• The site migration is complete! Hopefully everything transferred properly from the multiple decades old software we were using before. If you notice any issues please let me know, thanks! Also, I'm still working on things like chatbox, etc so hopefully those will be working in the next week or two.

need some help getting rid of a trojan

I win.

Figured out they make portable programs that I can download to and run from my jump drive. Gonna take it home and download a couple more then do a multi program attack in the morning. I already did one scan with one of them and got rid of one virus (i think the one that's plaguing me). Hopefully I should be all good tomorrow.

Thanks for the help though, everyone.
 


Yeah I just figured it was in-house IT department and it wouldn't leave you down for long, but if they are going to have it or charge you then F that.

If that stuff doesn't work, use windows defender offline, make a cd on a good PC and then run it on the infected overnight.

I just have microsoft security essentials (free) and keep it up to date and a full scan every now and then and no problems.

Also make sure you're not on a proxy, IE-tools-internet options-connections-proxy is unchecked.

And the list could go on. Does your company hire out IT to a 3rd party? There's something wrong if the customer feels like this is the best course of action. A join.me or remote session could probably have fixed this.
 
I am running like 3-4 scans with different programs right now. That should do me well. They IT did a system restore yesterday afternoon with no good result. The next step is to reimage my computer but ain't nobody got time for that.

Apparently portable programs are the ****. I just download and install on my jump drive and I have 7 virus scanners at my disposal without admin rights. Suck it, IT.
 
How long until you get your new one? Like you said - no time for a reimage (PITA), and if you're getting a new one soon, anyway - just make it until that time frame. Hopefully the portables take care of it, and you won't have to worry about it.

Where I work, my group just recently switched from our own private domain outside the realm of the corporate domain to now being on the corporate domain...I hate not being able to install my own stuff and have complete autonomy...
 
I'll probably get a new computer later this year. Probably a laptop since I travel and just a docking station for my desk.
 
I'm a developer, and we recently switched from desktop/towers to HP elitebooks. More horespower than we had in the desktops, and I can work from home when I want to...LOVE that. They call it a laptop, but it's not exactly small...lol
 


Check out Rkill, TDSS Killer and Combofix. 9 times out of 10, Those tools will find and clean up a trojan/rootkit. You should get them all at bleepingcomputer.com to avoid fake versions.

Run them in that order too. You'll have many options for Rkill. Rkill.scr is what consistently works for me. It's disguised as a screensaver file so most malware wont notice/block it. It will search for any known processes and kill them for the current session (until you reboot).

TDSS Killer is a rootkit scanner. It has saved me a number of times, but often it doesn't pick anything up at all.

Combofix is by far the best tool I've ever used. It may need Admin access to run though. If you don't have it already, it will probably want to install Microsoft Recovery console. If you cant install it because of lack of admin rights, you could skip it, but there's potential for it to screw up an operating system file and you would not be able to recover it.

That said, I've probably used it near 100 times and I've never needed the recovery console.


FoSHO99 said:
I just have microsoft security essentials (free) and keep it up to date and a full scan every now and then and no problems.
Click to expand...

What works best changes pretty frequently, but I've found security essentials to be useless lately. I was using and recommending it last year, but most of the malware around now will just kill it.

As far as anti-virus goes, I'm currently using the free version of Avast. It works very well. Fully automated updates and scans, and I love the "silent/gaming" mode. It never pops up for any reason.

For malware, I use the tools above. Malwarebytes used to work well, but most malware now will destroy it, literally. Even after the malware is gone, it wont work and uninstall and reinstalling wont work either. I've figured out how to fix it before, but I don't think it's worth it.

At work my boss and I have found that the only mainstream software that work consistently are paid versions of Stopzilla and Spyhunter. Both have more than their fair share of downsides (slowing any PC they're on to a crawl, Disabling legit software without notifying you etc.), but when it counts, they work.

Whew, long post, I need a nap now.
 
I am on my fifth scan in safe mode right now and havent gotten anything new yet. Gonna probably get back into regular mode soon and I should be good. Not having admin rights kinda spoils things, but I seem to have enough firepower on my jump drive right now to deal with the issues.

I've run clamwin, emsisoft, McAfee stinger, spybot, Norman cleaner, and when I restart into normal windows I'm gonna run a viper rescue scan while I start working. It's taking half the day, but better than giving up my computer to the useless IT ****s.
 
The day I brag and say I don't use chit anymore for security besides my own discretion, will be the day I get a computer bug.
Screw windows defender,Spy-bot(used to be good) and all paid or free anti this or that....I have auto updates turned off and occasionally will look thru updates and update. I just use the windows firewall and the malicious scanner they run after updates. A scan with Malware Bytes everyonce in a while, but it never finds anything. JV16 powertools to clean registry and CCleaner for all the junk. No password remember stuff, delete browsing history on exit, never use the address bar,use Google for all. Windows 7 Microslop seems to be working OK. If anybody should have some funk,I should. I just call myself a Beta tester, for operating systems,movies,music.......well enuf of this......glad the old F2 or F12 for boot config worked.

I would always put your surgeon programs on the Stick from a SAFE machine so the malware doesn't tag along.
could have used boot-helper to get rid of Admin password but they might not have taken a liking to that at work.......
 


You must log in or register to reply here.
Back
Top