Trojan.Zlob.G Help!

[richardphat]

Caught it by accident when i jump in a website which "is supposed to be safe".
Looks like it is not.
Security Center Alert me of this trojan and suggest me to download Perfect Defender 2009. Still i can't get ridd of that virus!

[FIREWALL]

What kinda protection do you use now that didn't work ?

[Reece]

Check this, see post #4:
http://www.cfra.com/computes_show/fo...howtopic=11309
I use Ad-Aware & it's free!

[richardphat]

Thx guys, i must download it tomorrow.
Oh and by the way, i did some search.
PERFECT DEFENDER 2009 IS A FAKE VIRUS/SPY WARE scanner. In fact it infect your computer.
******* this and i download and install that s***
Now now i should calm.......

[Reece]

What is bad is some popups if you press no it's Yes, Yes is Yes & close the window is yes, what I do in this case, just to be sure, is bring up the task manager, highlight the offender & hit "End Task"!!

[AVGWarhawk]

Yeah, I hate those friggin come-ons stating your computer is full of porn or virus'. Download now! Then you can not x out of the petulant come-on. I just end internet connection and start again.

[richardphat]

Lol anti spyware bot detect 3138 infected files and yet the scan is not done!

[CaptainHaplo]

Believe it or not - when your dealing with antispyware - windows defender isnt half bad. Though it is by no means exhaustive.

http://www.symantec.com/security_res...012-99&tabid=2


Symantec's writeups are second to none (wish their AV was) - this could be used to manually remove the trojan and the registry entries related to it. Kill the processes associated with it (in this case nvctrl.exe) and delete the files referenced including all your temp stuff. Once that is done - clean the registry of the keys involved - see the removal tab as well for assistance on part of that. Make sure you reboot after that. Also would be smart to make sure you have an antivirus program running and up to date definition wise at all times.

Windows Security Center will never tell you or advise you to download a non-microsoft program.

[FIREWALL]

I use AVAST. It doe's everything. Symantic\Norton.

The only way to get rid of it is to reformat.

[Task Force]

Somehow, I got that same pop up. exited out of that d** thing quick. scanned with windows defender. Found nothing.:hmm:

[Reece]

Start chewing your nails, I got it awhile ago and had to re-ghost my system, nothing I found at the time would fix it, I since switched on DEFENCE+ in COMODO, it's a pain as it asks permission for every new app & process thats initiated but gives peace of mind!

[Bill Nichols]

I feel yall's pain... I'm recovering from a nasty infection by the Vandu virus. Had to reformat and reinstall WinXP. Thankfully, I have a backup of all my files

[She-Wolf]

Richard - all of you - I fix computers all the time and have had three or four computers infected with this particular stable of fake antivirus products. They are very well put together and will fool a lot of us because they actually use screens such as the Windows splash screen, a blue screen with a fake stop message on, and, as Richard has found, the security centre screen, to make you think the message is genuine and that you should buy that product - all fake. I manually remove all the files I can see are from them, most of which ( apart from straight installs) are in system32 in XP,but you have to be careful as not every file dated the same day and time will necessarily be part of the fake AV package. Also the registry keys and data need to be removed where recognised. However, on the parts that cannot be moved manually, either because you are denied access, even in safe mode, or because they reproduce the moment you have deleted them, I have found a useful little tool that has finished the job off. Possibly just running that tool will do the lot - I don't know.

It is called Malwarebytes Anti-M alware v 1.32 and you can download this latest version from http://www.malwarebytes.org/

ps it is free..

[rifleman13]

Man...

If you're going to download something, do a search for it first.
The first hint of trouble, DO NOT DOWNLOAD IT!

And...

If you're using Firefox, I suggest you add the add-on: The Web of Trust or WOT for short.

Saves a lot of time and energy identifying bad sites from the good ones.
Remember GREEN is GOOD, RED is BAD!

[CaptainHaplo]

its always smart to do things like turn off popups, set your browser AX controls restrictive, and don't download just because it "looks ok". Also remember - the windows security center will NOT EVER tell you to download new, non-microsoft products. It can remind you that your AV is out of date and should be updated, it can advise you that your OS has patches and such it should have - but these are reminders only, and are only relevant to programs you have already installed.

A side note on Symantec / Norton - their writups on security hazards are excellent. However their home protection software has become bloatware - which is sad. If their AV was not so resource intensive as it has become - then they would have remained at the top of the market.

They remain a powerful and very useful tool in enterprise situations however.