attempt to explain my problem in ordinary words, as I am far from being knowledgable on computers!

       

      When I ran my routine virus scan (Full Scan) on the morning of Sunday (December 5th), my McAfee Internet Security software detected the trojan TDSS.d!mem (discovered Dec 4th, 2010) from my computer's location that read SUSP_IRP_MJ_CREATE .  I was immediately in my panic mode since my McAfee software, at the end of the scan, gave the status to the trojan as "unable to delete" (or something like that, since I couldn't really remember the exact words).  I then installed and ran the McAfee Virtual Technician, where it was able to fix a problem in the registry (I think it was where the problem was found) of the VirusScan component of the Internet Security.  After that, I've also updated the virus defintions (I think experts refer to as DAT; it was 6188 as of Dec 5th) and proceeded with another Full Scan, but this time the scan came up CLEAN!!!   I also did a full scan for spyware using Webroot SpySweeper (with the updated definition as of Dec 5th) after my second McAfee Full Scan, but came up clean as well.  Afterwards, I restarted the computer, and did the full scans with both softwares (McAfee and Webroot), but they both came up clean again!

       

      On Monday (Dec 6th), I updated my definitions for McAfee to DAT 6189, ran a Full Scan, and came up clean again!  I then installed the McAfee Labs Stinger (Version 10.1.0.1197; built on Dec 2nd 2010) with Virus data file V1000.0000 (created on Dec 2nd, 2010) and scanned the computer, which came up clean.  There was no surprise in this one, because the Stinger version was from Dec 2nd, and the trojan wasn't discovered until Dec 4th.

       

      Therefore, I am wondering if the TDSS.d!mem trojan has been really gone from my computer after the fix done by the Virtual Technician?  As I am no computer expert, I have been really worried about this, because this is the only computer I have.

       

      THANK YOU VERY VERY MUCH!!!  MUCH HELP IS APPRECIATED!

       

      --Paul