Solved

Trojan removal "downloader.keenval.O"

Posted on 2004-10-05
3
626 Views
Last Modified: 2010-04-11
OS: Windows ME

AVG anti-virus has identified "downloader.keenval.O" as being present on one of my co-worker's home machines, but will not remove it.

Apparently she picked it up from Kazaa....this is a new variation of the popular trojan, and there is little documentation on it.

AdAware/S&D Spybot don't even see it.

Sorry for those of you looking for cheap/cheesy points.  This one requires real work...I already Googled it.

All I can find are posts from people looking to get rid of it.  I have an email into GrisSoft, but have not heard back from them.

Oh yeah...just in case any Lounge Lizards see this post...fdisk and format are NOT an option.

 

0
Comment
Question by:HeadIdiot
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 65

Accepted Solution

by:
SheharyaarSaahil earned 175 total points
ID: 12232309
>> AVG anti-virus has identified "downloader.keenval.O" as being present on one of my co-worker's home machines, but will not remove it.

AVG does such things..... when the infected files are being in used or u dont have permissions,,,, but the OS here is WinME,,, it cannot be a permission problem coz no NTFS drive !!

So the first case... files are in use... and to cure it, u can try running AVG in safemode,,, and remember to disabe ur system restore before cleaning the system !!

Also consider running Disk Cleanup on ur hard drive to delete all temp and temp internet files !!
reboot back in normal mode to check if any progress or not ??
0
 
LVL 4

Author Comment

by:HeadIdiot
ID: 12232498
I'll hve her check it and will post again tomorrow.
Thanks.
0
 
LVL 2

Expert Comment

by:visualcoat
ID: 12236740
go to www.avast.com and download a copy of there home eddition AV. Avast AV software alows you to do a scan before boot-up which can clean infected active files. You might have to run the scan 2 time but it will most likely clean your trojan.

http://www.avast.com/eng/down_home.html
0

Featured Post

Defend Your Organization from The Greatest Threats

Looking to fill the gaps in your security? Bring together information from the network, endpoint and threat intelligence feeds to really see what's happening in your organization. Join the WatchGuardians in their adventures fighting cyber crime!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are looking at this article, you have most likely been hit by some version of ransomware and are trying to find out if there is anything you can do, or what way you should react - READ ON!
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question