Bancos Virus
Dear Experts,
My laptop has become infected with Bancos virus. Does this forum have any solution for the removal of the virus.
What are the possible alternatives.
Thank you,
My laptop has become infected with Bancos virus. Does this forum have any solution for the removal of the virus.
What are the possible alternatives.
Thank you,
I would also recommend downloading and updating malwarebytes.
You can get it free from www.malwarebytes.org
Once updated, reboot into Safe Mode (F8 at startup) and run a scan.
You should do this with your current antivirus product as well.
David
You can get it free from www.malwarebytes.org
Once updated, reboot into Safe Mode (F8 at startup) and run a scan.
You should do this with your current antivirus product as well.
David
ASKER
David/tdor,
Does your suggestions by runing the urls clean the virus from laptop orjust identify the virus.
Do i need take a back and how do i do it.
My laptop is acer aspire 5720.
Thank you
Does your suggestions by runing the urls clean the virus from laptop orjust identify the virus.
Do i need take a back and how do i do it.
My laptop is acer aspire 5720.
Thank you
Hi,
I it cannot remove the virus try some a sollution from another AV
http://wiki.castlecops.com/Malware_Removal:_Online_Anti-Virus_Scans
This virus is pretty old so it should be removed by any AV you're using (suggest you do a full scan)
tdor
I it cannot remove the virus try some a sollution from another AV
http://wiki.castlecops.com/Malware_Removal:_Online_Anti-Virus_Scans
This virus is pretty old so it should be removed by any AV you're using (suggest you do a full scan)
tdor
ASKER
tdor,
thank you for the email and sorry to come back to you on the same questuion.
Does the software in the above url remove the virus or just detect.
Which av sotware do you recommend for house hold purpose. I visit type of websites. SO i need a comprehensive solution.
Thank you
thank you for the email and sorry to come back to you on the same questuion.
Does the software in the above url remove the virus or just detect.
Which av sotware do you recommend for house hold purpose. I visit type of websites. SO i need a comprehensive solution.
Thank you
Hi,
Checked and on Kaspersky's site it says that it just detects but do not remove
If your AV do not work you might want to try this http://free.avg.com/. I tryied and it's prety ok as a home AV
tdor
Checked and on Kaspersky's site it says that it just detects but do not remove
If your AV do not work you might want to try this http://free.avg.com/. I tryied and it's prety ok as a home AV
tdor
If Malwarebytes or Kaspersky free trial or other scanners already mentioned fails to remove it, then try Combofix (we need to see the logfile afterwards so we can make a script to remove any files not removed in the first run)
Please download ComboFix by sUBs:
http://download.bleepingco
You must download it to and run it from your Desktop
Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
Double click combofix.exe & follow the prompts.
When finished, it will produce a log. Please save that log and attach it in your next reply by pasting it in the "Code Snippet" or "Attach File" window.
Re-enable all the programs that were disabled during the running of ComboFix..
Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.
CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
Please download ComboFix by sUBs:
http://download.bleepingco
You must download it to and run it from your Desktop
Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
Double click combofix.exe & follow the prompts.
When finished, it will produce a log. Please save that log and attach it in your next reply by pasting it in the "Code Snippet" or "Attach File" window.
Re-enable all the programs that were disabled during the running of ComboFix..
Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.
CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
ASKER
rpggamergirl:,
Thank you for the suggestion.
I ran the exe and I have attached the log.
Kindly help me in getting rid of this virus. Once i get rid of this virus i will buy some antivirus software.
Thank you
Combi-fix-log.txt
Thank you for the suggestion.
I ran the exe and I have attached the log.
Kindly help me in getting rid of this virus. Once i get rid of this virus i will buy some antivirus software.
Thank you
Combi-fix-log.txt
ASKER
rpggamergirl:,
Attached is the screen shot of Bancos virus when i run anti spy from yahoo toolbar.
The attachement is after running combi fix.
thank you,
Bancos-Virus.doc
Attached is the screen shot of Bancos virus when i run anti spy from yahoo toolbar.
The attachement is after running combi fix.
thank you,
Bancos-Virus.doc
I'm not seeing any files relevant to Bancos trojan in the Combofix log(unless I missed something).
Looks like your scanner is false positively identifying your acer files/folders as bancos trojan, this happens to Avira also.
c:\acer\Empowering Technology <-- if the said bancos trojan is located in this directory(which looks like it according to the screenshot) then it's a false positive.
c:\windows\System32\Servic
Do an online scan with Kaspersky as already suggested, if it doesn't find any viruses, then it would mean it's just a false positive.
Looks like your scanner is false positively identifying your acer files/folders as bancos trojan, this happens to Avira also.
c:\acer\Empowering Technology <-- if the said bancos trojan is located in this directory(which looks like it according to the screenshot) then it's a false positive.
c:\windows\System32\Servic
Do an online scan with Kaspersky as already suggested, if it doesn't find any viruses, then it would mean it's just a false positive.
ASKER
rpggamergirl:
Thank you for the comment.
I am attaching the screen shots as requested.
And at times earlier to runing comby fix, the internet explorer would open a page on its owns. This is the reason i believe the bancos trojan is creating troube.
After running the combi fix, this is not happening.
thank you
services.txt
system-32-services.doc
Thank you for the comment.
I am attaching the screen shots as requested.
And at times earlier to runing comby fix, the internet explorer would open a page on its owns. This is the reason i believe the bancos trojan is creating troube.
After running the combi fix, this is not happening.
thank you
services.txt
system-32-services.doc
Oh okay then, I thought after running combofix bancos was still causing trouble.
Combofix did delete some bad files,:(which would be the culprits)
The bancos screenshot of your antispy scanner is a false positive.
Combofix did delete some bad files,:(which would be the culprits)
The bancos screenshot of your antispy scanner is a false positive.
ASKER
rpggamergirl:,
Ran the kaspersky online, but it did not list any threats.
Thank you,
Ran the kaspersky online, but it did not list any threats.
Thank you,
ASKER
rpggamergirl:
Is there anything else i need to do or should i close this.
Thank you
Is there anything else i need to do or should i close this.
Thank you
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thank you for the points and the grade!
I would recommend that you use the on line Anti-virus scan from Kaspersky
http://www.kaspersky.com/virusscanner
Regards,
Tdor