Hello everyone! After having beat my head against this very same problem for three days, I have joined this forum for the express purpose of telling you how to resolve it. I would like to take credit for it, but I'd have to admit that I failed to resolve it and had to sit here this morning while my IT department worked my PC remotely to do it.
I'm sorry, but I didn't catch the names of the assorted things that they found but I DID catch the name of the sharware programs they used:
Hitman Pro 3.5 (This is the program that found the damned thing!)
SuperAntiSpyware Free Edition
All of the following failed to find or resolve the issue:
- Symantec Corp edition
- MalwareBytes (This really surprised me as I love this program and
it's saved me a lot in the past)
- Spyware Doctor from PC Tools
- Spybot S & D
I've looked in the history for the program (Which I convinced them to leave with me) and it shows that it found and deleted the following:
"C:\Windows\System32\wmiapi.Dll"
I'm not positive that this was "the" problem but offer you the information as an FYI.
Again, they were moving pretty fast so I didn't get all the details I know you would like, but my IT folks confirmed that it was the Hitman Pro software that found and killed the virus itself.
One of these two programs (Hitman Pro 3.5 and SuperAntiSpyware Free Edition) also found and removed a trojan downloader on my removable external drive. Sorry but I didn't catch which program found that downloader.
Clearly I'm not a IT expert and I'm not going to be able to provide any more details than this, but I can tell you for sure that I had exactly the same problem described here and my IT folks used Hitman Pro 3.5 and SuperAntiSpyware Free Edition to find and resolve. I think they are both shareware.
Good luck!