Solved

Trojan removal "downloader.keenval.O"

Posted on 2004-10-05
3
622 Views
Last Modified: 2010-04-11
OS: Windows ME

AVG anti-virus has identified "downloader.keenval.O" as being present on one of my co-worker's home machines, but will not remove it.

Apparently she picked it up from Kazaa....this is a new variation of the popular trojan, and there is little documentation on it.

AdAware/S&D Spybot don't even see it.

Sorry for those of you looking for cheap/cheesy points.  This one requires real work...I already Googled it.

All I can find are posts from people looking to get rid of it.  I have an email into GrisSoft, but have not heard back from them.

Oh yeah...just in case any Lounge Lizards see this post...fdisk and format are NOT an option.

 

0
Comment
Question by:HeadIdiot
3 Comments
 
LVL 65

Accepted Solution

by:
SheharyaarSaahil earned 175 total points
ID: 12232309
>> AVG anti-virus has identified "downloader.keenval.O" as being present on one of my co-worker's home machines, but will not remove it.

AVG does such things..... when the infected files are being in used or u dont have permissions,,,, but the OS here is WinME,,, it cannot be a permission problem coz no NTFS drive !!

So the first case... files are in use... and to cure it, u can try running AVG in safemode,,, and remember to disabe ur system restore before cleaning the system !!

Also consider running Disk Cleanup on ur hard drive to delete all temp and temp internet files !!
reboot back in normal mode to check if any progress or not ??
0
 
LVL 4

Author Comment

by:HeadIdiot
ID: 12232498
I'll hve her check it and will post again tomorrow.
Thanks.
0
 
LVL 2

Expert Comment

by:visualcoat
ID: 12236740
go to www.avast.com and download a copy of there home eddition AV. Avast AV software alows you to do a scan before boot-up which can clean infected active files. You might have to run the scan 2 time but it will most likely clean your trojan.

http://www.avast.com/eng/down_home.html
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
Never store passwords in plain text or just their hash: it seems a no-brainier, but there are still plenty of people doing that. I present the why and how on this subject, offering my own real life solution that you can implement right away, bringin…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now