Trojan Zlob Virus

The friendliest place on the web for anyone that follows U2.
If you have answers, please help by responding to the unanswered posts.

Got Philk?

Rock n' Roll Doggie ALL ACCESS
Jan 26, 2004
Arizona, Tacoma, Philadelphia ,Atlanta, LA...
Hi peeps,
Has anyone here gotten on there computer the "Trojan Zlob virus"?

If so, can anyone tell me how to get rid of it?

Here's what I've done so far...
I have symnatec and it's fully updated, actually every time I turn on the computer, it says it locates the threat and deletes it. But it comes back every time. And pop ups come on my screen all day long.

Anyway, I also have Ad-Aware and it locates nothing.

I have run both of these in safe mode as well.

If anyone has had and gotten rid of this trojan zlob virus, please help!
i keep getting a virus alert pop-up too, and i get an alert icon in my taskbar!
i'v had it since yesterday.

i've ran both virus and spyware searches on my computer but it does'nt seem to clear it.
I got it last week and it almost crashed my entire system. It was awful.

I got this:

It was $20 and it cleaned the whole thing up. I read some other reviews about the "self-fix" and they said its very dangerous because the virus actually creates fake files that need to be deleted but once you do, it starts crashing immediately.

Anyway, it was definitely worth the $20!
This one is pretty bad. I worked on it for a while now and I'm at a loss of what to do besides the registry hacks (which are always a last resort for me since they can take so long). He has tried everything. Symantec and Adaware, even in Safe Mode, have been worthless. I've manually deleted the files that Symantec's real time protection is pointing out, I've removed several files from the selective startup, and I've even maimed Internet Explorer so that the pop-ups would stop.

I think the registry hacks are the only thing left for us to try. :sigh:
The thing is, I've tried some things that I've read on the forums dealing with this thing and the pop ups seem to have stopped.

However, if I go looking into my C: drive for whatever, the pop ups still come back. So I know it isn't gone, I just don't know where it's coming from now...

Symantex recommends the registry hacks:

o delete the value from the registry
Important: Symantec strongly recommends that you back up the registry before making any changes to it. Incorrect changes to the registry can result in permanent data loss or corrupted files. Modify the specified subkeys only. For instructions refer to the document: How to make a backup of the Windows registry.

1. Click Start > Run.
2. Type regedit
3. Click OK.

Note: If the registry editor fails to open the threat may have modified the registry to prevent access to the registry editor. Security Response has developed a tool to resolve this problem. Download and run this tool, and then continue with the removal.

4. Navigate to the subkey:


5. In the right pane, delete the value:

"nvctrl.exe" = "nvctrl.exe"

6. Navigate to and delete the following subkeys:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objecta

7. Exit the Registry Editor.
Top Bottom