Hi techie boffins!

When I recenty logged on to my internet banking site, the log on page asked for waaayy too much personal information. I alerted my bank and the online account has been disabled.

The bank advised me to run an f-secure.co.uk scan - and the result shows a windows\system32\SDRA64.EXE threat which cannot be cleaned. (I've googled the threat and it appears to capture sensitive information particularly regarding online bank accounts).

So, what do I do now? My bank advised a PC specialist look at my computer - but do you have any suggestions on how I can remove the threat/virus myself?

Help very much appreciated

http://mrmusicmaker.b l o g s p o t.com/2009/04/how-to-remove-sdra64exe-yourself-for.html (remove obvious spaces in link, this place doesn't like that name for some reason)

Manual Removal Guide for Win32.ZBot - Safer Networking Forums

I would also remove all system restore points once you have eliminated the malware, as they are likely to be infected (and as you don't know exactly when it happened, you don't know which are, so safest to delete the lot).

SD

Trend Micro's free online product, Housecall, should also fix this. Housecall is good but can take a long, long time to scan.

This trojan's a real nasty. Don't skip any steps during the removal process.

SD

You just nailed the very reason I do not use System Restore on the head.