Tuesday, June 3, 2008

How to remove Zlob trojan - Zlob Trojan popups removal tool

Zlob Trojan (Trojan.Zlob) is one of the most dangerous and popular trojan horses. It was designed to promote and sell rogue anti-spyware products. Zlob may seriously damage your PC, steal personal data and cause frequent errors and slowdowns. Once inside the computer system Zlob can give access of your computer system to an attacker, though the trojan has no ability to replicate itself. We STRONGLY recomend to remove Zlob as soon as possible. Download Spyware Doctor+antivirus to remove Zlob trojan automatically.

Zlob Symthoms:
  • Slow PC
  • Frequent popups
  • System tray notifications (popup baloons)
  • Homepage hijackings
  • Malware installations
  • Fake malware scanner popups
  • Fake toolbars installations (Security Toolbar 7.1 and others)
Zlob screenshots:
Zlob hijacker with fake security toolbar
Zlob baloon popups
Zlob automatical removal tool:


Zlob manual removal instructions:
Delete Zlob files, unregister dll's and disable processes:
btrklfr.dll
ncompat.tlb
dtjby.dll
uimcu.dll
%UserProfile%\Application Data\Microsoft\Crypto\RSA
%UserProfile%\Application Data\Microsoft\Protect
dumpserv.com nvctrl.exe
hp[X].tmp
msvol.tlb
RSA
Protect
vnp7s.net
zxserv0.com
dumpserv.com
antzozc.dll
ictmdl.dll
isfmdl.dll
nczupfw.dll
icthis.exe
ictun.exe
isfmntr.exe
isfun.exe
Trojan.Zlob|eulbn.dll
werbetpwg.dll
sysdivx.dll
vipextnog.dll
werbetlrw.dll
vipextgpk.dll
werbettxf.dll
vipextpxm.dll
voipwet.dll
hdtip.dll
G2-tmp.exe
G5-tmp.exe
fsehfcu.dll
qhcvdw.dll
findsiteonline.dll
1201639705.dll
1201639702.dll
ofcpi.dll
1202030455.dll
iinqyl.dll
1198448796.dll
sbmdl.dll
sbmntr.exe
sbsm.exe
sbun.exe
scit.exe
scm.exe
scu.exe
wamdl.dll
waun.exe
1198448799.dll
laf1.exe
1202567261.dll
1202650266.dll
1203140349.dll
1204372749.dll
1203634438.dll
1203846321.dll
1204460162.dll
1204885300.dll
antiviirus.exe
dkxrstqqgr.dll
apdqnxp.dll
enlfxgw.dll
1205289674.dll
altvxvm.dll
bokpkov.dll
drnpfdxxrs.dll
drnpfdxrqv.dll
etlrlws.dll
drnpfdxsfn.dll
1205847823.dll
drnpfdxlwn.dll
admggxp.dll
drnpfdxlsk.dll
drnpfdxxsn.dll
drnpfdxopx.dll
drnpfdxsxp.dll
kdftlboekae.dll
jdxah.dll
dwnrpofk.dll
vbgtorfd.dll
qvdntlmw.dll
dcggain.dll
drnpfdxwgv.dll
svpekgonlop.dll
svpekgonnof.dll
svpekgongrk.dll
ekvgsnw.dll
vualf.dll
mgsvflkw.dll
qdnkewfa.dll
rkvdr.dll
temlxopqftg.dll
403445.dll
892267.dll
qtvglped.dll
omlbpkaw.dll
dntpkwodpx.dll
bubbj.dll
rkaxfza.dll
814810.dll
uyhjw.dll
Wxdbpfvo.dll
pmsoarbf.dll
qnmargolbve.dll
312191.dll
561756.dll
wdpoefan.dll
vadokmxt.dll
qdsba.dll
527631.dll
wxdbpfvo.dll
rtmipr.dll
xbaqktfv.exe
gndarmblvpg.dll
834668.dll
qvlbodmnlks.dll
gndarmblaor.dll
tdomgafw.dll
wetkadmr.dll
qvlbodmnbof.dll
158117.dll
fvowketqksn.dll
fvowketqsle.dll
443059.dll
qvlbodmnmle.dll
566828.dll
566828.dll
824223.dll
boqnrwdmstg.dll
boqnrwdmstg.dll
nldfmtapndk.dll
pxgdslro.dll
566828.dll
Delete Zlob registry entries:
{DB9FBA9D-AB1B-4CC6-9745-F3B549D64E40}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{A3D76B96-30B9-4DCC-9B3D-D12E31280D29}
{B499D34E-58EF-4927-AB9F-7AF52B2C4C82}
{ab75cc7d-2751-4144-a278-5462d5a5884c}
{6CA49FDD-4AEB-4F08-A394-C0A1F82CAA16}
Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{41F6170D-6AF8-4188-8D92-9DDAB3C71A78}
SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\start
{41F6170D-6AF8-4188-8D92-9DDAB3C71A78}
{60dea04c-9817-4309-bfa2-f8a1766c3cd1}
{D579A683-0CC7-4023-BAE7-0544D0D1DA3A}
SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D579A683-0CC7-4023-BAE7-0544D0D1DA3A}
Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{23ED2206-856D-461A-BBCF-1C2466AC5AE3}
Online Add-on
{23ED2206-856D-461A-BBCF-1C2466AC5AE3}
{a6d478c6-7961-4fe9-be4b-e621dd640112}
{69B98C68-D2B8-4A4E-9CB7-E85B6F3A7014}
{c0ca766d-060c-48e1-b536-205e321bd174}
{F2BADA0D-FD61-45EF-A994-64A073FD6613}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{69B98C68-D2B8-4A4E-9CB7-E85B6F3A7014}
HKEY_CURRENT_USER\Software\Online Add-on
{aaad3a22-1c07-45f5-bfb3-e9a8c3b382fe}
{2012F73E-7427-4AD8-9E9D-6CBA6E0053D4}
c7cd9e83-3bf6-47f8-b2e2-b114c96c1888
BA0BACB5-FC95-451E-94D2-4959AB0949D2
F10587E9-0E47-4CBE-84AE-7DD20B8684CC
F10587E9-0E47-4CBE-ABCD-7DD20B8622FF
10C52A42-DB8B-4ade-AA4A-CED6A8282B85
7265100a-17e1-41bf-bd08-63b95a25a9c3
{27cb634d-c84e-4c00-9b53-f5523601dbad}
{F10587E9-0E47-4CBE-ABCD-7DD20B862223}
E404.e404mgr
E404.e404mgr.1
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F10587E9-0E47-4CBE-ABCD-7DD20B862223}
NetProject
{10C52A42-DB8B-4ade-AA4A-CED6A8282B67}
{747e1fbe-b70f-441d-bbca-6e536c04924a}
{81705D67-3F73-4983-859B-97D0922E5ABE}
{C2A1C5CB-C0EF-4689-9436-F62CCA1C5383}
{E85F6AA5-7A0C-49A5-9E5E-936FED62347D}
{F7D09218-46D7-4D3D-9B7F-315204CD0836}
{499B8A53-5949-4625-A8BF-A4D934AFC9DA}
{E63648F7-3933-440E-B4F6-A8584DD7B7EB}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10C52A42-DB8B-4ade-AA4A-CED6A8282B67}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2A1C5CB-C0EF-4689-9436-F62CCA1C5383}
Microsoft\Windows\CurrentVersion\Uninstall\Internet Service
Microsoft\Windows\CurrentVersion\Uninstall\MultiMedia Software
Microsoft\Windows\CurrentVersion\Uninstall\Secure Browsing
Microsoft\Windows\CurrentVersion\Uninstall\Web Application
Microsoft\Windows\CurrentVersion\Uninstall\Windows Safety Alert
Microsoft\Internet Explorer\Toolbar\{81705D67-3F73-4983-859B-97D0922E5ABE}
Microsoft\Windows\CurrentVersion\policies\explorer\run\some
Microsoft\Windows\CurrentVersion\policies\explorer\run\start
{C03FD59D-9104-44B7-929A-9EAA0BA05211}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C03FD59D-9104-44B7-929A-9EAA0BA05211}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C566C34-7D72-4DC1-9BBE-1121A76698F8}
Microsoft\Internet Explorer\Toolbar\WebBrowser
Objects\{B499D34E-58EF-4927-AB9F-7AF52B2C4C82}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03B902B1-9B25-4173-9468-56775C85A8D4}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8F10DE2B-E923-4548-B524-4D9C5FA80777}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4FEDE82-C500-4AA4-BB99-A4DAE5A65A46}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
{0D574C9F-71F9-4F3C-BA6D-CF9C0E1E3EE8}
{6D7990CB-1D01-4554-9EED-75BDC6406FC2}
zlob.trojan
{12a31567-9883-4cc0-a684-ad5804394d69}
{9E654A16-4765-4EAA-94EC-D5A6578053A4}
{25E0128D-AAFC-49FF-AB11-1F12C2FCC391}
{C130E860-7C1C-44F0-996C-1F995C10B61E}
Security Centre
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4E30C12-F249-43D5-ACE3-E0C380448648}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C109800-A5D5-438F-9640-18D17E168B88}
Microsoft\Internet Explorer\Toolbar\{51D81DD5-55B7-497F-95DB-D356429BB54E}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D0B9175-1463-4B59-80DB-4DDE662ACB2B}
Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DDFF8B71-EF58-4922-ACF2-2003FE2B7481}
at 6:10 AM Posted by Roman
Tags: , , , , , , , , ,

No comments:

Post a Comment