Trojan Downloader Zlob Removal

Try a online antivirus scanner and a online anti-adware/malware/spyware scanner in safe mode with network to clean up your computer BEFORE you download anything. This because the program you download can get infected.
Disable “System Restore” for Windows Me and XP, then restart your PC to clean your system restore points for viruses, spyware, adware etc.http://www.microsoft.com/technet/communi…
Now restart in safe mode.
To get in safe mode Press “F8″ upon boot up.
Select “Safe mode with Network”.
Go to Start – Run - type iexplore http://www.bitdefender.com/scan8/ie.html Enter(ok).
Do a full scan of all your drives. If something is found, delete it, reboot and do the same again in safe mode with network.
When that scan does not find anything you reboot again in safe mode with network.
Go to Start – Run – type iexplore http://www.ewido.net/en/ Enter(ok).
Do a full scan of all your drives. If something is found, delete it, reboot and do the same again in safe mode with network.
**NOTE**: Do NOT do anything else with your computer when scanning. This because you can start virus/adware/spyware/malware manually.
When no one of these scanners are showing anything you can reboot back to normal mode.
Turn on “System Restore”.
—————
Antivirus: BitDefender Online scanner - will scan and remove threats.
Anti adware/spyware: Ewido Online Scanner - will scan and remove threats.
—————
**NOTE**: Only have one antivirus program and one firewall installed on your computer.
Anti-adware/malware/spyware are ok to have more off.
You need to get one antivirus program, one firewall, pop up blocker and some spyware/adware/malware removers if you don’t have it.
……………….
I use this and more on my Windows XP Home SP2 computer:
BitDefender Antivirus (Real Time): http://www.bitdefender.com/no/view/Downl…
Comodo Firewall: http://www.personalfirewall.comodo.com/
Anti adware/spyware/malware:
Ad-Aware: http://www.lavasoft.com/products/ad_awar…
Comodo Anti-malware (Real Time): http://www.comodo.com/boclean/boclean.ht…
Spybot S&D: http://www.safer-networking.org/en/index…
SuperAntiSpyware: http://superantispyware.com/
AVG Anti-Rootkit http://www.grisoft.com/doc/download-free…
CCleaner is a freeware system optimization and privacy tool. It removes unused files from your system - allowing Windows to run faster and freeing up valuable hard disk space. It also cleans traces of your online activities such as your Internet history. http://www.ccleaner.com/
All are free.
**NOTE**: Only have one antivirus program and one firewall installed on your computer.
Anti-adware/malware/spyware are ok to have more of.
Good Luck.
Ubuntu 7.04 Feisty Fawn user.
JTB

First, turn OFF System Restore. If you leave it on and you have to Restore your puter later, you’ll just re-infect the thing!!!
Second, go to this site and USE it! :::http://support.f-secure.com/enu/home/ols…
You want to do this because your onboard anti-malware progs may be infected, too. Once you know they’re clean THEN Update and Run them!
Then, if you want/need to you can follow spywaredr’s (Answer 5) LONG list of suggestions.

One of your problems is you are using Norton.
The other is that Trojan may not be a Virus it may be Spyware and Anti Virus programs will not remove SpyWare.
Try AD-Aware 2007 and SpyBot Search and Destroy to clean out the Spyware. They are both free programs.
For a Free anti virus program, when you get tired of paying good money to Norton, use AVG Free or AVAST. They both are higher rated than Norton.

Superantispyware constantly adds zlob variants to its database, so Superantispyware should remove it:http://www.superantispyware.com/
In the event that Super… doesn’t remove your particular zlob trojan, then Roguefix definitely will:http://www.internetinspiration.co.uk/rog…

For info and removal see link below.
download free 30 day trial
hope this helps.

VIRUS REMOVAL:
this is a realll P.I.A. !!!
THE 1ST PART YOU NEED TO DO offline:
run anti-virus program
run anti spyware program
shut down System Restore
clear cookies
clear temp files
clear history
clear pre-fetch folder
clear out ALL emails starting at 2-3 days ago or when you 1st knew you were infected in:
ALL folders
sent
trash
junk
bookmarks or favorites folder in I.E. or Firefox
as you can see,there’s QUITE a bit of work ahead of you.
shut down System Restore:
virus/spyware can hide in your system restore points so we shall delete all previous restore links hiding places by turning system restore OFF.
later,when we finish,we’ll turn it back on,set up a new [ CLEAN ] restore to work from in the future.
hopefully,lol,you’ll never need it !
XP Home:
start
all programs
accessories
system tools
system restore
settings
drive [c]
settings
check the OFF link
VISTA:
start
control panel
performance and information tools
open disk clean up
select o.s. [c]
select more options
select system restore and shadow copies
select clean up
XP Home & Vista:
start
control panel
internet options
general
clear cookies
clear temp files
clear history
and set history days to keep to 0
clear temp files
not all your temp files will be removed so easily,so we need to do this manually as well.
start
my computer [ or just computer in Vista ]
windows
temp
file
click each file and delete
Clear Pre-Fetch Files
start
my computer [ or just computer in Vista ]
windows
prefetch
file
select all
press delete key on keyboard
empty recycle bin
run anti-virus and anti-spyware programs again
when your protection programs find any pirates,DELETE them,do NOT quarantine !!
should you NOT have ANY protection programs installed:
Avast–anti-virus
AD Aware–anti-spyware
Spyware Blaster–anti-spyware blocker
Rootkit Revealer–anti-rootkit
Arovax
PC Tools Firewall–firewall to replace MS’s deficient firewall [ turn that sucker OFF ! ] and replace with above.
replace windows firewall with PC Tools firewall
install Arovax protection and choose protection for internet explorer if you use it,firefox if you use that or opera if you use that
install spyware blaster and set for internet explorer and/or firefox protection
should you choose to install Firefox web browser [ and you SHOULD ]
here are some Firefox Security Extensions to install
CallingID Link Advisor
Finjan Secure Web Browsing
No Script
Dr. Web
SafeDownloadshttp://browseraddons.friendpages.com…
now it’s time to set up your new [ clean ] restore point
XP Home:
start
all programs
accessories
system tools
system restore
settings
drive [c]
settings
check the ON link
Vista:
start
control panel
back up and restore center
create restore point
create restore points on selected disks
select drive
click create
apply and ok
FINALLY….
SECURE COMPUTER:
NEVER !! :
open an email from:
anyone you do NOT know/trust
anyone purporting to be/from:
Microsoft
your bank
your creditors
your government
your financial company/ies
even your lawyer/s or church UNLESS you have a prior agreement with them
online petition
contains attachment/s
SAFE EMAIL SET UP:
YAHOO:
open options link on your email page
select spam
Spam Protection
Choose the tools you’ll use to protect your mail account from spam. Not sure what tools you need? Take a look at our Setup Guide for help.
Spam Filter
SpamGuard is ON
For messages SpamGuard identifies as Spam:
Immediately delete these messages upon receipt. (Note: If you choose this option, you will not be able to review the messages before they are deleted.)
When I mark a message as Spam, in addition to deleting the message:
Add the sender’s email address to my blocked addresses list
Image Blocking
Block images in messages that SpamGuard thinks are spam
[ possible but 1 or the other ]
Block all images until I’ve had a chance to look it over
Block Addresses
Block addresses from which you don’t want to receive mail.
Add Block
Enter email address (or domain) to block:
GMAIL:
Gmail has an EXCELLENT spam filter,learn to trust it.
Spam Filtering is automatic,unlike Yahoo.
Gmail offers a second way to protect your inbox by using filters.
1st,you need to create labels [ folders ] to store your filtered email in.
then create the label filter.
SETTINGS:FILTERS:
Create a new filter
Create a Filter
Choose search criteria - Specify the criteria you’d like to use for determining what to do with a message as it arrives. Use “Test Search” to see which messages would have been filtered using these criteria.
From: Has the words:
To: Doesn’t have:
Subject: Has attachment
after you fill the above out,you go to label [ folder ] selection.
MSN HOTMAIL:
on your email page,select options then more options
Junk e-mail
Filters and reporting
Safe and blocked senders
choose from these choices:
Safe and blocked senders
Safe senders
Manage who is allowed to send you e-mail. Messages from safe senders will not be sent to the junk e-mail folder.
Safe mailing lists
Manage which mailing lists are sent to your account. Messages to safe mailing lists will not be sent to the junk e-mail folder.
Blocked senders
Manage who is blocked from sending you e-mail. Messages from blocked senders are automatically deleted.
WINDOWS LIVE MAIL:
JUNK E-mail
Options:
safe list only
permanently delete suspected junk e-mail
Safe Senders:
add e-mail addresses to your safe list here
check:
also trust my Windows Contacts
automatically add people i e-mail to the safe senders list
Blocked Senders:
add senders addresses here to create a blocked address list
International:
Blocked Encoding List:
choose the language pack you do NOT want downloaded into your inbox here
Phishing:
check:
protect me from potential Phishing emails
move phishing emails to junk
apply & ok
Windows Live Mail has 2 other options:
Tools
message rules
mail
conditions:
where you choose:
from
to
subject
content and more
Message:
junk e-mail
add to:
safe senders
blocked senders
Web Browsers:
Internet Explorer:
XP Home & Vista:
start
control panel
internet options
general
history:
clear history
set days to keep to 0
Privacy:
advanced
override
First-party Cookies:
Accept
Always allow session cookies
Third-party [ spyware ] Cookies
Block
ok
Content:
content advisor
Enable
ratings:
set content you do NOT want permitted
Approved Sites:
add websites that ARE allowed ALWAYS here
apply & ok
Advanced:
Phishing Filter
enable
Security:
for Internet–Trusted Sites–Restricted Sites
custom
Enable Protected Mode
Custom Level:
XP Home:
Active X:
uncheck each active x control marked:
unsafe
unsigned
Vista:
be sure Active X controls and plugins is marked disable
as well as Automatic prompting for Active X controls
and download unsigned Active X controls
and Initialize and script Active X controls not marked as safe
XP & VISTA:
Access data sources across domains-disable
Allow scripting of Internet Explorer web browser control
disable
Allow script-initiated windows without size or position
disable
Allow websites to open windows without address or status bars
disable
Don’t prompt for client certificate selection when none exist
Navigate sub-frames across different domains
disable
Use Phishing filter
enable
Allow status bar updates via script
disable
now for your Restricted Zone,EVERYTHING should be disabled EXCEPT:
Pop up blocker
Phishing Filter
[internet,trusted,restricted]
download signed-PROMPT
auto-prompt-DISABLE
binary & script-ENABLE
download UNsigned-DISABLE
download UNsafe-DISABLE
run active x-ENABLE
download SAFE -ENABLE
Spy Sites
Stop Web Sites from installing Spyware, Sleazeware and Cookies on your PC
SpySites includes a database of over 4,600
known Spy/Sleaze sites and guides you
through the simple process of including them in
Internet Explorer’s Restricted Zone and setting policies
to prevent them from performing intrusive acts on your PC.
By setting the policies for the Restricted
sites zone to a very high level of security,
you can be assured that any web sites added
to the Restricted sites zone cannot do
certain things which could compromise your privacy
and security such as installing and/or running:
Spysiteshttp://camtech2000.net/pages/spysites_pr…
Pre-Fetch File Cleaning
pre-fetch files are “cached” or stored copies of files/websites you visit each session
after a period of time,these files hog up a LOT of disk space
for this reason,i advocate the deletion weekly of those space hogs
some claim that windows will automatically remove files older than 7 days
I have found MY pc does NOT perform this task so I do it manually
what happens is,when you go to a website,your pc looks into your pre-fetch file/folder
to see if that website is “cached”,stored there FIRST
this gives you a faster website load,BUT,you get the “cached” version and NOT the NEWEST version
unless you have “check for newest version” checked in internet options
it may take that website 1/2 a second longer to load
but,you’ll get the newest version loading each time
as added security,spyware removers often miss these files,so delete them manually.
My Computer,disk drive [c],windows,pre-fetch,view,select… all,select delete
same situation with Temp files:
Temp File Folder
i use Disk Clean to clean up extraneous files i no longer need
however,every time i use Disk Clean,it DOESN’T clean out Temp Files!
solution?
My Computer,local disk drive [c],windows,temp
you can safely delete each temp file there.
i leave the most current [that day] alone.
also,do not delete any FOLDER there
folders have a folder icon,leave alone
[ Vista,it's Computer ]
Firefox Web Browser:
tools
options
content
check block pop ups
load images automatically:
exceptions:
enter those websites addresses that show up on pop ups that appear AFTER you close a browser window
also add those same urls to
Privacy
Cookies
Exceptions
there are a number of kewl Security add on firefox extensions i use and they are:
CallingID link advisor
Dr. Web [ link checker ]
Finjan Secure Web Browsing
No Script
SafeDownloadhttp://browseraddons.friendpages.com…
IF you follow all the above suggestions,you’ll not have the Fort Knox of computers,but Dammed close !