Vundo Trojan

Hey guys. a friends pc has been infected with a Vundo Trojan.

Every time she boots her pc MalWarrior appears and does the old you have three hundred viruses just pay and they will be removed.


Have you guys heard of this and would the vundo removal in Special Removal Procedures clear it up?. or would a complete run of read & run me be advised? thanks for the advice guys..

 

Greetings wildwolf220,
aaaaaoooooooooo.....


Okay, enough howling. No, Vundo Fix won't remove the whole thing. The easiest thing to do is run through the READ & RUN ME FIRST, attach the logs, and allow us to get the last strongholds with our deadly daggers.

That's what I suggest.
abri

 

Hey abri we meet again

I had a quick look at her pc last night and it's in a pretty sorry staterolleyes
It took it 35 min's just to boot up.
It's 5 years old and by the looks of it it would be kinder to put it out of it's miseryLOL
i will try and download the tool for read & run me but i think it's a lost cause.

Thanks for the reply abri..

And less of the wolf jokes or i'l set the pack on you

 

Hi wildwolf,
(happily awaits meeting with the whole pack) lol

If it's Vundo, we can probably get it back to a good state. You may want to give consideration to some other animals as well, like the ram.

Will wait to hear back from you.
abri

 

abri, sorry about the delay in getting back to you.

Im afraid this is going to be impossible to sort out
The pc is on it's last legs, i think it's going to expire at any min.

I tried to download the tools for read & run me but it was taking so long i had to give up. my friend has decided to buy a new pc as her one is so old.

Thanks for the replys abri

Keep up the good work..

 

Thanks for posting back wildwolf.
It sounds like it's in a sorry state, for sure. Will she be able to save her data?
abri

 

Yes abri, i told her to save all she wants to now because it might well cough, take a heart attack, and die on her

Her daughter is going to try and save her school projects on to her memory sticks.

When i checked she hadn't updated or run any of her anti malware software in nearly 4 months:eek

Any wonder it got infected

 

Hi wildwolf,

It's possible the storage media will be infected. It would be a good idea to scan them right from the start once the data has been saved. From the sound of it, it will be hard to do this on the existing machine. Therefore, after the data has been backed up, I would recommend a valient effort to run Combofix in safe mode and see if that computer can be gotten to a state where it could be cleaned up. If it can be cleaned, it will be easy enough to plug in the external media afterwards and run checks on any and all of them. If it can't be cleaned, then whatever external storage media they use for backups will need to be checked, and yes, that means they will have to be put into a computer which may otherwise be clean.

I like using the BitDefender online scan for checking single drives or folders. If you're interested in more information, there's a set of instructions for running it here: Running BitDefender Online Scan

After you click on the I Agree button but before you click on the Start Scan button, there is a window just above the Start Scan button with two links in small bold red letters. Click on the top one of these and it will allow you to choose what you want to have scanned.

Also, the scans in the READ & RUN ME are useful if you end up putting the backups onto a clean computer where it isn't so problematic to download those programs.

abri

 

Thanks again for the advice abri it's much appreciated.

i didn't think of the data on the sticks being infected

i'd better warn her about that incase she infects another pc