Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16609)
Boot mode: Normal
I downloaded what was supposed to be a codec update and I believe IE7 was "hijacked". When opened, it immediately loaded to //secureinvites.com/ and showed a major security warning, instructing me to download all kinds of security programs, etc. to clean my system. The system tray kept popping up a "System Alert: Malware Threat" dialog box asking me to click it to download malware removal software. At first, I just cancelled, but then I was fooled by a Malwarecore site and I accepted the "fix". Things just got worse from then on. I know now that this is all fake...
Here is what I have done so far to try and fix it:
- First I uploaded the latest virus list on my Norton 360 and performed a full scan, but it found nothing.
- Then I read something about Malware on Symantec's site and turned off Systems Restore as instructed (still off at this time).
- Then I found this website and followed the instructions: cleanmgr, Ad-aware (picked up a few tracking cookies), Spybot S&D (found Virtumonde trojan, so just to be safe, I downloaded and ran Vundo Fix and Virtumondobegone fix). This got rid of the crazy pop-ups!
- Then I ran Malwarebyte's Anti Malware, which found Trojan.Zlob and Trojan.Downloader.
- I thought this was fixed and ran McAfee stinger, which did not find anything.
- But just to be safe, I then ran the Kaspersky online scan which found Trojan-Downlaoader.win32.zlob.jfl. I then add problems restarting Windows...
All I want to know is: "Am I still infected?" and if I am "What can I do to fix it once and for all?". Please help...
Edited by tselosse, 22 March 2008 - 11:58 AM.