Dropper Trojan Virus

Discussion in 'Malware Help (A Specialist Will Reply)' started by LisaAnne, Jun 13, 2005.

  1. LisaAnne

    LisaAnne Private E-2

    Hope this is the right forum.

    Ok so I keep getting this Trojan Dropper Small 15.BP virus alert. I'm using free AVG Antivirus program and Zone Alarm 5.5 free.

    Now, AVG will find the virus and let me heal and remove it, but it keeps coming back. It puts itself on my C Drive with the name of command.exe. So when I get the alert and heal and remove it, but sooner or later it comes back. I've been having to remove it several times a day. It still keeps coming back. So I'm guessing either AVG is not doing a good job of getting rid of it, and/or Zone Alarm is not protecting my computer all that well if this virus keeps getting sent to my computer. It's not like I'm going to infected sites or getting the virus via email. It just seems to get right through my firewall and put itself on my hard drive.

    I have tried to turn off System Restore before I remove the virus and reboot. I also have completely reformatted my hard drive. The next day, simply from surfing the net, the virus comes back.

    Needless to say this is very frustrating, and I can find little info about this virus, how it's transmitted or how to get rid of it for good. If someone can help me, I'd really really appreciate it.

    Btw, if it matters, i'm using Windows XP Pro.
     
    LisaAnne, Jun 13, 2005
    #1
  2. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    LisaAnne,

    First, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal

    After doing ALL of the above if you still have a problem:


    http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

    http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

    http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

    http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

    http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

    http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

    http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting
     
    bjgarrick, Jun 15, 2005
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds