Main Area and Open Discussion > General Software Discussion
Does anyone know how I may remove Trojan Dropper:MSIL/Livate.A ?
40hz:
There's also ComboFix which can squash quite a few things ...
-4wd (November 07, 2013, 04:52 PM)
--- End quote ---
Including your OS if you don't know what you're doing, or get a little too careless when attempting to fix things CF reports but doesn't handle automatically. ;D
That said, CF is a great tool - even if I'd consider it more a court of last resort when it comes to malware cure-alls.
--------------
@4wd & Stoic - great suggestions btw! :Thmbsup:
cmpm:
You should be able to get an install disk from ASUS.
That worked for me on a Gateway XP, but I'm not sure about ASUS.
Here's some free Sophos tools that could fix the problem.
virus removal
http://www.sophos.com/en-us/products/free-tools/virus-removal-tool.aspx
rootkit
http://www.sophos.com/en-us/products/free-tools/sophos-anti-rootkit.aspx
For some help via a forum that will walk you through steps to remove most any problem, try geekstogo.com. I do recommend these folks.
And you might find others who have removed your particular deal.
http://www.geekstogo.com/forum/
Giampy:
Does anyone know how I may remove Trojan Dropper:MSIL/Livate.A ?
-patteo (November 07, 2013, 08:43 AM)
--- End quote ---
I would call for help to http://www.bleepingcomputer.com/
Someone already asked your same question:
http://www.bleepingcomputer.com/forums/t/506076/very-annoying-trojandropper-need-help/
(are you Zatiac? :) )
And this is the solution of Zatiac (of course I don't know if that applies for you too):
http://www.bleepingcomputer.com/forums/t/506084/trojan-dropper-need-fast-help-please/
patteo:
Does anyone know how I may remove Trojan Dropper:MSIL/Livate.A ?
-patteo (November 07, 2013, 08:43 AM)
--- End quote ---
I would call for help to http://www.bleepingcomputer.com/
Someone already asked your same question:
http://www.bleepingcomputer.com/forums/t/506076/very-annoying-trojandropper-need-help/
(are you Zatiac? :) )
And this is the solution of Zatiac (of course I don't know if that applies for you too):
http://www.bleepingcomputer.com/forums/t/506084/trojan-dropper-need-fast-help-please/
-Giampy (November 08, 2013, 07:37 AM)
--- End quote ---
Thanks for the heads up about the solution.
From Zatiac
"Thanks for the response but I got it solved, I reset internet explorer and uninstalled java....that got all traces of the dropper off my laptop :D I suspect the dropper is how the fbi moneypacks ransom got on my laptop as well. "
I'm right now scanning with Sophos Virus Removal Tool overnight to see if it detects anything.
Then I may Zatiac's "solution" and test out to see if the solution "works".
I may still go for the "Nuclear method".
I rang up Asus and they took me through the process of Rebooting and Reinstalling the Windows 8 OS from the hidden partition to reset everything to as per factory.
They told me I cannot Recreate the Recovery disk from another identical Laptop as it would have a different Windows 8 key.
They advised that a factory type Reset by Reinstalling and formatting is the surest method to ensure that the virus is removed, although it takes several hours because essentially, it reformats and recreates the partitions.
Naturally this is the sure fire though time consuming way.
But it's also an excuse for me to refresh everything, make the laptop run a bit faster (hopefully) and probably junk a lot of useless stuff on my laptop.
I'm of course a little bit concerned if some of the software that requires activation will reactivate properly. But they probably should since I'm not changing any hardware.
But in the process, I thought I may as well test out a couple of these suggested Virus Removal Tools in this thread first. I wouldn't be surprised if they found nothing. Sigh!
While I'm on this subject, I might as well mention that in future, before I access some new sites or install some programs, I'll make better use of www.virustotal.com, whether to check out a URL or an exe first, besides using Malwarebytes and Hitman Pro
A ounce of prevention is worth a megaton of going Nuclear to clean up a laptop.
This process is going to proceed rather slowly, but if I come across any further useful lessons, I'll certainly post on this thread.
Thanks to all who have posted their thoughts.
Donationcoders are such a group of helpful people.
tomos:
From Zatiac
"Thanks for the response but I got it solved, I reset internet explorer and uninstalled java....that got all traces of the dropper off my laptop :D I suspect the dropper is how the fbi moneypacks ransom got on my laptop as well. "
-patteo (November 08, 2013, 09:59 AM)
--- End quote ---
that was something similar to what I cleaned of a laptop this summer - but that was with help of the german language www.trojaner-board.de (thread link).
They got me to scan with a whole bunch of apps:
1) AV (Avira was on the machine)
2) Malwarebytes
3) Oldtimer (think a German lang. only app - comparable to "Hijackthis") - which was also later used to erase some files when rebooting
4) Malwarebytes AntiRootkit
5) AdwCleaner
6) Emsisoft Anti-Malware
7) a "Windows repair tool" they had creasted themselves
8) ESET Online Scanner
Scans 1, 2, and 3 found files related to the trojan.
The Oldtimer scan found a *.js file and a *.pad file in Program Data
Other files were found in:
Users\[USER NAME]\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\
Users\[USER NAME]\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\
(I presume the 6.0 above was the Java version number)
Users\[USER NAME]\AppData\Local\Temp\
Users\[USER NAME]\
and a shortcut in the Startup Menu:
Users\[USER NAME]\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version