How to remove a Trojan horse

by Linas Kiguolis - - Updated | Type: Trojans

A trojan (or a trojan horse) is a malicious computer program that is used to infect the target PC system and cause malicious activity on it. Usually, such programs are used for stealing personal information, spreading other viruses or simply disrupting computer’s performance. In addition, hackers can use them for getting an unauthorized remote access to a compromised computer, infecting files and damaging the system. As soon as a trojan horse infiltrates computer, it starts hiding from the victim. Trojans are very similar to the regular viruses and, therefore, are quite difficult to detect. That’s why you should rely on reputable anti-spyware. Originally, trojans are not intended to spread by themselves. However, the recent versions have additional components that can enable their propagation. The activity of each of trojan horse depends on its author’s intentions.

Ways that are used for infiltrating the system

One part of trojans are able to propagate themselves and infect the system without users’ knowledge. Others must be manually installed on computer as any other software. In fact, there are five major ways used by such parasites for entering the system.

  • Many trojans are distributed with the help of e-mail messages, file sharing networks and online chats (such as ICQ, AIM or IRC). They can arrive as useful attachments, instant messages, links in emails or the additions of peer-to-peer applications. These trojans have unsuspicious names and, therefore, trick users into opening them. Once the user opens such message, the trojan horse silently installs itself on the system.
  • Some trojans can get into the system using web browser vulnerabilities. Their authors run insecure web sites filled with malicious code or distribute unsafe advertising pop-ups. Whenever the user visits such a site or clicks on such a pop-up, harmful scripts instantly install a parasite. The user cannot notice anything suspicious, as a threat does not display any setup wizards, dialogs or warnings.
  • Trojans sometimes get installed by other parasites like viruses, worms, backdoors or even spyware. They get into the system without user knowledge and consent and affect everybody who uses a compromised computer. Some threats can be manually installed by malicious computer users who have sufficient privileges for the software installation. Very few trojans are able to spread by exploiting remote systems with certain security vulnerabilities.
  • Some trojans are already integrated into particular applications. Even legitimate programs may have undocumented functions like remote access feature. The attacker needs to contact a computer with such software installed in order to instantly get full unauthorized access to the system or take over control over certain program.

Trojan malware

Activities that can be caused by a trojan horse

The most of trojan horses are capable of causing such activity:

  • Infecting, corrupting and overwriting files, essential system components and installed applications. They can also destroy the entire system by erasing critical files or formatting hard disks.
  • Stealing financial data, such as credit card numbers, login names, passwords, valuable personal documents and other user sensitive information.
  • Tracking the user and each of the keystrokes he or she enters on a keyboard. Trojan horse can also take screenshots and initiate other activity for stealing specific information. 
  • Sending all gathered data to a predefined e-mail address, uploading it to a predetermined FTP server or transferring it through a background Internet connection to a remote host.
  • Installing a backdoor or activating its own component for letting the remote attacker take over a compromised computer.
  • Dropping other dangerous parasites.
  • Performing Denial of Service (DoS) or other network attacks against certain remote hosts or sending out excessive amount of e-mail messages in order to flood predefined computers.
  • Installing a hidden FTP server that can be used by malicious persons for various illegal purposes.
  • Terminating antivirus, anti-spyware and other security-related software. Trojan horse can also disable essential system services and prevent standard system tools from running.
  • Blocking user’s access to reputable websites and security-related resources.
  • Displaying undesirable commercial advertisements and pop-ups.
  • Degrading Internet connection and computer’s speed. It can also decrease system’s security and can cause its instability. 

Examples of Trojan horses

There are thousands of different trojans. The following examples illustrate how harmful these threats can be.

Trojan.Cryptolocker is a trojan, which has been used for spreading very dangerous viruses called Cryptolocker and Cryptowall. It is believed that this trojan can also be used for the distribution of other malware, such as rogue anti-spyware programs, backdoors and similar threats. It spreads around with the help of fake security message claiming that computer is infected with possible virus. When the user clicks such a message, the trojan enters the system and quietly installs ransomware. In addition, it blocks the system and causes a fake warning message on victim’s desktop. You can also download this threat to your computer as a useful email attachment or a pop-up ad that offers updating your Java or Flash Player.

Trojan.ZeroAccess is another seriously dangerous trojan horse, which is also known as max++. Note that there are many versions of this trojan and that they all seek the same aim – to steal people’s personal information. Seeking this aim, they record every keystroke of the victim and can also make continuous screenshots. This trojan usually sneaks into the system from various Internet resources such as insecure web pages or peer-to-peer networks, and starts its work without wasting its time.

12Trojan.Win32.Krepper.ab is a very dangerous and extremely destructive parasite, which can cause serious issues related to your PC’s stability. Usually, it gets into the system from insecure Internet resources, file sharing networks or online chats. It silently works in background waiting for the specified date to run its payload. On the specified date, Krepper virus can try to affect Windows Registry, deleting several critical system folders and initiate other destructive actions. The parasite detects, terminates and totally disables running antivirus software installed on the target computer. Moreover, the trojan is able to connect to various malicious servers and download other harmful parasites from there.

Removal of Trojan horse and other cyber threats

Trojans work in the same manner as the regular computer viruses and, therefore, should be removed from computer with the help of reliable security software. You should never try to remove a trojan horse from your computer manually because you can lead your machine to a serious issues and system damage. In order to get an ability to scan the system properly and find all questionable components on it, you should install any of these programs: SpyHunter, STOPzilla,Malwarebytes Anti Malware. They have already been approved for their capability to detect various trojans and their components.

Beware that sometimes even an advanced spyware remover can fail to help you in the removal of a particular trojan. Each of these threats is constantly updated and sometimes these updates are added before they are noticed by the developers of anti-spyware software. If one of these recommended tools failed to fix your computer, you can always contact our team and ask for advice. 


Latest Trojans added to the database

Small.CA virus removal instructions

Small.CA aims to infect computers with Windows OS. Small.CA virus belongs to the category of trojans that are designed to work as backdoors to infiltrate malware, and monitor user's browsing behavior or steal valuable data from the computer.More
Trojans Viruses   November 10, 2017

Database of Trojans

November 09, 2017

Drive.bat virus

Drive.bat virus targets USB devices to remove their content. More
November 09, 2017


Emotet virus spreads via spam botnet to distribute Dridex malware. More
November 06, 2017

Zeus Panda virus

Zeus Panda virus actively attacks computer users worldwide. More
October 30, 2017

COM surrogate virus

Overview of the COM surrogate virus. COM surrogate virus is a nasty Trojan horse which has been actively spreading around for a while.More
October 13, 2017

Shadowsocks Miner

Shadowsocks CPU Trojan aims to leverage your CPU power to mine cryptocurrency. More
October 12, 2017

Kovter.C virus

Kovter malware analysis: the dangerous Trojan horse spreads numerous cyber infections since 2013. More
September 29, 2017


Trojan.Pidief.X malware links to ransomware. Trojan.Pidief.X virus defines a computer virus, specifically, a trojan horse.More
September 27, 2017

Svcvmx virus

Things to know if Svcvmx.exe virus runs on your computer. Svcvmx virus is a dangerous ad-clicking Trojan that can perform various activities on your computer without user’s knowledge.More
September 25, 2017

Poweliks virus

Poweliks virus is a fileless infection that is hard to remove. More
September 13, 2017

Zeus virus

Zeus virus is still active in 2017. Zeus virus is a Trojan horse which has been known as a truly malicious computer virus used by cyber criminals to collect confidential data. More
August 11, 2017

GameOver Zeus

GameOver Zeus is used for stealing financial data and spreading CryptoLocker ransomware. More
August 02, 2017

Bitcoin virus

The purpose of Bitcoin virus – to generate Bitcoins illegally. More
July 14, 2017

Magala virus

Magala Trojan exploits victim's computer to generate pay-per-click revenue. More
July 04, 2017

Neutrino virus

Neutrino virus points its daggers to point-of-sale terminals. More

Information updated: 2017-05-11

Read in other languages

Trojan removal software
Like us on Facebook