"Antivirus 2009" a.k.a. Vundo.H

Discussion in 'Malware Help (A Specialist Will Reply)' started by Winnychan, Nov 30, 2008.

  1. Winnychan

    Winnychan Private E-2

    I followed everything in your 'READ AND RUN ME FIRST' instructions... and I think I might actually be clean now! But your guide did say to go ahead and have a Helper check over your system if malware was found and removed to be sure the steps got everything, so that's what I'm doing.

    I was surprised to hear that Malwarebytes alone was enough for most people. It was the first thing I ran (before even thinking to come here and start following your instructions, actually) and it got a lot of the infected files and regkeys but it wasn't until the last two scans I got from you guys that I regained control of my msconfig and lost the annoying RUN.DLL module missing errors every boot. So hey, major thanks for that!

    Hey, uh, since you're looking it over already for Vundo and all... please feel free to point out any bloatware or stupid crap installed that you know how to remove or disable for better performance! Hehe not trying to make a bunch of extra work for anyone, it's no big deal... but I figured it wouldn't hurt to ask. :D

    XOXO

    Winny
     

    Attached Files:

    Winnychan, Nov 30, 2008
    #1
  2. Winnychan

    Winnychan Private E-2

    More logs!
     

    Attached Files:

    Winnychan, Nov 30, 2008
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    The scans have taken care of most of the malware. Let's just do this:

    If you haven't already, please disable the Guest account in User accounts.

    Please disable all anti-virus and anti-spyware programs while we do the following ( be sure to re-enable when we are finished):


    Run C:\MGtools\analyse.exe by double clicking on it. (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    After clicking Fix, exit HJT.

    Now Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.
    Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file.

    You may wish to use a Startup Manager

    Be sure to tell us how things are running.
     
    TimW, Dec 1, 2008
    #3

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds