Another trustedantivirus problem

Help!! I've spent the last 24 hours trying to fix my computer. I've installed and run hijackthis, spybot search and destroy, spyhunter, avg anti spyware, avast and i have symantic antivirus already installed. Every time I run spybot, it tells me that its found "zlob.downloader.vcd" and "smitfraud-c.msvps". Each time i "fix the selected problems" and it doesn't go away. Here's where popup that appears on the top of my browser:
"http://protect.trustedantivirus.com/MTY4Nzc=/2/5993/ed=1/ex=1/h=10/zheltaya_hernya/"

Can someone please help me? Thanks.

 

Hi sslvpn!
Welcome to Major Geeks!

Please follow the instructions in this thread: Removing Zlob aka SmitFraud, SpySheriff, Infections


When you finish with that, please continue with the instructions in the READ & RUN ME FIRST

Attach the requested logs as per the instructions. You may require several posts to do this.

abri

 

Here are the logs from SmitFraud and Spybot....I've attached copies of the logs from combofix and mglogs. thanks for your continued assistance


Edit by chaslang: Very long inline logs removed which were causing the thread to hang!!!

 

Hi sslvpn!

We don't need to see the report from spybot. Only the ones from the SmitFraudFix which should have been called rapport.txt and rapport.txt. You should still have one of these somewhere on your computer. You can attach it with your next post. We don't use inline logs because they can have live links to malware in them. Please run the following.

[FONT=Verdana, sans-serif]Download [/FONT][FONT=Verdana, sans-serif]HostsXpert[/FONT][FONT=Verdana, sans-serif][/FONT][FONT=Verdana, sans-serif]and then follow the below steps. [/FONT]

• [FONT=Verdana, sans-serif]Unzip[/FONT][FONT=Verdana, sans-serif] HostsXpert.zip[/FONT]
• [FONT=Verdana, sans-serif]It will create a folder named HostsXpert in whatever folder you extract it to.[/FONT]
• [FONT=Verdana, sans-serif]Run HostsXpert.exe, click Restore Microsoft's Hosts File and then click OK.[/FONT]
• [FONT=Verdana, sans-serif]Click the X to exit the program[/FONT]

abri

 

Continuation of Thread 147160-Abri

Abri,
I'm having trouble responding on the original thread because I keep getting a hungapp. I've attached the Smitfraud txt files and the hijackthis logs you suggested and I've downloaded and run the hostsexpert to restore the host to its original format. What next?

 

Hi sslvpn,

I need the MGTools logs. They only take a minute to run and they are already installed on your computer. Before you get those for me, please do the following:

Go to the MGTools folder under C:\ and in there find the program analyse.exe (this is HijackThis using a different name). Run the program and click on "Do a System Scan Only". Put a check in the box next to the following item and before you click on the word FIX, be sure to close all browsers including the one you're in right now!!

O21 - SSODL: alxvdvm - {99D1AF17-56B8-48E7-8C37-062893B8A6C2} - C:\WINDOWS\alxvdvm.dll


AFter you do the above, please run C:\MGtools\GetLogs.bat and attach the fresh MGlogs.zip it generates. The GetLogs.bat is located in the MGTools folder under C:\
The MGlogs.zip which are produced by running the bat file can be found directly under C:\
It's important for me to be able to look at your newfiles.txt log which is one of the logs in the zip file.

abri