Trojan.Brojack is a Trojan horse that may hijack search result on the infected computer and redirect the browser to malicious web sites. This Trojan also modifies Internet settings and may install itself as a browser helper object (BHO). Moreover, it may delete any existing toolbar on the computer that it may sense to have conflict with its actions.
Alias: Trojan.Brojack!sd6, Trojan.Win32.Agent.aggi
Damage Level: Low
Systems Affected: Windows 9x, 2000, XP, Windows Vista
If the Trojan is executed, it will drop multiple files under Mozilla Firefox extension folder. These are harmless files that are needed to accomplish the tasks of the Trojan. Then, it registers itself as a browser helper object (BHO) for Internet Explorer. The threat also modifies the registry in which it will add and remove certain subkey. It may also input some entries for the execute the Trojan when Windows starts.
Trojan.Brojack also ends running processes containing strings such as googletoolbarnotifier, googleupdater, searchprotection and ytbb. The threat also crowds running processes that may degrade system’s performance or could lead to software malfunction.
Next, the Trojan will remove certain BHO that are present on the Internet browser to so that it can control browsing activity on the infected computer. This Trojan is also capable of logging all links visited by user and stores the data separately. To accomplish this task, it will drop a malicious Mozilla Firefox extension. It encrypts the data and sends it to a remote location.
After completing all necessary actions, Trojan.Brojack finally hijack search results for Internet Explorer and Mozilla Firefox. User’s requests are redirected to unwanted web site.
How to Remove Trojan.Brojack
1. Temporarily Disable System Restore (Windows Me/XP).
2. Open your antivirus application and update the virus definition file. This method ensures that your antivirus program can detect even newer variants of Trojan.Brojack
3. Start Windows in Safe Mode with Networking.
- From a power-off state, turn on the computer and press F8 on your keyboard repeatedly.
- Your computer will display Windows Advanced Boot Options menu. Please select Safe Mode with Networking.
- The system will now boot Windows and loads only necessary drivers and files.
4. Open your antivirus program and run a full system scan. After the scan, delete all infected items. If unable, better place them in quarantine. Once the scan is complete, please proceed with the next step.
Online Virus Scanner:
Another way to remove Trojan.Brojack without the need to install additional antivirus application is to perform a thorough scan with free online virus scanner that can be found here or on websites of legitimate anti-virus and security provider.
5. Go to Online Virus Scanner list and run a virus scan. This may require plug-ins, add-on or Activex object, please install if you want to proceed with scan.
6. After completing the necessary download, your system is now ready for online virus scanning.
7. Select an option in which you can thoroughly scan the computer to make sure that it will find and delete entirely all infections not detected on previous scan.
8. Remove or delete all detected items.
9. When scanning is finished you may now restart the computer in normal mode.
Alternative Removal Method for Trojan.Brojack
Option 1 : Use Windows System Restore to return Windows to previous state
If Trojan.Brojack enters the computer, there is a big chance that Windows files, registry entries and other essential components are also infected. System Restore can reinstate clean system files by restoring the configuration to an earlier date. The method also replaces compromised files with a clean version. If you have a saved restore point before Trojan.Brojack infiltrates the PC, we highly encourage you to execute this procedure if none of the above works. You may proceed with Windows System Restore, click here to see the full procedure.
Option 2 : Trojan.Brojack manual uninstall guide
IMPORTANT! Manual removal of Trojan.Brojack requires technical skills. Deleting system files and registry entries by mistake may result to total disability of Windows system. We advise you to perform a backup of registry before proceeding with this guide.
1. Kill any running process that belongs to Trojan.Brojack.
- Press Ctrl+Alt+Del on your keyboard.
- When Windows Task Manager appears, look for Trojan.Brojack files (refer to Technical Reference) and click End Process.
2. Delete all registry entries that belong to this malware.
- Press [Windows Key]+R on your keyboard.
- In the 'Open' dialog box, type regedit and press Enter. This will open registry editor.
- Find and delete registry entries as mentioned in Technical Reference section below.
- Close registry editor. Changes made will be save automatically.
3. Scan the computer with antivirus program.
- Connect to Internet and open your antivirus software. Please update to obtain the latest database and necessary files.
- Restart the computer in Safe Mode.
- Just before Windows logo begins to load press F8 on your keyboard.
- On Windows Advanced Boot Options, select Safe Mode and press Enter.
4. Delete all files dropped by Trojan.Brojack.
- While still in Safe Mode, search and delete malicious files. Please refer to 'Technical Reference'. Make sure that you execute 'End Task' first before deleting the file. Otherwise, the system will not let you perform this action.