Groups

    Trojan horse downlaoder zlob

    Was wondering if anyone can help,my computer picked up this virus the other day.Well my newLY dowloaded AVG anti virus did and yet my norton didnt.Anyway managed to use trend to get rid of the virus after scanning the computer for hours.Was wondering what the implications will be if any and is it safe to use my CC and online banking now.Any feeedback would be extremely appreciated.

    11 Comments

    How did AVG pick up the virus ? Was it when you were doing a normal scan or did it pick it up when you were downloading something or other ? The importance of that is to just how long the virus had been on your computer.

    From reading up on the virus it appears to be a rather nasty one and although it doesn't actually say it's a keylogger I would be inclined to keep a very watchful eye on your bank accounts etc.

    Are you absolutely certain you have got rid of it ? Here is a link to the instructions for removal of this virus:
    spywareremove.com/rem…tml

    When you are happy you have completely removed the virus from your computer you might want to go about changing all of your passwords on all sites etc.
    Also if you are using Windows XP then do not use "system restore" until you are 100% certain the virus is gone otherwise there's a chance you'll just put the virus back on your computer.

    IMPORTANT
    I have just tried to provide you with a little information to help because of the time of day. I know how much of a worry these things can be.
    I only know the absolute basics and I'm sure someone else will be along in the morning to offer you much better help.
    For more information Google is your friend, just type in zlob virus help or similar.
    Bump your thread if need be in the morning


    Hope that helps a little, fingers crossed for you, Good Luck

    Original Poster

    I do a daily scan on the computer so was in between scans,just picked it up on the scan yet my adware or my norton didnt which i found strange.Well i did a file cleanse and then rescanned a few times and it isnt showing but a bit worried to use CC or online banking.I have googled it and seem to get conflicting views on the virus and what it can and cant do.Soooooooo worrying but thanks for your help Hottoshop.:thumbsup:

    If you have got Adware, then a virus remover wont remove it i dont think. You will need a spyware remover. Download a trial of AVG anti spyware, do a scan, should pick it up. And just delete anything that comes up.

    Ok first we need to be sure you actually have the virus. Its quite an old one and if Norton was up to date it should of spotted it. To double check use an online virus checker to confirm you have the virus. Heres one:

    housecall.trendmicro.com/

    Assuming it find the virus the we need to remove it. Which I kind of surprised AVG didn't do anyway as its so old. Here's the threat assessment:

    symantec.com/sec…-99

    Hottoshop's link should give you what you need.

    Finally you need to check you've got it all. Download and run HiJack This! which is a diagnostic tool.

    spywareinfo.com/~me…php

    Copy and paste the report either here, or in a specialist spyware forum and ask them to take a look.

    Here are a couple of good forums:

    forums.spywareinfo.com/ind…idx

    spywarewarrior.com/ind…php

    EDIT:

    Just out of interest how much security are you running on you PC. Your running Anti-virus software, and these days there is a certain level of anti-spyware protection. But are you also running dedicated spyware prevention software? BO Clean, Spyware Blaster, Spybot teatime, Ad-watch etc etc etc?

    Original Poster

    To be honest iam running more security on this puter than a prison.Right to start with as i say it was picked up by avg on a scan.So what i did was look the virus up and used trend micro and scanned all files in safe mode.This was a few days ago and it seems to have got rid of it.But cant understand how it got there as i have norton anti virus as well as avg and adware/adwatch and zone alarm so should be well protected.Only downloaded avg and zonealarm about a week ago as my subscription for norton was expiring and was looking for a free one.Never ever had a problem before so iam baffled a bit,just worried about my cc details and passwords for online banking and so on really.But thanks for the advice, as usual the guys here are nothing but helpful.:thumbsup:

    bobbybox

    To be honest iam running more security on this puter than a prison.Right … To be honest iam running more security on this puter than a prison.Right to start with as i say it was picked up by avg on a scan.So what i did was look the virus up and used trend micro and scanned all files in safe mode.This was a few days ago and it seems to have got rid of it.But cant understand how it got there as i have norton anti virus as well as avg and adware/adwatch and zone alarm so should be well protected.Only downloaded avg and zonealarm about a week ago as my subscription for norton was expiring and was looking for a free one.Never ever had a problem before so iam baffled a bit,just worried about my cc details and passwords for online banking and so on really.But thanks for the advice, as usual the guys here are nothing but helpful.:thumbsup:



    The obvious answer if you're worried about your banking passwords would be to change them, just in case.

    I'd also recommend downloading Spyware Blaster. You only need to run it once, then shut it off. Check for updates once every couple of weeks. It stops almost 9,000 spyware programmes being able to install themselves on your PC. Great little program that uses no system resources and works really well.

    javacoolsoftware.com/spy…tml

    Original Poster

    So if i have file cleansed and nothing has come up on any of my scans now,can i be sure that it has been erased or could it be hiding in the system?

    Banned

    This works:
    Turn off system restore
    Remove any anti virus already installed and reboot
    Do a full scan with spyware sweeper, quarantine any files that it finds and then delete them from quarantine
    webroot.com/con…b48

    Reboot and run a Kaspersky antivirus 7 scan (the 30 day trial will work)
    kaspersky.com/trials
    Delete any infected files found

    Reboot and run Kaspersky again to make sure it is now clean

    Also worth running the smitfraudfix tool, just google it

    bobbybox

    So if i have file cleansed and nothing has come up on any of my scans … So if i have file cleansed and nothing has come up on any of my scans now,can i be sure that it has been erased or could it be hiding in the system?



    Should be clean, even if you've missed a file somewhere it does not appear to be activated on booting up so you should be ok.

    If in doubt use the Hijack this utility and post a system log.

    runnung 2 anti virus packages isnt a good idea. you need to ditch one of them.

    Original Poster

    All sorted(fingers crossed).Thanks for all your help guys.Rep added:thumbsup:
    Post a comment
    Avatar
    @
      Text
      Top Discussions
      1. Magazine competitions - Issue 37 @ tvchoicemagazine.co.uk2020
      2. Magazine competitions - Issue 38 @ tvchoicemagazine.co.uk1313
      3. Tv choice magazine Issue 3911
      4. Win a Year's Supply of Tea, a Coffee Hamper & a Coffee Machine11

      See more discussions