Trojan Virus

omb8837
omb8837
in Bitdefender 2009 products

I scanned my pc with BD and it found above virus but could not disinfect it. I tried using BD in safe mode but BD Service do not respond in safe mode. Any help will be greatly appreciated!

Comments

  • rootkit
    rootkit ✭✭✭

    Please run a full scan and paste here the scan log :)

  • Coltaine
    Coltaine
    Please run a full scan and paste here the scan log :)


    Have the same issue with probably the same trojan BD seems unable to remove it, though it is blocking the hijacks. Here is my log:


    BitDefender Log File


    Product : BitDefender Internet Security 2009


    Version : BitDefender UIScanner v.12


    Scanning task : Deep System Scan


    Log date : 16:55:16 18/03/2009


    Log path : C:\Documents and Settings\All Users\Application Data\Bitdefender\Desktop\Profiles\Logs\deep_scan\1237409716_3_02.xml


    Scan Paths:Path 0000: C:\


    Scan Options:Scan for viruses : Yes


    Scan for adware : Yes


    Scan for spyware : Yes


    Scan for applications : Yes


    Scan for dialers : Yes


    Scan for rootkits : Yes


    Target Selection Options:Scan registry keys : Yes


    Scan cookies : Yes


    Scan boot sectors : Yes


    Scan memory processes : Yes


    Scan archives : Yes


    Scan runtime packers : Yes


    Scan emails : No


    Scan all files : Yes


    Heuristic Scan : Yes


    Scanned extensions :


    Excluded extensions :


    Target Processing:Default action for infected objects : Disinfect


    Default action for suspicious objects : None


    Default action for hidden objects : None


    Scan engines summaryNumber of virus signatures : 2798073


    Archive plugins : 45


    Email plugins : 6


    Scan plugins : 13


    System plugins : 5


    Unpack plugins : 7


    Overall scan summaryScanned items : 15774


    Infected items : 106


    Suspicious items : 0


    Resolved items : 3


    Unresolved items : 103


    Password-protected items : 0


    Individual viruses found : 106


    Scanned directories : 1097


    Scanned boot sectors : 3


    Scanned archives : 559


    Input-output errors : 2


    Scan time : 00:06:07


    Files per second : 37


    Scanned processes summaryScanned : 76


    Infected : 0


    Scanned registry keys summaryScanned : 1769


    Infected : 0


    Scanned cookies summaryScanned : 1769


    Infected : 0


    Remaining issues:Object Name Threat Name Final Status


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 No action was possible


    [system]=]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\CPM475a15f9=]C:\WINDOWS\SYSTEM32\RIFABANA.DLL Gen:Trojan.Heur.Vundo.600CF3E3E3 Infected


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 No action was possible


    Resolved issues:Object Name Threat Name Final Status


    C:\WINDOWS\system32\julutoyi.dll Gen:Trojan.Heur.Vundo.402CD3C3C3 Moved to Quarantine


    c:\WINDOWS\system32\tukibazi.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 Moved to Quarantine


    c:\WINDOWS\system32\rifabana.dll Gen:Trojan.Heur.Vundo.600CF3E3E3 Moved to Quarantine

  • omb8837
    omb8837
    Please run a full scan and paste here the scan log :)


    Thanks for the quick reply. I ran a deep scan and it appears to have removed the virus. Maybe BD got tired of dealing with it so many times and finally did something with it.


    I do have another problem though, and would appreciate if you could help me with it. Thru BD in the Vulnerability item I changed the password from weak strong not knowing what it woud do. I am now trying to change it back to weak but do not find how to do it. Coud you help with this, or anybody out there.


    Thanks

All Time Leaders

Categories

Defenders of the month