Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
My Communities
Communities
All Communities
Enterprise Software
Mainframe Software
Symantec Enterprise
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
Events
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
Members
Endpoint Protection
View Only
Community Home
Threads
Library
Events
Members
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
Symantec Not able to detect and delete Trojan Vundo
Migration User
May 11, 2009 03:46 AM
HI There, We have a problem with symantec anti virus which is not able to delete the trojan vundo. we ...
Migration User
May 11, 2009 03:51 AM
first update ur AV then run scan in safe mode
Migration User
May 11, 2009 03:53 AM
if u need any help post it here let me knw the results k?
pete
May 11, 2009 04:04 AM
hi, how do you know its trojan, did you run scan from another Av, submit those files to securityresponse, ...
Migration User
May 11, 2009 04:06 AM
we updated the AV but no use, the virus come and sit in C: as .exe. when we delete it manually insafe ...
Migration User
May 11, 2009 05:25 AM
Try downloading the Trojan Vundo Removal Tool, Download it here http://www.symantec.com/security_response/writeup.jsp?docid=2004-112210-3747-99 ...
Migration User
May 11, 2009 05:35 AM
Can you name the exe's, also are they running on system32? Which version of symantec are you running?
Migration User
May 11, 2009 07:55 PM
Trojan.Vundo is a fairly old virus. So unless you're getting an updated version of the malware, you ...
Migration User
May 12, 2009 12:33 AM
Any updates on this issue? Please also check SYSTEM account's permissions on the infected folders.
Migration User
May 12, 2009 03:54 AM
Get the updated Anti-virus of symantec. I also have the same problem but by updating the AV it has been ...
1.
Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 11, 2009 03:46 AM
Reply
Reply Privately
Options Dropdown
HI There,
We have a problem with symantec anti virus which is not able to delete the trojan vundo. we are unmanaged mode at one network and other network we are into managed mode. in both the cases endpoint not able to delete the files. endpoint not even run in the safe mode.
2.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 11, 2009 03:51 AM
Reply
Reply Privately
Options Dropdown
first update ur AV
then run scan in safe mode
3.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 11, 2009 03:53 AM
Reply
Reply Privately
Options Dropdown
if u need any help post it here
let me knw the results k?
4.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Broadcom Employee
pete
Posted May 11, 2009 04:04 AM
Reply
Reply Privately
Options Dropdown
hi, how do you know its trojan, did you run scan from another Av, submit those files to securityresponse, may be no definition available for this new variant :-(.
Pete!
5.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 11, 2009 04:06 AM
Reply
Reply Privately
Options Dropdown
we updated the AV but no use, the virus come and sit in C: as .exe. when we delete it manually insafe mode after some time it will again come.
the SEP deosn't run in safe mode to scan. if we scan in normal mode it doesn't detect the virus..
6.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 11, 2009 05:25 AM
Reply
Reply Privately
Options Dropdown
Try downloading the Trojan Vundo Removal Tool,
Download it here
http://www.symantec.com/security_response/writeup.jsp?docid=2004-112210-3747-99
Trojan.Vundo
Trojan.Vundo.B
Try to run both, and after, you can check the logs, you will find the logs on the path where you ran the removal tool.
7.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 11, 2009 05:35 AM
Reply
Reply Privately
Options Dropdown
Can you name the exe's, also are they running on system32? Which version of symantec are you running?
8.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 11, 2009 07:55 PM
Reply
Reply Privately
Options Dropdown
Trojan.Vundo is a fairly old virus. So unless you're getting an updated version of the malware, you either have corrupt definitions, a faulty installation or users who have disabled the AV to speed up their PCs and you only detect it when it tries to infect the protected part of your network. Go to one of the infected clients check for any traces of the trojan, whose technical details may be found here:
http://www.symantec.com/norton/security_response/writeup.jsp?docid=2005-042810-2611-99&tabid=2
Assuming you have the later variant.
9.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 12, 2009 12:33 AM
Reply
Reply Privately
Options Dropdown
Any updates on this issue? Please also check SYSTEM account's permissions on the infected folders.
10.
RE: Symantec Not able to detect and delete Trojan Vundo
0
Recommend
Migration User
Posted May 12, 2009 03:54 AM
Reply
Reply Privately
Options Dropdown
Get the updated Anti-virus of symantec. I also have the same problem but by updating the AV it has been solved
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Copyright 2019. All rights reserved.
Powered by Higher Logic