Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Vundo


  • This topic is locked This topic is locked
2 replies to this topic

#1 jjb603

jjb603

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:02:38 PM

Posted 23 November 2007 - 12:25 PM

VundoFix V6.6.2

Checking Java version...

Java version is 1.5.0.5
Old versions of java are exploitable and should be removed.

Scan started at 11:28:56 AM 11/23/2007

Listing files found while scanning....

C:\windows\system32\gjjlm.bak1
C:\windows\system32\gjjlm.bak2
C:\windows\system32\gjjlm.ini
C:\windows\system32\gjjlm.ini2
C:\windows\system32\gjjlm.tmp
C:\windows\system32\mljjg.dll
C:\windows\system32\rwiuyfal.dll

Beginning removal...

Attempting to delete C:\windows\system32\gjjlm.bak1
C:\windows\system32\gjjlm.bak1 Has been deleted!

Attempting to delete C:\windows\system32\gjjlm.bak2
C:\windows\system32\gjjlm.bak2 Has been deleted!

Attempting to delete C:\windows\system32\gjjlm.ini
C:\windows\system32\gjjlm.ini Has been deleted!

Attempting to delete C:\windows\system32\gjjlm.ini2
C:\windows\system32\gjjlm.ini2 Has been deleted!

Attempting to delete C:\windows\system32\gjjlm.tmp
C:\windows\system32\gjjlm.tmp Has been deleted!

Attempting to delete C:\windows\system32\mljjg.dll
C:\windows\system32\mljjg.dll Has been deleted!

Attempting to delete C:\windows\system32\rwiuyfal.dll
C:\windows\system32\rwiuyfal.dll Has been deleted!

Performing Repairs to the registry.
Done!

BC AdBot (Login to Remove)

 


#2 Rosty

Rosty

    Skydive junkie


  • Malware Response Team
  • 1,220 posts
  • OFFLINE
  •  
  • Local time:09:38 PM

Posted 23 November 2007 - 02:34 PM

Hi,

we also need to see a HijackThis log!!

Click here to download HijackThis.
Save HJTInstall.exe to your Desktop.
Double click on the HJTInstall.exe icon to start the program.
By default it will install to C:\Program Files\Trend Micro\HijackThis
After the final dialogue box it will launch HijackThis.

Click on the scan button. It will scan and then ask you to save the log.
Save the log, and post me it in your next reply.

Regards,

Rosty.
Posted Image
Proud member of ASAP since 2007

#3 Rosty

Rosty

    Skydive junkie


  • Malware Response Team
  • 1,220 posts
  • OFFLINE
  •  
  • Local time:09:38 PM

Posted 06 December 2007 - 01:22 PM

Due to the lack of feedback, this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team
a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.

Regards,

Rosty.
Posted Image
Proud member of ASAP since 2007




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users