Solved

Need help in getting rid of trojan:  troj_fakeav

Posted on 2008-10-16
3
415 Views
Last Modified: 2008-12-04
We have a Win2k server, and it's contacted the a trojan called, "troj_fakeav"; this we know from our TrendMicro log which tells us it's been located on the server, but it can't get gotten rid of (thanks).

Anyway, the server boots to completion of the Windows splash screen w/ running bar at bottom, then the blue screen appears.  

I need a way to find / remove the trojan without being able to get into Windows.

Thanks.
0
Comment
Question by:cmm540
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 23

Accepted Solution

by:
Mohamed Osama earned 500 total points
ID: 22752155
This is Antivirus 2009 , I believe Combofix can take care of this, you will have to boot into safe mode if you have a problem logging to normal mode.
0

Featured Post

To Patch or not to Patch? That is the question!

Don't get caught out like thousands of others around the world in the recent Ransomware Fiasco!
Discuss..
- Why it's not a good idea to wait before Patching
- Sensible approaches to Patching discussed
- Add your feedback, comments and suggestions

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There's a lot of hype surrounding blockchain technology. Here's how it works and some of the novel ways it' s now being used - including for data protection.
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question