Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
5425 Views 16 Replies Latest reply: Mar 12, 2009 6:02 AM by paullotion RSS 1 2 Previous Next
Newcomer 10 posts since
Mar 11, 2009
Currently Being Moderated

Mar 11, 2009 3:24 PM

trojan removal

McAfee's on access scan detects trojans that it classifies as either a generic downloader, a downloader-BKA, or a Vundo.gen.ab. On access scan claims to delete these but they keep reappearing. I have run full system scans with the latest version of Malwarebytes, windows defender, spybot search and destroy, vundofix and McAfee on demand scan. None of these programs detect anything.
How do I get rid of this and get it to stop reappearing?
  • paullotion Apprentice 8,078 posts since
    Apr 13, 2006
    Currently Being Moderated
    1. Mar 11, 2009 3:46 PM (in response to lookingforhelp)
    RE: trojan removal
    Hello

    Which files are being detected, please post the full file paths of each.

    The Black Bear

    *Important News for BT/TalkTalk customers*

    BT/TalkTalk dump Phorm spyware, for more information see this article Here , also visit the NODPI website for much more information relating to DPI.
  • paullotion Apprentice 8,078 posts since
    Apr 13, 2006
    Currently Being Moderated
    3. Mar 11, 2009 4:38 PM (in response to lookingforhelp)
    RE: trojan removal
    post edited

    The Black Bear

    *Important News for BT/TalkTalk customers*

    BT/TalkTalk dump Phorm spyware, for more information see this article Here , also visit the NODPI website for much more information relating to DPI.
  • paullotion Apprentice 8,078 posts since
    Apr 13, 2006
    Currently Being Moderated
    5. Mar 11, 2009 5:00 PM (in response to lookingforhelp)
    RE: trojan removal
    Click start> run> type(or copy/paste command)into box

    "c:\documents and settings\stoycho\localsettings\temp"

    Open the temp folder, are those files still present?

    The Black Bear

    *Important News for BT/TalkTalk customers*

    BT/TalkTalk dump Phorm spyware, for more information see this article Here , also visit the NODPI website for much more information relating to DPI.
  • paullotion Apprentice 8,078 posts since
    Apr 13, 2006
    Currently Being Moderated
    9. Mar 11, 2009 5:39 PM (in response to lookingforhelp)
    RE: trojan removal
    Are you saying that these files:

     

    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\Program Files\Java\jre6\bin\jusched.exe



    Are also infected?

     

    When I select yes there appears to be some interference between the two programs because McAfee stops working for a brief amount of time (I am notified of this by windows security center).



    Are you saying windows security centre is telling you that you are infected?

    The Black Bear

    *Important News for BT/TalkTalk customers*

    BT/TalkTalk dump Phorm spyware, for more information see this article Here , also visit the NODPI website for much more information relating to DPI.
1 2 Previous Next

More Like This

  • Retrieving data ...

Bookmarked By (0)