Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Vundo.gen.ax & Generic Back Door invasion----HELP

  • Please log in to reply
2 replies to this topic

#1 fantasy5150


  • Members
  • 3 posts
  • Local time:10:44 AM

Posted 05 June 2009 - 12:20 AM

I am new here and am hoping that I am posting in the right place. Here goes.... I have somehow picked up an infection on my computer that not only has inundated me with pornographic pop-ups but it has also taken over my operating system. When I turn on my comp it goes only as far as starting to load my desktop then it bluescreens and reboots itself. I am able to boot-up in safe mode and can access the internet. I thankfully found a website (hjt) that was able to scan my computer and tell me that I was infected by 5 vundo apps and a generic back door (something or other). I was also given the step-by-step instructions on how to fix these issues. This is where I get stuck... I am instructed to download the program fix to my desktop and run a scan to be sent out to the experts to guide me from there. But I am unable to keep my desktop from rebooting long enough to do this. I am able to run in safe-mode but cannot download anything from there because my windows installer cannot engage. Also I cannot input anything with my keyboard in safe-mode. Please help....I am ready to drop kick all of the equipment. I am currently using a friend's computer to post this problem so I am not able to send any logs to you at the moment but any suggestions would be greatly appreciated.

BC AdBot (Login to Remove)


#2 garmanma


    Computer Masochist

  • Members
  • 27,809 posts
  • Gender:Male
  • Location:Cleveland, Ohio
  • Local time:11:44 AM

Posted 05 June 2009 - 09:09 PM

Can you stay in normal mode long enough to open Task Manager and end all the processes in the applications window?
If yes, do that and then start a new task and type explorer.exe and OK
Hopefully that will keep you on and we can work from there

You say you cannot use your keyboard in safe mode. Is this a laptop or a tower with a USB keyboard connection?
Posted Image
why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter

#3 fantasy5150

  • Topic Starter

  • Members
  • 3 posts
  • Local time:10:44 AM

Posted 13 June 2009 - 05:54 AM

Thank you very much for responding. No, I cannot keep my comp booted in regular boot mode. My desktop doesn't get booted up before I get blue screen. I have run several of the scan and remove tools that are recommended in this forum (in safe mode) and have been getting messeges from each of them that my system is clean but this has not fixed the problem. Still keep getting blue screen and the restart loop is endless. I have also been able to run a HJT scan but with no way to input anything with the keyboard I am still unable to submit the log. I am using a desktop pc. I have also tried to use a wired keyboard (as I was told that was my problem) but it wasn't. I get the same results. Will I be wasting my money if I go purchase a boxed security suite? Can you recommend one that will load whether or not I am already infected and will run from safe mode (or at start up)? I have already had a huge blowout with McAfee which is used by my internet provider, comcast, about them wanting to charge me $80 for what is supposed to be free. According to them they can fix the problem remotely for a fee. Would this be the case if I were to purchase the suite and bring it home? Any advice would be appreciated as I am at my wits end with this machine!! Thank You Very Much.

P.S. Is there a particular file I can look for in my HJT log without having to submit it that might help?

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users