Need help with Zlob and possible unknown malware

Hi!

First of all I am new to this forum..:-o and I need some help!

My computer keeps crashing (I receive different error messages e.g.explorer.exe needs to shut down...) so I decided to run some online scan. I ran Bitdefender, Panda and Trendmicro online scan. Nothing was found. It happened a couple of weeks ago but since then it just got worse: I was not able to connect to the internet, my AV(Norton 360) kept crashing and once I was browsing on the net when I received a message (in a pop-up window) wich was saying my computer is infected so it is better if I download some kind of Fake AV program ( I did not do it). I decided to format and restore everything on my computer to the original factory setting ("built-in" feature - Softhinks).

So I did but it did not work very well cause I still getting these error messages however I ran some online scan again and at least I got something. Bitdefender found the following infection (2 files,both of them was deleted by Bitdefender): DeepScan:Generic.Zlob.7.983BE21F. I guess this malware is hidden somewhere in a system restore point.

I would format and reinstall Windows again but I have not got a WMC2005 setup disk (it did not come with my laptop which is pretty poor..) so I hope someone can help me to get rid of this infection. I attach my Bitdefender scan result as well.


Thanks

 

Hi again! Here is my MG and Bitdefender log as well.

 

http://www.majorgeeks.com/images/grenade.gifWelcome to MajorGeeks.com!http://www.majorgeeks.com/images/grenade.gif

Your logs look good however I would run the two steps below just to clean out some junk files and to flush your restore points which will address the detections you've received.

After completing this post, reboot a few times and let us know how things are running. Also, the errors you mentioned about explorer.exe crashing, this doesn't appear to be malware related so if this continues I would recommend the Software Forum.

 

Hi,


First of all thanks for your help.

I ran that 2 steps what you mentioned above. Everything looks pretty much ok especially since I "reinstall the OS"(everything runs faster).

However yesterday after I opened this thread I turned off my computer for a couple of hours and when I turned it on again I could not connect to internet (I use wireless connection). I was able to connect to my router but explorer could not connect to any website. But after I disabled my LAN connections everything was working fine. It is a bit weird I think.

I want to uninstall some progs what I never ever use and also want to disable some progs which runs at startup. I will get back to you in a couple of days just to let you know how the things are going.


Thanks for your help again.

 

Okay! If you're still having problems from your wireless, I would recommend the Networking or Software Forum as it's not malware related.

If you would like to remove some unecessary startup entries you can have HJT fix the below entries.

 

Hi!

As I promised I am back again...I tried to use my computer as much as I could over this weekend and it seems everything is OK. :major I also fixed those entries in HJT what you recommended.

So thanks for your help again, much appreciated.

Oh, just one more thing. Do you think I got that infection over a P2P Network? Because I used to use a bittorent client. But it seems it not really worth it....

 

It's difficult to say where it comes from, it's possible but if you use it safely and wisely I doubt it.

 

Allright. Thanks for your help.

 

You're Welcome!:major

 

Hi again!

Unfortunately I have problem with my computer since we "talk" so...what I mean is:... Downloaded Vuze after "we talked", and my computer stopped responding...I only could start my computer in safe mode...so I deleted Vuze and Java directory in safe mode (otherwise I couldn't delete them in normal mode)..after that everything was ok for a couple of days... After that I installed Norton 360.2(I have a subscribscrion, I used to use Panda trial version instead of Norton ,as you have noticed...because my Norton kept freezing before and now again and again..I have the same problem with my AV(e.g. Norton doesn't respond to the system - on the system tray it has been shown 5 or 6 times the Norton icon especially when I tried to run a scan no matter if e.g. I ran SAS or S&D..(normal or safe mode) or when I wanted to run an online scan e.g. Bitdefender says: unable to update virus database...I was still able to run Panda..but...

I turned off my laptop and when I switched it on again my desktop disappeared..and I couldn't use TASKMANAGER as well. I ran SmitfraudFix and smitRem and since then I could use TASKMANAGER, but nothing else. I ran FixIEDef as well and it found: tmp.reg and tmp.txt in the system32 folder.

So I am very confuse because my laptop runs very slowly since...
I enclose combofix.txt, mglogs.txt FixIedef as well, I hope it helps something..
Hope you can help me, otherwise I have to format my HDD.

Anyway I have noticed I do not have access to the wallpaper_1600x1200..bmp file, I have tried to upload to jotti,virustotal and kaspersky but my whole system totally crashed(frozen,no response).

 

Your logs are clean! Remeber not every computer problem is malware related. I don't think your problems are malware related so I would recommend the Software Forum.