Solved

Probable Pushdo Trojan - What can detect it? (& maybe how to remove it?)

Posted on 2013-06-20
1
925 Views
Last Modified: 2013-11-22
Hi. Five days ago I visited a link only to be told that my IP address had been blocked due to it sending out traffic related to the Pushdo trojan. AVG couldn't detect it. Neither could Malwarebytes or TDSSKiller or Windows MRT. I tried restoring to earlier Windows restore points, starting with a month ago. After a long wait, a reboot, and another long wait, Windows told me that it was unable to restore to my selected restore point. I tried 3 more times, each time with a later restore point but with the same result.. long wait, reboot, long wait, and message that Windows couldn't restore to my restore point.

I thought that even though Windows reported that it was unable to restore to an earlier date, that it indeed had restored to an earlier date, because it was missing some Windows updates that I had just added the day prior. So I was (somewhat) hopeful that I was now Pushdo free.

However, the last 2 days, my system has slowed down and really been sluggish (at least the internet).. I think I still have the Pushdo trojan.  There is recent news online (within the last month) on this thing, about how hard it is to detect, about how it keeps evolving. (And it adds other Malware.) But nothing I've found gives me a solution for even detecting this latest version or removing it.

Anyone have any ideas on how to really determine if I am infected? More free scans to try?

I'm not too keen on reformatting and reinstalling Windows and everything else unless absolutely necessary, I can't really afford the down time. That's probably a whole day of backing up, installing and restoring (and boredom!). So I'd really appreciate a different solution if there is one!

I'm running XP Pro, using AVG free and running Windows firewall.
0
Comment
Question by:Missus Miss_Sellaneus
1 Comment
 
LVL 6

Accepted Solution

by:
Vijay Pratap Singh earned 500 total points
ID: 39264936
Use Symantec Endpoint Protection or Kaspersky Internet Security Trial as it will clean it.

Thanks
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now