A further puzzle has developed today. I'm wondering (in a 'non-expert' way) whether all my hacking and slashing has in fact emasculated the virus but not eliminated it.
All references are to the infected profile (which has admin status - yes, I know.....)
Malwarebytes scans:
Scan Documents and Settings\xxxxxx\Application Data\ - MB tells me I have worm.bagle in Documents and Settings\xxxxxx\Application Data\drivers\downld - 'cleaning' has no effect
Scan \drivers and/or \drivers\downld - no infection flagged up.
Could it be that the 'signature' is the presence of the folders \drivers\downld but that the worm is no longer able to write to those folders?
If only I could find where the thing hides.................
