Hi all, new member! I'm trying to clean up a friend's laptop. He was infected with Antivirus 360 and Vundo over the weekend. I managed to get Malwarebytes installed on his system and after a long battle with the bad guys was able to get it to run. Took about 45 minutes and it produced 79 infected files, mostly vundo.h and Antivirus 360 but also a Troj.downloader.tsh, digeste.dll and a couple of other things. I had MWB clean all of them, rebooted and ran MWB again (after connecting to the internet to update MWB). Came up with about 9 more infections, again vundo.h, AV360 and the downloader. This time MWB ran very quickly. I deleted the found infections and then ran his Trend Micro Pcillan. Nothing found but a AW_Comet.bk file. Deleted the program it related to.
The system is running pretty will now but I still think there is something else remaining causing intermittent IE popups. I've run MWB a couple of more times but nothing shows up, same with MT. I have installed Hijackthis and run it with a produced log. I have not downloaded DSS as described in the forum Readme. Do I have to do that or can I just post my HJT and MWB logs?
Thanks in advance for assistance
Edited by Orange Blossom, 03 February 2009 - 07:05 PM.
Move from HiJack This forum to Am I Infected as no logs are posted. ~ OB