Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Question about trojan

07 Aug 2011   #11
Golden
Microsoft MVP

Windows 7 Ult. x64
 
 

Hi,

You are taking a risk : depending on the type of trojan, if could carry and inject more malicious payload into your system, once you open the file. Depending on your AV, it may well detect and remove the original trojan, but not neccessarily the later injected payload (which could be worse than the original trojan).

If it was my decision, I wouldn't take the risk.

Regards,
Golden


My System SpecsSystem Spec
.
07 Aug 2011   #12
DragonMasterJay

Windows 7 Ultimate x64
 
 

@baxxter

If the AV says it contains a trojan, depending on the AV will depend on whether the program is blocked or not. Not always will it block the program immediately.

However, some AVs will indeed quarantine the file/program immediately, some will prompt you to remove it.

Sometimes, when you are prompted to remove it during its current program run, it will kill the process/program and delete the malicious part of it.

Usually it is best to run the program in a sandbox, so it does not damage your computer. Sandboxie is a good choice to use.

Usually an AV will detect the trojan, but it will be in the sandbox...then that will tell you if it is bad or good. In this case, you can decide whether it should be run normally on your computer.

The chances of a trojan corrupting the BIOS or even damaging your computer beyond control is actually very rare.

To sum it up...The AV will be able to detect it during run. Usually, it will also make sure it does not damage your computer as well, by blocking its additional actions.
My System SpecsSystem Spec
07 Aug 2011   #13
StalkeR

Windows 10 Pro x64
 
 

Quote   Quote: Originally Posted by baxxter View Post
I mean if i opend a trojan file ,could the AV detect it after run or not ?
Some AV's can found it,but some no.
If you really want to install the program,then do that on your risk !
My System SpecsSystem Spec
.

07 Aug 2011   #14
Arc

Microsoft Community Contributor Award Recipient

Microsoft Windows 10 Pro Insider Preview 64-bit
 
 

Quote   Quote: Originally Posted by DragonMasterJay View Post
@baxxter



Usually it is best to run the program in a sandbox, so it does not damage your computer. Sandboxie is a good choice to use.
Yes ... avast does it for me
Question about trojan-untitled.jpg


My System SpecsSystem Spec
08 Aug 2011   #15
DragonMasterJay

Windows 7 Ultimate x64
 
 

There are many known good antivirus programs that have sandboxing powers.

If I recommend any, I would the following:

Kaspersky's Internet Security solutions are very powerful and will definitely protect your computer, being well worth the buy. It has its feature, "Safe Run" that will allow you to sandbox any program.

Also, Avast's products are good solutions to use. Avast's sandboxing powers are included in Avast! Pro, and Avast! Internet Security.

For free sandboxing abilities, Sandboxie is well worth using.
My System SpecsSystem Spec
08 Aug 2011   #16
Athene

 

Quote   Quote: Originally Posted by baxxter View Post
Quote   Quote: Originally Posted by StalkeR View Post
What antivirus you're using ? Select there to delete that file. If it can,the object(trojan) will be deleted.
I think you didnt understand me ,I want to run that program (maybe it contains a trojan) but i want to run it ,so If I scaned the pc later will the risk deleted ?
The very fact that you're having doubts about running the program because it might contain a trojan and are asking about it over here should be enough to prevent you from running the program at all in the first place. In other words: if you are unsure about a program, it is strongly recommended that you do not run it. In the end, it's your decision and your responsibility :-)
My System SpecsSystem Spec
08 Aug 2011   #17
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

If you want to check it, submit it to VirusTotal & see what they say about it.

VirusTotal - Free Online Virus, Malware and URL Scanner

If you're set on running this file, Sandboxing it is a good suggestion.

When your AV flags something as potentially dangerous, giving it the go ahead will generally allow it to install it's files, including malicious ones (provided it asked and didn't automatically delete it). The next time it boots, it may/may not flag them as dangerous since you put those files on the OK list.

It might be wise to heed everyone's warnings here. Yes, there are recovery methods, but most malicious viruses will disable those corridors and you may find yourself faced with a full re-install. Not to mention the fact that most viruses have a nasty way of rebuilding themselves and causing problems down the road if there's a fragment of them left somewhere, the result from a deep infection.
My System SpecsSystem Spec
08 Aug 2011   #18
baxxter

Windows 7 Ultimate SP1 64 Bit
 
 

If I said its sure that the program has a trojan !Can the owner of the trojan remote my pc later(maybe by Ports) ?Or the AV (wich found it before) can make me safe by deleting it
My System SpecsSystem Spec
08 Aug 2011   #19
Arc

Microsoft Community Contributor Award Recipient

Microsoft Windows 10 Pro Insider Preview 64-bit
 
 

Quote   Quote: Originally Posted by baxxter View Post
If I said its sure that the program has a trojan !Can the owner of the trojan remote my pc later(maybe by Ports) ?Or the AV (wich found it before) can make me safe by deleting it
No, the supplier of the Trojan will not be able to maneuver your PC remotely, coz torjans are not spy programs .

Still, you should follow the instructions that DragonMasterJay supplied .... open the program in sandbox.

It cannot be said with certainty that the AV will make you out of all the risks after running the program.
My System SpecsSystem Spec
08 Aug 2011   #20
DragonMasterJay

Windows 7 Ultimate x64
 
 

Quote   Quote: Originally Posted by Borg 386 View Post
If you want to check it, submit it to VirusTotal & see what they say about it.

VirusTotal - Free Online Virus, Malware and URL Scanner

If you're set on running this file, Sandboxing it is a good suggestion.

When your AV flags something as potentially dangerous, giving it the go ahead will generally allow it to install it's files, including malicious ones (provided it asked and didn't automatically delete it). The next time it boots, it may/may not flag them as dangerous since you put those files on the OK list.

It might be wise to heed everyone's warnings here. Yes, there are recovery methods, but most malicious viruses will disable those corridors and you may find yourself faced with a full re-install. Not to mention the fact that most viruses have a nasty way of rebuilding themselves and causing problems down the road if there's a fragment of them left somewhere, the result from a deep infection.
Only problem is here...the file size will be too large for upload. VirusTotal has upload limits.

If the program is running in the sandbox...the bot controller would not be able to control your PC, because the sandbox will prevent it from doing so.
My System SpecsSystem Spec
Reply

 Question about trojan




Thread Tools




Similar help and support threads
Thread Forum
Trojan called 'Trojan.Generic.2582177' on my system
Hi, I have Window7 Ultimate 64 bit on my system. I use Bitfender as my antivirus software. This morning it informed me that it has found a file infected with a virus called 'Trojan.Generic.2582177' which it cannot clean. I've contacted Bitfender to see if they know what I should do but haven't...
System Security
Trojan.exe
Hi again SevenForums, lately my PC started crashing more than ever, first I though that something was charging too much my PC but by opening TaskManager I found a "Trojan.exe" working there. So I downloaded and installed and updated the last TrojanRemover (6.8.8), run it normaly and "Safe mode" but...
System Security
eMail Account got Hacked. Question about how to remove the trojan(s).
Hello All, I made the mistake of changing my email password back to what it was when our email account got hacked and the spamming program managed to send out a bunch of un wanted to emails to friends and family. I did change the password and the spam stopped but I want to know if there are any...
System Security
Is that a Trojan?
I scanned my pc with SuperAntispyware and found this but i dont know if is true or fulse alert. Any idea?
System Security
trojan
so i was downloading a file off the internet and i got a lovely little trojan, i ran norton on it and it didnt detect it, and every time i tried to open bittorrent or google chrome microsoft like security advisor or something said that it could not open because of the trojan and it advised me to...
BSOD Help and Support
Trojan:Win32/FakeSpypro & Trojan:JS/FakeSpypro
A little help,please.Got this trojan earlier.It disabled MSE,MBAM,Internet,CCleaner,and pretty much anything .exe.Claimed everything was infected...so says whatever fake AV program that came with it.(I wish I could figure out how to use the indention tool here)I had to restart,open task manager...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 17:28.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App