Have a DNS virus. Looking for help with HiJack This Log

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Rugbymuffin, Jan 21, 2009.

  1. Rugbymuffin

    Rugbymuffin Private E-2

    WOW!

    I can usually clean anything. I have a paid for version of Trend Micro Security and that usually keeps my computer really clean. And various bad boy virus/malware/spyware I can take care of. Heck, I am usually the guy other people look for to help them. But this, this is kicking my butt.

    If I click on google search results it sends me to strikingoffers .c__, shopica .c__, etc., etc.

    Help and sharing of knowledge of what all this means would be appreciated. Thank you.

    • Edit by bjgarrick: Inline HJT log removed!
    Lastly, Is Trend Micro any good or am I wasting my money.
     
    Last edited by a moderator: Jan 21, 2009
  2. Rugbymuffin

    Rugbymuffin Private E-2

    I have been reading the board and I would assume that a Combofix log would be helpful as well:

    Edit by bjgarrick: Inline log attached!
     

    Attached Files:

    Last edited by a moderator: Jan 21, 2009
  3. Rugbymuffin

    Rugbymuffin Private E-2

    Thanks. I didn't read the sticky first. My bad.
     
  4. Rugbymuffin

    Rugbymuffin Private E-2

    DNS/Vundo Virus Help (Have read "Read me First, Log files attached)

    I have done the "Read and Run me First"

    I have attached all the log files asked in the tutorial. I have followed the directions.

    Thanks for the great, and easy to understand tutorial. This virus is so bad I am not even going to pretend that everything is cleaned.

    Please read over my log files and any advice and info would be greatly appreciated. I would LOVE to use my computer again without spending the weekend re-formatting.

    Thanks
     

    Attached Files:

  5. Rugbymuffin

    Rugbymuffin Private E-2

    Re: DNS/Vundo Virus Help (Have read "Read me First, Log files attached)

    Last of the log files
     

    Attached Files:

  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    It appears as though the scans took care of most of it, however we need to do this:

    download The Avenger by Swandog469, and save it to your Desktop.

    * Extract avenger.exe from the Zip file and save it to your desktop
    * Run avenger.exe by double-clicking on it.
    * Do not change any check box options!!
    * Copy everything in the Quote box below, and paste it into the "Input script here:"
    part of the window:

    * Now click the Execute button.
    * Click Yes to the prompt to confirm you want to execute.
    * Click Yes to the Reboot now? question that will appear when Avenger finishes running.
    * Your PC should reboot, if not, reboot it yourself.
    * A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Avenger.
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds