Trojan Can Not Be Removed

jianfengdu · August 2009

Pls help! Thanks!!!

Here's the log file:

BitDefender Log File

Product : BitDefender Internet Security 2009

Version : BitDefender UIScanner v.12

Scanning task : Full System Scan

Log date : 8/21/2009 7:23:52 PM

Log path : C:\ProgramData\Bitdefender\Desktop\Profiles\Logs\full_scan\1250897032_1_02.xml

Scan Paths:Path 0000: C:\

Path 0001: \

Scan Options:Scan for viruses : Yes

Scan for adware : Yes

Scan for spyware : Yes

Scan for applications : Yes

Scan for dialers : Yes

Scan for rootkits : Yes

Target Selection Options:Scan registry keys : Yes

Scan cookies : Yes

Scan boot sectors : Yes

Scan memory processes : Yes

Scan archives : No

Scan runtime packers : Yes

Scan emails : No

Scan all files : Yes

Heuristic Scan : Yes

Scanned extensions :

Excluded extensions :

Target Processing:Default action for infected objects : Disinfect

Default action for suspicious objects : None

Default action for hidden objects : None

Default action for encrypted infected objects : None

Default action for encrypted suspicious objects : None

Default action for password-protected objects : Log as not scanned

Scan engines summaryNumber of virus signatures : 3911275

Archive plugins : 45

Email plugins : 6

Scan plugins : 13

System plugins : 5

Unpack plugins : 7

Overall scan summaryScanned items : 141168

Infected items : 45

Suspicious items : 0

Resolved items : 0

Unresolved items : 45

Password-protected items : 0

Overcompressed items : 0

Individual viruses found : 45

Scanned directories : 23609

Scanned boot sectors : 4

Scanned archives : 4

Input-output errors : 59

Scan time : 00:59:07

Files per second : 39

Scanned processes summaryScanned : 56

Infected : 0

Scanned registry keys summaryScanned : 1280

Infected : 0

Scanned cookies summaryScanned : 1272

Infected : 0

Remaining issues:Object Name Threat Name Final Status

C:\Windows\System32\vigodite.dll Gen:Trojan.Heur.Vundo.dy4@degKvQi Move to Quarantine Failed

C:\Windows\System32\vigodite.dll Gen:Trojan.Heur.Vundo.dy4@degKvQi No action was possible

Alex Stanciu · August 2009

Hello zhaole ,

In order to remove the infected objects from your computer you need to perform the following steps:

1. Disable the BitDefender real-time protection and/or any other active security solution(s) that you are using;

2. Save the GMER tool (and then extract it if needed) to a location of your choice:

RECOMMENDED: http://www.gmer.net/download.php

alternative: http://www.bitdefender.com/files/KnowledgeBase/file/gmr.zip

3. Make sure you close all active applications and then run the tool;

4. Allow the tool a few moments to load up and perform the initial scan;

5. In the upper left of the GMER window, you will see the tab "Rootkit/Malware" and ">>>"; Please click on ">>>"; Next click on the tab "Files";

6. Use the tree list on the left to browse and the list on the right to locate the following file(s):

C:\Windows\System32\vigodite.dll

7. Once you located the file select it with one click (in the list on the right), then press the button "Delete"; A new window will open asking you to confirm (choose "Yes");

8. Close the tool once this operation is completed.

[how to DISABLE THE REAL-TIME PROTECTION on BitDefender 2009]

In order to disable the real-time protection please open BitDefender, "Switch to Advanced View", go to "Antivirus" > "Shield" and click on "Real-time protection is enabled", select the time interval that suites your troubleshooting needs and click "OK" (the message will change to "Real-time protection is disabled"). The real-time protection should be enabled after performing the troubleshooting procedure.

In order to check whether the virus removal procedure has succeeded, we recommend another complete scan of your computer with BitDefender (Deep System Scan ).

Thank you .

Trojan Can Not Be Removed

Comments

All Time Leaders

Categories

Defenders of the month