how manually search/remove trojan downloader?

10 pts.
Tags:
Trojan horses
The standard software scanning both desktop and online scanning for my colleague's laptop computer aren't removing the Trojan horse that's been identified by the online scans from trendmicro and Microsoft malicious software removal tool. (Of course McAfee on the person's laptop didn't find anything wrong and didn't remove anything.) We're a low-budget operation -- what steps should we take in a deadline-based enviornment that doesn't permit a Windows reinstall to remove the bogus antivirus/Trojan horse downloader program.? What folders and files do we search? I'm a budget analyst determining software needs for our security, not an IT security professional but I'll refer your answer to our top tech person.
ASKED: November 22, 2007  12:40 AM
UPDATED: November 22, 2007  8:21 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.

Remove the hard drive from the laptop and connect it to another computer as a slave drive(internal) or as an USB drive(external). Do a full scan on the infected drive. Be sure “autorun” is not enable on the good computer and so is the Windows Recovery. You may need administrator privilege to access the drive if it’s in NTFS format.

Once the drive is disinfected and clear from bugs, reconnect it back to the laptop. You probably have to do a manual cleanup of the Windows registry to get rid of all references to the bug.

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following