While running anti-virus, my PC has detected the virus Trojan.VB.wvy.bgkl and failed to clean it.
Can anyone please suggest, why the system failed to clean and how it can be removed ?
While running anti-virus, my PC has detected the virus Trojan.VB.wvy.bgkl and failed to clean it.
Can anyone please suggest, why the system failed to clean and how it can be removed ?
Don't reinstall Windows yet. That's an extremely drastic solution, and I hate how that's often the first thing people suggest here when someone says they have a malware infection.
I can think of at least four antivirus solutions you can install and run for free:
It's not uncommon for one AV engine to be better than another one at detecting or removing a particular threat. Try all of these in series, making sure to uninstall one before installing another. All of these except ClamWin have license agreements that prohibit use in commercial settings. If that's you, and you feel bad about it, try the Kaspersky Online Scanner (currently down, sorry) and the Windows Live OneCare Safety Scanner instead.
If none of these work, try the trial versions of other reputable AV solutions, like F-Secure and Kaspersky.
If those don't work either, see if there's any way to get rid of it manually, as other answers have suggested.
By now you should have bombed this trojan back to the Stone Age. If it's somehow still there, look at what your AV product has to say about it. If it seems reasonably benign, and doesn't enroll your computer in a botnet or something like that, consider leaving it there. Seriously. You have to weigh the value of the time it takes you to back up your data, reinstall and reactivate Windows, reinstall and reactivate your other applications, restore your data, and configure your OS and apps the way you like them. Meanwhile, it's possible that one or more of the AV vendors will improve their ability to remove this particular threat.
If you think about all that and decide it's still worth it, then, and only then, should you consider reinstalling Windows.
Because Antiviruses aren't infallible. Virus makers are constantly making new things, and all the antivirus makers can do is react to it. If you can't get rid of the virus yourself, just back up your stuff and reformat, your PC'll likely run faster for it anyway :)
Anti-viruses often fail to clean things up. Many things are just too embedded into your system to do a simple delete on.
You haven't specified what anti-virus you attempted to use. You could attempt installing other anti-viruses and running them. You could try AVG Free and Microsoft Security Essentials, although I recommend only having a single Anti-virus running at a time, to prevent conflicts.
It's also possible your anti-virus threw a false positive, and you may not have too much to worry about if these other applications come back clean.
In these situations, though, it's sometimes better to just back up your data and reformat. Back-up just the data you need to keep, and reinstall Windows. This will wipe out the trojan, and hopefully you do not back up what gave you the trojan in the first place.
Try to delete the infected executable by yourself. If you can't, try to find process of the executable in TaskManager and kill it, then try to delete the file again. If this won't work use KillBox or similar tool.
Can you add a screenshot of the message you are getting?
As far as I can see, there isn't any virus named Trojan.VB.wvy.bgkl, so it's pretty interesting to know which software has come up with the message. It's quite possible that you have installed a false antivirus that's giving you false messages.
My advice is:
I've used Malwarebytes and has worked great, try it for free.
I's sugest installing it, then updating the definitions and lastly boot in Safe mode and run a full scan.
Hope this helps.
Can anyone please suggest, why the system failed to clean
Because today's anti-virus software is, not to put to fine a point on it, total rubbish.
Even if it claimed to have ‘cleaned’ an infection, I wouldn't trust it to have removed everything. AV at the moment simply cannot keep up with the flood of horrors emerging from the (extremely profitable) trojan-writing world.
and how it can be removed ?
Nuke it from orbit (reinstall the OS). It's the only way to be sure.
However, don't do that until you know it really was a virus that really infected you. Most resident anti-virus tools will whinge away at web browser exploits they find saved in the browser's internet cache. This is especially likely to be what happened when they tell you some useless generic name like ‘Trojan.VB.wvy.bgkl’, which is the anti-virus way to say “er, it's some kind of malware, we're not sure what it does because we don't have time to analyse every little trojan of the millions out there any more”.
It is, however, entirely unproductive for the AV to tell you this, as hopefully your browser wasn't vulnerable to that particular exploit and you were never at risk. Alternatively, if you were vulnerable, the malware will already have executed by the time the AV found it in the cache, so even if it claimed to have cleaned it successfully, you probably still got infected. Joy.
you need to run these programs in the Safe-Mode also. That Trojan uses the system 32 folder.
Live-Care or Malwarebytes should clean it when in safe mode