Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Vundo and Antivirus 360 removal

  • This topic is locked This topic is locked
1 reply to this topic

#1 Highcountryrider


  • Members
  • 25 posts
  • Local time:04:19 PM

Posted 03 February 2009 - 06:46 PM

Hi all, new member! I'm trying to clean up a friend's laptop. He was infected with Antivirus 360 and Vundo over the weekend. I managed to get Malwarebytes installed on his system and after a long battle with the bad guys was able to get it to run. Took about 45 minutes and it produced 79 infected files, mostly vundo.h and Antivirus 360 but also a Troj.downloader.tsh, digeste.dll and a couple of other things. I had MWB clean all of them, rebooted and ran MWB again (after connecting to the internet to update MWB). Came up with about 9 more infections, again vundo.h, AV360 and the downloader. This time MWB ran very quickly. I deleted the found infections and then ran his Trend Micro Pcillan. Nothing found but a AW_Comet.bk file. Deleted the program it related to.

The system is running pretty will now but I still think there is something else remaining causing intermittent IE popups. I've run MWB a couple of more times but nothing shows up, same with MT. I have installed Hijackthis and run it with a produced log. I have not downloaded DSS as described in the forum Readme. Do I have to do that or can I just post my HJT and MWB logs?

Thanks in advance for assistance

Edited by Orange Blossom, 03 February 2009 - 07:05 PM.
Move from HiJack This forum to Am I Infected as no logs are posted. ~ OB

If you think nobody cares about you, try missing a couple of payments.

BC AdBot (Login to Remove)


#2 boopme


    To Insanity and Beyond

  • Global Moderator
  • 73,573 posts
  • Gender:Male
  • Location:NJ USA
  • Local time:06:19 PM

Posted 03 February 2009 - 09:33 PM

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a HJT Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the HJT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the HJT Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the HJT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another HJT Team member is already assisting you and not open the thread to respond.

If after 5 days you still have received no response, then post a link to your HJT log in the thread titled "Post in this thread when you haven't received an answer in five days.".

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users