Hi i have registered here in the hope that you guys can help me remove a dreaded virus. I have AVG installed yes its the free edition but it didnt stop this virus getting thru, i have run malwarebytes and that removed 7 problems and a few others since i have run it again (safe mode) i have also down loaded a trojan remover and this has no effect. This virus is also chomping its way through various program files stopping them from working. Here is a log i saved from malewarebytes.
Thanks for any help Guys David......
win32/Zbot.
VBS/generic
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5796
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702
21/02/2011 12:33:02
mbam-log-2011-02-21 (12-33-02).txt
Scan type: Quick scan
Objects scanned: 151986
Time elapsed: 7 minute(s), 59 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\documents and settings\Admin\local settings\Temp\utt19.tmp.exe (Trojan.Pakes) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5796
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
18/02/2011 14:41:36
mbam-log-2011-02-18 (14-41-36).txt
Scan type: Quick scan
Objects scanned: 153377
Time elapsed: 10 minute(s), 45 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Microsoft Firewall 2.9 (Trojan.Agent.Gen) -> Value: Microsoft Firewall 2.9 -> Quarantined and deleted successfully.
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\documents and settings\Admin\start menu\Programs\Startup\mihexxtl.exe (Spyware.Zbot) -> Delete on reboot.
c:\documents and settings\administrator\start menu\Programs\Startup\mihexxtl.exe (Spyware.Zbot) -> Quarantined and deleted successfully.
Thanks for any help Guys David......
win32/Zbot.
VBS/generic
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5796
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702
21/02/2011 12:33:02
mbam-log-2011-02-21 (12-33-02).txt
Scan type: Quick scan
Objects scanned: 151986
Time elapsed: 7 minute(s), 59 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\documents and settings\Admin\local settings\Temp\utt19.tmp.exe (Trojan.Pakes) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5796
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
18/02/2011 14:41:36
mbam-log-2011-02-18 (14-41-36).txt
Scan type: Quick scan
Objects scanned: 153377
Time elapsed: 10 minute(s), 45 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Microsoft Firewall 2.9 (Trojan.Agent.Gen) -> Value: Microsoft Firewall 2.9 -> Quarantined and deleted successfully.
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\documents and settings\Admin\start menu\Programs\Startup\mihexxtl.exe (Spyware.Zbot) -> Delete on reboot.
c:\documents and settings\administrator\start menu\Programs\Startup\mihexxtl.exe (Spyware.Zbot) -> Quarantined and deleted successfully.