Solved

Trojan removal "downloader.keenval.O"

Posted on 2004-10-05
3
623 Views
Last Modified: 2010-04-11
OS: Windows ME

AVG anti-virus has identified "downloader.keenval.O" as being present on one of my co-worker's home machines, but will not remove it.

Apparently she picked it up from Kazaa....this is a new variation of the popular trojan, and there is little documentation on it.

AdAware/S&D Spybot don't even see it.

Sorry for those of you looking for cheap/cheesy points.  This one requires real work...I already Googled it.

All I can find are posts from people looking to get rid of it.  I have an email into GrisSoft, but have not heard back from them.

Oh yeah...just in case any Lounge Lizards see this post...fdisk and format are NOT an option.

 

0
Comment
Question by:HeadIdiot
3 Comments
 
LVL 65

Accepted Solution

by:
SheharyaarSaahil earned 175 total points
ID: 12232309
>> AVG anti-virus has identified "downloader.keenval.O" as being present on one of my co-worker's home machines, but will not remove it.

AVG does such things..... when the infected files are being in used or u dont have permissions,,,, but the OS here is WinME,,, it cannot be a permission problem coz no NTFS drive !!

So the first case... files are in use... and to cure it, u can try running AVG in safemode,,, and remember to disabe ur system restore before cleaning the system !!

Also consider running Disk Cleanup on ur hard drive to delete all temp and temp internet files !!
reboot back in normal mode to check if any progress or not ??
0
 
LVL 4

Author Comment

by:HeadIdiot
ID: 12232498
I'll hve her check it and will post again tomorrow.
Thanks.
0
 
LVL 2

Expert Comment

by:visualcoat
ID: 12236740
go to www.avast.com and download a copy of there home eddition AV. Avast AV software alows you to do a scan before boot-up which can clean infected active files. You might have to run the scan 2 time but it will most likely clean your trojan.

http://www.avast.com/eng/down_home.html
0

Featured Post

New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
These days, all we hear about hacktivists took down so and so websites and retrieved thousands of user’s data. One of the techniques to get unauthorized access to database is by performing SQL injection. This article is quite lengthy which gives bas…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Delivering innovative fully-managed cloud services for mission-critical applications requires expertise in multiple areas plus vision and commitment. Meet a few of the people behind the quality services of Concerto.

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now