Have trouble deleting repeated Trojan Horse virus on computer using Symantec Endpoint Protection 11?
Antivirus, Firewalls, Symantec Endpoint Protection, Symantec Endpoint Protection 11, Trojan Horse, Trojans
I am having trouble getting rid of a repeating Trojan Horse virus on a computer using Symantec Endpoint Protection Version 11.0.4202.75. I have done the following: performed full scan in safe mode, used Microsoft Baseline Security Analyzer, disconnected computer from network, updated virus definitions, deleted quarantine, disabled system restore, deleted values for associated registries, etc.
I have preformed the above, but the trojan horse keeps reproducing in the quarantine as a DWH15AD.tmp file in c:Documents and SettingsAdministratorLocal SettingsTemp or as a APQ103D.tmp file in c:Documents and SettingsAll UsersApplication DataSymantecSRTSPQuarantine.
I am currently using Windows Defender right now to help get rid of the virus, but it is currently going through the full scan process.
I am not sure how to get rid of this Trojan Horse virus. Please help if you have a solution to this problem. Thank you.
Software/Hardware used:
Software/Hardware used:
ASKED:
July 14, 2009 7:34 PM
UPDATED:
July 18, 2009 11:47 PM
Answer Wiki:
In Safemode, check the registry keys in HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun for questionable paths and delete them. Run MSCONFIG.exe and in the Startup tab uncheck any more questionable paths.
Reboot the machine to a boot disk like <a href="http://www.ubcd4win.com/">UBCD4Win</a>, and run another updated virus scan.
If your registry and msconfig are clean and the virus files are removed before rebooting, you shouldn't have to boot from the boot disk. But it will make sure everything is clean.
To see all answers submitted to the Answer Wiki: View Answer History.
It sounds like you’re going to have to try multiple tools…I’ve had to resort to that in the past. Check out this malware removal handbook I wrote that addresses this issue. Best of luck!