Re: I need information about how to get rid of a trojan named ´Dropper´

---

• From: comphelp@xxxxxxxxx (Todd H.)
• Date: 16 Jan 2008 15:59:15 -0600

---

"scoobbs43@xxxxxxxxx" <scoobbs43@xxxxxxxxx> writes:

I need information about how to get rid of a trojan named ´Dropper´

Hi Foca,

Sorry to hear of your troubles. That's a hard way to learn these
lessons. :-\

You are faced with an extremely invasive malware infection, and the
only reliable foolproof method to get back to a known clean state is
to flatten, reformat, and reinstall the OS from original media.
There are utilities that claim to clean things, but you can never be
sure they got "everythign" and even in the best case you're left with
a system that might no longer be the drone of some remote master, it
still wont' be terribly stable since the "cleaning" process soemtimes
rips out some functionality your OS really needs.

To get the data you need off, a utility disk like Sysresccd.org, a
bootable CD that runs Linux (without executing one bit of code off
your infected hard drive) and an external hard drive can be wonderful.
You'll have to learn the basics of mounting the disks and doing the
copying from the internal hard drives to the external box, but it's
not too bad. Tutorials are out there, and help is around for the
asking.

Once your new OS has been restored on your freshly formatted disks,
and all updates applied either from another machine with all the
patches downloaded, or much more easily, Windows Update from behind a
consumer home gateway device of some sort, youn run AV against the
data you backed up before restoring it back as data to your system,
and you can be on about your way.

Best Regards,
--
Todd H.
http://www.toddh.net/
.

---

• References:
  • I need information about how to get rid of a trojan named ´Dropper´
    • From: scoobbs43@xxxxxxxxx

• Prev by Date: Re: Wedding Planning Sites - NOT unethical
• Next by Date: Re: Wedding Planning Sites - NOT unethical
• Previous by thread: Re: I need information about how to get rid of a trojan named ´Dropper´
• Next by thread: Re: I need information about how to get rid of a trojan named ´Dropper´
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Boot.ini question ... parameter refers to the entry in the boot order list. ... config of 3 hard drives, with the only boot.ini on the drive at ... disks "below the first" do not show up in any list. ... hardly any if any bios had a hard drive boot ... (comp.sys.ibm.pc.hardware.storage) I/O throughput problem in newer kernels ... more than 20 hard drives are involved in the operation. ... not happening on 2.6.22.9 or 2.6.20 (did not test other kernels). ... Speed of disks in one enclosure: ... The measured speeds of the subsystems indicate that no bottleneck on ... (Linux-Kernel) Re: low-MHz server ... I often used big modern IDE disks on 486 and pentiums. ... recall what was the minimum MHz for the cpu), ... pentium, not pentium II) SMP biprocessor motherboards. ... Multiple hard drives: IIRC, the older boxes had 9 GB SCSI drives. ... (Debian-User) RE: GPT Protective Partition - cannot assign drive letter or access it ... With Windows Server 2003 SP1, x86 also supports GPT disks. ... I have been using one of the hard drives to ... (microsoft.public.windows.server.general) Re: building on your own a large data storage ... ... AFAIK you could maximally use 4 hard drives in such boxes ... I have a fileserver with Linux software RAID and 12 disks. ... Wouldn't it be faster/better using extra ATA PCI cards? ... (comp.os.linux.hardware)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.security.firewalls  > 2008-01