Home > I Think > I Think I'm Infected With Vundo :(

I Think I'm Infected With Vundo :(

Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Jump I could recommend a databse reset and maybe that will help. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended. Kind of a give away, and it does help to prevent DNS changes and makes each application do their own DNS lookups instead of using Windows to perform the lookups. check over here

I also started using opendns servers and made a rule there against the two aforementioned host sites. PoA Supporter Joined: Feb 23, 2005 Messages: 14,191 Location: Fort Worth, TX Display Name: Display name: 3Green Let'sgoflying! For a reformatting tool, I recommend gparted. (gnome partition editor) It's free. qbynewbie, Jul 20, 2008 #20 Let'sgoflying!

You may get something out of it, or not. I used to use it pretty often. Flag Permalink This was helpful (0) Collapse - Good by BradPois / June 26, 2006 8:10 AM PDT In reply to: Did Ewido clean them up? Greaser!

  1. J/K (kind of) - hope you got that thing cleaned up - good luck!
  2. oh yeah, and certain features on mcafee keep on getting disabled, and occasionaly when i try to enable them it says it 'cannot due to an error', however does not state
  3. The window cannot be right clicked.
  4. Thread Status: Not open for further replies.
  5. Then it shows the correct IP involved with the usuall HTTP/HTTPS tags.
  6. Then it promised to remove it next reboot.
  7. IDK.
  8. I use Sonic's RecordNow, every once in a while.
  9. Urgent Customer Issues If you are experiencing an issue that needs urgent assistance please visit our customer support area: Chat with Norton Support @NortonSupport on Twitter Who's online There are currently

I checked Add and Remove Programs and could not ID it. Loan not thy computer to that person again!! Download Combofix from this webpage: http://www.bleepingcomputer.com/combofix/how-to-use-combofix **Note: It is important that it is saved directly to your desktop** -------------------------------------------------------------------- 1. It all started after I loaned my computer to someone.

IT MAKES SENSE by BradPois / June 26, 2006 1:55 PM PDT In reply to: powerreg scheduler v3.exe = I checked and PowerReg Scheduler V3 was created when I got the scan completed successfullyhidden files: 0**************************************************************************[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\vsdatant]"ImagePath"="".------------------------ Other Running Processes ------------------------.c:\program files\Sygate\SPF\Smc.exec:\program files\Lavasoft\Ad-Aware\aawservice.exec:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exec:\program files\Bonjour\mDNSResponder.exec:\program files\Google\Common\Google Updater\GoogleUpdaterService.exec:\program files\Nero\Nero 7\InCD\InCDsrv.exec:\windows\system32\nvsvc32.exec:\program files\CyberLink\Shared Files\RichVideo.exec:\progra~1\AVG\AVG8\avgrsx.exec:\windows\system32\wscntfy.exec:\program files\Microsoft IntelliType Pro\dpupdchk.exe.**************************************************************************.Completion time: 2008-11-24 7:51:11 - machine was Rich Last edited: Jul 19, 2008 RJM62, Jul 19, 2008 #16 RJM62 Touchdown! I think I'm infected by Trojans (trojan.vundo, prunnet, winvsnet) Started by RamSam , Dec 22 2008 12:38 AM Page 1 of 2 1 2 Next This topic is locked 15 replies

Discussions cover how to detect, fix, and remove viruses, spyware, adware, malware, and other vulnerabilities on Windows, Mac OS X, and Linux.Real-Time ActivityMy Tracked DiscussionsFAQsPoliciesModerators General discussion Please Help! Diana, Jul 19, 2008 #19 qbynewbie Pre-takeoff checklist Joined: Sep 22, 2007 Messages: 348 Display Name: Display name: Qbynewbie Diana said: ↑ I heard that!!!! Greaser! I can't believe Norton Mcafee and Lavasoft cannot find any Adware when I know for a fact it's on my pc.

let us know jow you are doing. My help is always free, But I do accept donations. We look forward to the time when the Power of Love will replace the Love of Power. darn, do i hate reading "news" like this about Russian "software", yet unfortunately it seems that the only kind there is :(( reasons why they do it are of course obvious

But I think that pilots are a notch above the technically-challenged users we deal with day-to-day, and (hopefully) are less likely to go deleting entries at random without knowing why those check my blog O4 - Global Startup: Canon LBP3000 Status Window.lnk = C:\Windows\System32\spool\drivers\w32x86\3\CNAB3LAK.EXE O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe O4 - Global Startup: QuickSet.lnk = ? AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! C:\Windows\System32\awtqpqPi.dll moved successfully.

Blog Latest Greatest Hits Dev Tool List Podcast Hanselminutes This Developer's Life Ratchet & The Geek Speaking Speaking/Videos Presentations Tips Books ASP.NET 4.5 ASP.NET MVC 4 Relationship Hacks © Copyright 2016, I may also run a full virus scan if time allows and if I think the machine needs it. Everyone else please begin a New Topic. this content Flag Permalink This was helpful (0) Collapse - Some things found by BradPois / June 25, 2006 7:27 AM PDT In reply to: Brad...

qbynewbie, Jul 21, 2008 #25 RJM62 Touchdown! Malware Response Team 1,226 posts OFFLINE Gender:Male Location:Seattle Washington Local time:02:39 AM Posted 28 December 2008 - 02:22 AM Hi RamSam, Welcome to Bleeping Computer. Most of these, among other damage that they do, disable security software; so infected machines can become a real mess.

A cursory glance for funky .exe's in Task Manager showed nothing obvious.

However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. Message Edited by Sea on 08-23-2009 12:15 PMMessage Edited by Sea on 08-23-2009 12:18 PM*edit Here's my logMessage Edited by Sea on 08-23-2009 12:19 PM File Attachment: hijackthis.log delphinium Norton Fighter25 I usually start by booting in ERD or Linux with NTFS Write enabled, and start deleting stuff that doesn't belong in C:\Windows and C:\Windows\System32 , as well as ALL the temp LoadLibrary failed for C:\Windows\System32\nacwcr.dll C:\Windows\System32\nacwcr.dll NOT unregistered.

Under certain circumstances profanity provides relief denied even to prayer.Mark Twain 12error12 Regular Contributor5 Reg: 21-Dec-2008 Posts: 45 Solutions: 0 Kudos: 2 Kudos0 Re: Norton Cannot Remove AdWare On My PC Cheers, Oldsod Message Edited by Oldsod on 01-10-2008 04:01 PM grixJanuary 12th, 2008, 03:27 PMHey and thanks for the reply. I hope you manage to fix this problem. http://custsolutions.net/i-think/i-think-i-have-a-vundo.php Darn if I know how stuff could have gotten on my puter without being caught.

Oldsod jstevensJanuary 14th, 2008, 06:13 PMGrix - hopefully it will be soothing to you to know, as it was to me on finding out, that ZA seems to continually check the The general maintenance usually consists of registry cleaning, a CHKDSK and checking to see how fragged the MFT is. Reboot and all is normal once again. Log in or Sign up Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware Removal > Computer problem?

You can run Malwarebytes free version as an on demand scanner which is much more effective than Adaware or Superantispyware. Several functions may not work. Then I had to run AdAware, oops version out of date, need to update. The DNS cache was important when everything was basically dialup, but with higher speeds, the dns lookups are faster, thus dns caching is not so important as it once was.

My help is always free, But I do accept donations. C:\Windows\System32\6f09a4a5-.txt moved successfully. This way: Boot your computer into the Safe Mode (http://www.pchell.com/support/safemode.shtml) Navigate to the c:\windows\internet logs folder Delete the backup.rdb and iamdb.rdb files in the folder Clean the Recycle Bin Reboot into I have been recently getting pop ups for me to download WinAntiVirus Pro 2006 and then when I try to exit I get to the WinAntiVirus website, about 3 pop-ups later

But it didn't. Thanks, 12error12 Sea Contributor4 Reg: 23-Aug-2009 Posts: 26 Solutions: 0 Kudos: 0 Kudos0 Re: Norton Cannot Remove AdWare On My PC HELP!!! :( Posted: 28-Aug-2009 | 12:45PM • Permalink Not a This post has been flagged and will be reviewed by our staff.