I have Norton Anti Virus installed in my PC, however, I just found out
that it is utterly useless.

My PC has been infected with banbot, but NAV can't even find it, let
alone remove it !

It isn't that Symantec doesn't know about banbot, they have 2 webpage
devoted to it --

www.symantec.com/security_response/writeup.jsp?docid=2007-091318-2239-99&tabid=2

and

www.symantec.com/security_response/writeup.jsp?docid=2007-091318-2239-99&tabid=3

and yet

Can anyone please tell me if there's any utility that can help me
getting rid of banbot?

Thank you !

On Thu, 6 Nov 2008 00:34:07 -0800 (PST), Penang wrote:

<snip>

> Can anyone please tell me if there's any utility that can help me
> getting rid of banbot?

Clean HDD.
Click Start==>Run... then type (or copy/paste) "cleanmgr" (w/out quotation
marks into the box, then click the 'OK' button. Select your drive
(presumably WinXP (C:) and click OK.

Clear the (IE) temporary Internet files and the history cache.
Click Start==>Run... then type (or copy/paste) "inetcpl.cpl" (w/out
quotation marks) into the box, then click the 'OK' button.
In Internet Properties panel 'General' tab, under 'Browsing history', click
'Delete...'button, in 'Delete Browsing History' panel, click the 'Delete
all...'button then place a checkmark into the box beside 'Also delete files
and settings stored by add-ons', Click 'Yes' and exit the Internet
Properties panel by clicking the 'OK' button.

Malwarebytes© Corporation - Anti-Malware
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

SuperAntispyware - Free
http://www.superantispyware.com/superantispywarefreevspro.html

Download and execute HiJack This! (HJT)
http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis

Please, do not post HJT logs to this newsgroup.

Fora where you can get expert advice for HiJack This! (HJT) logs.

http://www.thespykiller.co.uk/index.php?board=3.0
http://www.spywarewarrior.com/viewforum.php?f=5
http://forums.tomcoyote.org/index.php?showforum=27
http://www.bleepingcomputer.com/forums/forum22.html
http://www.malwarebytes.org/forums/index.php?showforum=7
http://www.5starsupport.com/ipboard/index.php?showforum=18
http://www.theeldergeek.com/forum/index.php?s=2e9ea4e19d3289dd877ab75a8220bff6&showforum=29

NOTE:
Registration is required in any of the above mentioned fora before posting
a HJT log and read the 'stickies' (instructions/guidelines) for the
respective HJT forum.

Good luck :)

Penang <kalambong@gmail.com> wrote in
news:071fbca9-7514-4baf-97ea-eb8f10aa4764@s1g2000prg.googlegroups.com:

> I have Norton Anti Virus installed in my PC, however, I just found out
> that it is utterly useless.
>
> My PC has been infected with banbot, but NAV can't even find it, let
> alone remove it !

I can't comment on NAV, malwarebytes antimalware might be able to assist
you. You can give it a try:

http://www.malwarebytes.org


--
Regards,
Dustin Cook
Malware Researcher
MalwareBytes - http://www.malwarebytes.org

From: "Penang" <kalambong@gmail.com>

| I have Norton Anti Virus installed in my PC, however, I just found out
| that it is utterly useless.

| My PC has been infected with banbot, but NAV can't even find it, let
| alone remove it !

| It isn't that Symantec doesn't know about banbot, they have 2 webpage
| devoted to it --

They might know about the family but if there is a new variant, it can remain undetected.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

On Thu, 6 Nov 2008 00:34:07 -0800 (PST), Penang <kalambong@gmail.com>
wrote:

>I have Norton Anti Virus installed in my PC, however, I just found out
>that it is utterly useless.

Congratulations. You just discovered what security experts have known
for many years. This applies to all AV products though, not just
Norton.

>My PC has been infected with banbot, but NAV can't even find it, let
>alone remove it !

Of course not. What makes you believe that malware would let
anti-malware get in its way?

>It isn't that Symantec doesn't know about banbot, they have 2 webpage
>devoted to it --
>
>www.symantec.com/security_response/writeup.jsp?docid=2007-091318-2239-99&tabid=2
>
>and
>
>www.symantec.com/security_response/writeup.jsp?docid=2007-091318-2239-99&tabid=3
>
>and yet
>
>Can anyone please tell me if there's any utility that can help me
>getting rid of banbot?

Utility??? - As you say, you have been infected. So now you must
revert to a known clean state - which ultimately means flatten and
rebuild.