Vundo virus I think...

Discussion in 'Malware Help (A Specialist Will Reply)' started by ssbn640, Apr 24, 2009.

  1. ssbn640

    ssbn640 Private E-2

    This all started about a week ago with XP Home BSOD and stop error 0x00000007E. Couldn't reboot even in safe mode, but found solution to this by uninstalling from Recovery Console.

    I ran my McAfee antivirus and determined I was infested with the following that were supposedly removed or quarantined (they all came back and more).:cry

    W32/Virutin!mem
    New Win32 (See allot of these)
    New Poly Win32 (Allot of these too)
    W32/Virut.n.gen
    New Malware.bj
    Vundo!grb
    Vundo.gen.ap (Many of these too)
    W32/Cutwail.a!rootkit
    Generic.Downloader.x
    Generic Packed
    Generic.dx!rootkit (Couldn't be removed)
    W32/Mariofev!enc
    W32/Mariofev.worm
    Generic.Downloader.x!a

    I ran SUPERAntiSpyware and Malwarebytes in Safe Mode and all viruses were removed. Rebooted in Normal and ran both SASW and mbam again and no malware detected. Ran McAfee again and all the viruses back again. Ugh... Any attempt to go to internet and my McAfee firewall keeps popping up with attempts to access internet or change my registry, then it crashes. I'm afraid to use the Internet now.

    Oh here are a couple more oddities, in Safe Mode with Networking I can't access the internet so I can't run online antivirus scan. My pin drive only shows up as a floppy so I have to copy all software to my PC from my CD drive.

    Please help me... TY
    (Logs attached)
     

    Attached Files:

    ssbn640, Apr 24, 2009
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    I can see the reason for your problems. Your logs show that your Windows Operating system files have become infected and there is no known reliable fix for this. In addition there are many many other infected files. These are all related to the Virut infection you have mentioned. We could spend a lot of time trying to remove this infection, but odds are that it will not work because the nature of the infection has so many executable system files infected that as soon as we fix one file, other files that are infected will almost immediately or upon the next reboot, just reinfect the files. In addition, your PC would still basically be unreliable/untrustworthy even if we manage to fix the infected files that we can see since there could be many more that we are not seeing.

    The safest thing for you to do is backup your personal data immediately since your PC could possible become unbootable at any point in time. Do not back up any executable files. This includes programs that you have downloaded since any of them could be infected.

    Once you backup, you need to delete all partitions, repartition, format partitions and reinstall Windows.
     
    chaslang, Apr 28, 2009
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds