Posted 12 June 2008 - 09:54 PM
ok, maybe it isn't the tools, maybe it is me... but here is what i have tried and seen: Symantec found the virus but couldn't fix it, that is how I knew the name. I tried FixVundo.exe, VundoFix.exe, VirtuMundobeGone.exe (in normal and safe modes). I tried the symantec scan with nothing found, installed Trend Micro Internet Security and used its scan with no results. Spybot taught me that the rundll32 was being used to call the randomly named .dlls (but Trend Micro forced me to remove SpyBot). I can see (using msconfig) the name of the current .dll causing the problem and can rename or delete it to get some temporary relief. I have had FireFox and IE unable to load sites such as Google or Yahoo or Support.Microsoft.com. I downloaded Windows defender and get an error when I try to update the definitions so I can't use it to scan. I cannot use Windows Auto Updates, can't turn it on, can't start the service, and am even altogether missing a subkey that should be set to allow AutoUpdates to work. I recently added HijackThis, but cannot make much sense of it. I can still see the .dll, but do not know how that .dll is added to System32 directory or the Run registry folder... All of the forums seem to go a different direction on the removal process and I can't quite pin the best one down, so I decided to ask you guys. Please direct me to the place to post this, and where I can have someone look at my HJT log. Thank you so much.