soidog2

After you do that, reboot in safe mode and delete the file ! Download SUPERAntiSpyware and Malwarebytes' Anti-Malware and run a full scan ! After post here another HijackThis log ! Later edit: Your BD version has firewall (internet security edition) ?! Did everything you asked , both programs found and removed items. BD…

H6. Update spyware doctor and do a complete scan, it eventually removes the (harmless) registry left overs. Update BitDefender and do a deep scan. Remove VunoFix and VundoBeGone. If you need further assistance report back. Don't forget: Prevention is better than cure. Success! Done everything, computer squeaky clean !…

Removed old java & will post Vundofix backup with the the infected files, remove the "bad" extension ! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 3:44:04 PM, on 12/30/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Unable to get Internet Explorer version! Boot mode: Normal Running processes:…

VundoFix V6.7.7 Checking Java version... Java version is 1.4.2.3 Old versions of java are exploitable and should be removed. Java version is 1.4.2.5 Old versions of java are exploitable and should be removed. Scan started at 8:54:37 AM 12/30/2007 Listing files found while scanning.... C:\WINDOWS\system32\hoksfkyw.dll…

[12/30/2007, 15:25:16] - VirtumundoBeGone v1.5 ( "D:\Software downloads\VirtumundoBeGone.exe" ) [12/30/2007, 15:25:21] - Detected System Information: [12/30/2007, 15:25:21] - Windows Version: 5.1.2600, Service Pack 2 [12/30/2007, 15:25:21] - Current Username: Andrei Tudoran (Admin) [12/30/2007, 15:25:21] - Windows is in…

Good work. Your Hijackthis log is much better now. It is showing the HBO items and the infected (and removed) Winlogon. But to make sure I suggest the following steps: · Remove old Java versions due to security vulnerability. Go to start-control panel- add or remove programs and uninstall/remove all old versions of Java…

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:54:01 PM, on 12/29/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Unable to get Internet Explorer version! Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\SYSTEM32\winlogon.exe…

Hi, I think you have got a ConHook variant which hide itself from Hijackthis as I can't find any suspicious entry. 1-Try VundoFix first (instruction given below). As you will see bellow, Vundofix found a few files and fixed them, together with Hijackthis the infestation might have been stopped. Thanks, give me a few days…

Hi, I think you have got a ConHook variant which hide itself from Hijackthis as I can't find any suspicious entry. Will do and post

Next time, simply paste the content of the log here. If you attach the file on Malware talk, only mods/sm/vr will be able to downloade it. Thanks, how about some suggestions on how to deal with the above !