downloader.bagle hidden into google's toolbar

Hi

I wanted to write this feedback, but didn't know where.

It all started by an emule crack download which I happened to run after disabling TrendMicro.

Killing slow, 99% taskman cpu usage, blue screen when trying to start safe mode ...etc I knew fast I got infected.

I never ran into a similar problem before. I used to kill them fast. But this one doesn't die. whatever I do, it comes back.

I tried some antiviruses but all were born dead : 'Invalid win32 app'
I downloaded some antiSpywares, and got some from a CD. The king was Trojan Remover. It successfully detects and stops the Bagle.

I re-installed TrendMicro and things seemed fine 3 days until, suddenly as before, the message, 'select a file to crack', appeared again! TrendMicro was killed alive this time.

At this point I came here, and did all steps mentioned in the spyware removal guide. I did all cleaning and ran the 5 programs as recommended. After a whole day the computer was pretty faster and thought I was safe. However, shortly, the message jumped back!

OK, I figured out this time it is IE! Starting IE was the reason. I decided to refresh IE by intsalling the new IE8 beta. no use.

Next, I disabled all IE add-ons. restarted IE, yesssss the thing didn't come back.

After cursing Microsoft a full day, it came finally that the virus was hiding within google tool bar and google toolbar notifier. Microsoft not to blame.

So please you geeks, may I suggest including (1- disabling browser add-ons manulay 2- trashing browser's profile customizations)as a step to be taken before letting people spend a full day with 5 times useless scanning of dummy files and registry settings; this is off course not to undervalue the strength of the 5 tools.

Thanks to all the big efforts on this site.

Cheers!

Quasar

 

It sounds like you had an interesting experience there for awhile. Best of luck to you in the future.