zantos
0
Has anybody come across a Trojan that appears as "Bandook ALI.EXE. I can find ali.exe on it's own but very little information on the *Bandook bit. I seem to have caught it!!
I can delete the file from windows/system32/ quite happily and it re-appears. I can delete every registry entry I can find for Bandook and ali.exe and they all re-appear. Every trojan scanner I can download attempts to clear it but doesn't succeed.
I can't boot from a clean system as I have SATA disks and am not sure of the drivers so if I do a clean boot (from say CD) I can't then access the disks to clean them. I believe there is a memory resident portion of this blighter but can't find the method of deleting the keys etc in a sequence that wil totally remove it.
Only info I have found was on a website that mentioned "Prince Ali" and didn't say anything about how to get rid of this thing.
Any help gratefully received.
I can delete the file from windows/system32/ quite happily and it re-appears. I can delete every registry entry I can find for Bandook and ali.exe and they all re-appear. Every trojan scanner I can download attempts to clear it but doesn't succeed.
I can't boot from a clean system as I have SATA disks and am not sure of the drivers so if I do a clean boot (from say CD) I can't then access the disks to clean them. I believe there is a memory resident portion of this blighter but can't find the method of deleting the keys etc in a sequence that wil totally remove it.
Only info I have found was on a website that mentioned "Prince Ali" and didn't say anything about how to get rid of this thing.
Any help gratefully received.